apls logo
find my library icon Find My Library Contact Us Search Facebook

IT Security News

  • The Security Pros and Cons of Using Email Aliases

    One way to tame your email inbox is to get in the habit of using unique email aliases when signing up for new accounts online. Adding a "+" character after the username portion of your email address -- followed by a notation specific to the site you're signing up at -- lets you create an infinite number of unique email addresses tied to the same account. Aliases can help users detect breaches and fight spam. But not all websites allow aliases, and they can complicate account recovery. Here's a look at the pros and cons of adopting a unique alias for each website.

    read more 

  • Microsoft Patches ‘Dogwalk’ Zero-Day and 17 Critical Flaws

    August Patch Tuesday tackles 121 CVEs, 17 critical bugs and one zero-day bug exploited in the wild.

    read more 

  • Microsoft Patch Tuesday, August 2022 Edition

    Microsoft today released updates to fix a record 141 security vulnerabilities in its Windows operating systems and related software. Once again, Microsoft is patching a zero-day vulnerability in the Microsoft Support Diagnostics Tool (MSDT), a service built into Windows. Redmond also addressed multiple flaws in Exchange Server — including one that was disclosed publicly prior to today — and it is urging organizations that use Exchange for email to update as soon as possible and to enable additional protections.

    read more 

  • Virtual Currency Platform ‘Tornado Cash’ Accused of Aiding APTs

    U.S. Treasury blocked the business of the virtual currency mixer for laundering more than $7 billion for hackers, including $455 million to help fund North Korea’s missile program.

    read more 

  • Phishers Swim Around 2FA in Coinbase Account Heists

    Attackers are spoofing the widely used cryptocurrency exchange to trick users into logging in so they can steal their credentials and eventually their funds.

    read more 

  • Class Action Targets Experian Over Account Security

    A class action lawsuit has been filed against big-three consumer credit bureau Experian over reports that the company did little to prevent identity thieves from hijacking consumer accounts. The legal filing cites liberally from an investigation KrebsOnSecurity published in July, which found that identity thieves were able to assume control over existing Experian accounts simply by signing up for new accounts using the victim’s personal information and a different email address.

    read more 

  • Open Redirect Flaw Snags Amex, Snapchat User Data

    Separate phishing campaigns targeting thousands of victims impersonate FedEx and Microsoft, among others, to trick victims.

    read more 

  • Scammers Sent Uber to Take Elderly Lady to the Bank

    Email scammers sent an Uber to the home of an 80-year-old woman who responded to a well-timed email scam, in a bid to make sure she went to the bank and wired money to the fraudsters.  In this case, the woman figured out she was being scammed before embarking for the bank, but her story is a chilling reminder of how far crooks will go these days to rip people off.

    read more 

  • VMWare Urges Users to Patch Critical Authentication Bypass Bug

    Vulnerability—for which a proof-of-concept is forthcoming—is one of a string of flaws the company fixed that could lead to an attack chain.

    read more 

  • Universities Put Email Users at Cyber Risk

    DMARC analysis by Proofpoint shows that institutions in the U.S. have among some of the poorest protections to prevent domain spoofing and lack protections to block fraudulent emails.

    read more 

    • first ... 4 5 6 7 8 ... last more {structure:child_listing:channel}