PoC targeting critical Apache Struts bug found online

The discovery was made barely two days after the release of a patch that fixes the critical flaw in the web application framework. Researchers have discovered freely available proof-of-concept (PoC) code that can be used to exploit a critical security hole in the Apache Struts 2 web application framework shortly after the vulnerability was disclosed … More PoC targeting critical Apache Struts bug found online

Software bugs put nearly 100 million health records at risk of exposure

The slew of vulnerabilities – since patched – were found without the use of automated testing tools. A team of seven researchers has discovered more than 20 security vulnerabilities in OpenEMR, an open-sourceapplication used worldwide for the electronic management of the medical records of almost 100 million people. In keeping with the principles of responsible disclosure, … More Software bugs put nearly 100 million health records at risk of exposure

Pirate websites expose users to more malware, study finds

The study found that the more time users spent on pirate sites the higher the likelihood that some type of malware would compromise their computers. It is hardly a surprise to learn that navigating to pirate websites entails a higher risk of running into malware. But a researcher from Carnegie Mellon University in Pennsylvania, US, … More Pirate websites expose users to more malware, study finds

Malware in firmware: how to exploit a false sense of security

When it comes to cyberthreats, we in ESET-LATAM Research often see ransomware, banking trojans (especially in my home country – Brazil), botnets or worms. As a consequence, other types of dangerous malware that run inconspicuously might get less of our attention; as is the case with firmware malware or bootkits. Bootkits run before the OS … More Malware in firmware: how to exploit a false sense of security

ESET works with Google to halt dangerous malware

ESET launched Chrome Cleanup, a new scanner and cleaner for Google Chrome designed to help users browse the web safely and without interruption.  Chrome Cleanup will be available for all Google Chrome users running on Windows. As cyber-attacks become more complex and difficult to spot, browsing the web can lead users to dangerous sites which … More ESET works with Google to halt dangerous malware

Having “the talk” with parents — the tech talk, that is

Reviewing a lease, preparing a favorite recipe, applying for a loan … these are all things a typical college student might ask parents how to do. But these days, students are more likely to turn to a quick internet search for answers to just about everything. Parents, however, still tend to depend on their children … More Having “the talk” with parents — the tech talk, that is

Adobe Flash Player users should update their software NOW

Written by Graham Cluley, ESET We Live Security One of the favourite pieces of software for malicious hackers to target on users’ computers is Adobe Flash Player. Why? Well, there are a few reasons. Firstly, Adobe Flash Player is on an awful lot of computers. Many users may have it installed it long ago in … More Adobe Flash Player users should update their software NOW