CVE-2019-2420

NationalVulnerabilityDatabase Wednesday, January 16, 2019 11:30:00 PM CET | info [other]

Description. Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.7.24 and prior and 8.0.13 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server....

Facebook blocks accounts linked to Russian state-owned Sputnik

YahooNewsSecurityNews Saturday, January 19, 2019 3:21:00 AM CET | info [other]

By Ishita Palli and Munsif Vengattil. (Reuters) - Facebook Inc said on Thursday it had removed hundreds of Russia-initiated accounts, which it judged to be involved in coordinated inauthentic behavior on its platforms, including some linked to state-owned news agency Sputnik....

Insider Trading: SEC Describes $4.1 Million Hacking Scheme (InfoRiskToday)

sans-isc Thursday, January 17, 2019 11:43:00 PM CET | info [other]

Source: SEC. The U.S. Securities and Exchange Commission has charged seven individuals and two organizations with being part of an international scheme that hacked the SEC's EDGAR document system, stole nonpublic corporate information and used it to illegally earn $4.1 million via insider trading....

More than 770 million email addresses found in 'largest' data breach

channelnewsasia Friday, January 18, 2019 7:24:00 AM CET | info [other]

SINGAPORE: Internet security researcher Troy Hunt on Thursday (Jan 17) said he has discovered the largest collection of breached data, comprising more than 770 million unique email addresses and more than 21 million unique passwords. The data, called Collection #1 and collated by Hunt, is made up of.......

CVE-2019-2406

NationalVulnerabilityDatabase Wednesday, January 16, 2019 11:30:00 PM CET | info [other]

Description. Vulnerability in the Core RDBMS component of Oracle Database Server. Supported versions that are affected are 12.1.0.2, 12.2.0.1 and 18c. Easily exploitable vulnerability allows high privileged attacker having Create Session, Execute Catalog Role privilege with network access via Oracle Net to compromise Core RDBMS....

Germany considers barring China’s Huawei from 5G networks - The Irish Times

cyberespionageGoogleNieuws Friday, January 18, 2019 12:42:00 AM CET | info [other]

Germany considers barring China’s Huawei from 5G networks Officials discuss setting security standards that Huawei would not be able to achieve. Europe has become a crucial battleground in a struggle between Beijing and Washington. Photograph: Ole Spata/EPA The German government is debating.......

Fortnite Money Laundering Scheme Created By Cybercriminals | Anti Corruption Digest

CyberReconnaissance Friday, January 18, 2019 3:22:00 AM CET | info [other]

— Anti-Corruption News Story Curated by Anti-Corruption Digest International Risk & Compliance News Fortnite has been a huge success for Epic Games. The game boasts hundreds of millions of players and was one of the most played games of 2018. Cybercriminals have seen the potential in the game and have created a Fortnite money laundering scheme....

Millions of Fortnite Gamers Vulnerable To Hacking

techshout Friday, January 18, 2019 6:08:00 PM CET | info [other]

Nearly 80 million players of the popular online battle game Fortnite are at increased hacking risk, said researchers from cyber security firm Check Point who discovered vulnerabilities that can give hackers access into user accounts. If exploited, the vulnerability would enable hackers purchase.......

Data Breach Collection Contains 773 Million Unique Emails

blog_DataBreachTodaycomRSSSyndication Thursday, January 17, 2019 2:32:00 PM CET | info [other]

Hunt runs the free Have I Been Pwned service, which enables users to register their email address and receive an alert anytime the email shows up in a data dump that Hunt loads into the service. He says that of the 2.2 million email addresses that have been registered with Have I Been Pwned, about 768,000 of them appear in the Collection #1 breach....

Facebook Deletes More Bogus Accounts Linked to Russia

govinfosecurity Friday, January 18, 2019 12:01:00 PM CET | info [other]

Facebook on Thursday announced that it has removed hundreds of Facebook and Instagram accounts that violated its rules. Specifically, the social network alleged that the "fake account" creators misrepresented their identity, hiding the fact that they were employees of the Moscow-based Sputnik news agency....