Serious Vulnerability Allows Hijacking of VPN Connections Across Many Linux Based Systems (Including Android and MacOS)

A serious vulnerability has surfaced affecting VPN connections on many systems. Upon exploitation, this vulnerability allows a potential attacker to sniff on other users’ VPN data. The attacker can also hijack VPN-tunneled connections. VPN Vulnerability Allows Connection Hijacking Researchers from Breakpointing Bad & University of New Mexico have discovered a serious vulnerability affecting VPN connections.…

Details

Technology cyber-security predictions for 2020

Targeted ransomware – 2019 saw ransomware exploits getting highly targeted against specific businesses, as well as local government and healthcare organizations. Attackers are spending time intelligence-gathering on their victims, to ensure they can inflict maximum disruption, and ransoms are scaled up accordingly. Attacks have become so damaging that the FBI has softened its stance on paying ransoms: …

Details

Microsoft fixes critical remote desktop bug

Microsoft fixed 59 vulnerabilities in October’s Patch Tuesday, including several critical remote code execution (RCE) flaws. One of the most significant was a flaw (CVE-2019-1333) in the company’s Remote Desktop Client that enables a malicious server to gain control of a Windows computer connecting to it. An attacker could accomplish this using social engineering, DNS poisoning, a man-in-the-middle…

Details

iPhone attack may have targeted Android and Windows too

Last week’s significant hack of iPhones also targeted Android smartphones and Windows computers, it has been reported. Google dropped hints about nation-state involvement in its announcement, but a separate report that Windows and Android devices were also on the target list offers a new twist to the story. If correct, the inclusion of Windows and Android shouldn’t be surprising…

Details