iNSYNQ Ransom Attack Began With Phishing Email
krebsonsecurity.com/2019/08/insynq-ransom-attack-began-with-phishing-email/ A ransomware outbreak that hit QuickBooks cloud hosting firm iNSYNQ in mid-July appears to have started with an email phishing attack that snared an employee working in sales for the company, KrebsOnSecurity has learned. It also looks like the intruders spent roughly ten days rooting around iNSYNQs internal network to properly stage things before unleashing the ransomware.
Google Chrome Incognito Mode Can Still Be Detected by These Methods
www.bleepingcomputer.com/news/google/google-chrome-incognito-mode-can-still-be-detected-by-these-methods/ With the release of Chrome 76, Google fixed a loophole that allowed web sites to detect if a visitor was using Incognito mode. Unfortunately, their fix led to two other methods that can still be used to detect when a visitor is browsing privately.
KDE Vulnerability Fixed By Removing Shell Command Support
www.bleepingcomputer.com/news/security/kde-vulnerability-fixed-by-removing-shell-command-support/ A code execution vulnerability in the KDE desktop manager has been resolved by removing support for shell commands in the KConfig configuration system.