Hi, I’m Paul Torgersen. It’s Thursday,
November 14th, 2019, and this is a look at the information security news from overnight. From BleepingComputer.com:
Cybercriminals have developed ransomware called PureLocker that can be ported to all three
major operating systems. It’s also adept at evasion, hiding malicious behavior in sandbox
environments, posing as the Crypto++ library, and using functions normally seen for music
playback. From TechCrunch.com:
5G is faster and more secure than 4G, but it also has vulnerabilities. Researchers have
found close to a dozen of them, which can be used to track real-time location, spoof
emergency alerts, or simply disconnect the phone from the network altogether. Details
and a link to the research in the article. From SCMagazine.com:
Not to be left out of the patching fun this week, VMWare has issued patches for five flaws.
The most important bugs affecting their Workstation and Fusion products. They did note that one
of the patches may come with a performance impact, so you will have load that one manually. From TechNadu.com:
The upcoming iOS 13.3 will finally include support for physical security keys. Using
these NFC, USB, and Lightning FIDO2-compliant security keys is considered to be a superior
method of two-factor authentication. Yay Apple. And last today from BleepingComputer.com:
A strange new ransomware called AnteFrigus does not target the C: drive. Instead, it
only targets D: thru I:, where you would likely have an external drive or mapped network drives.
Researchers are not sure if this is a clever ploy, or a mistake. You can see more details
in the article. That’s all for me today. Have a great rest
of your day and until tomorrow, be safe out there.