Anthlas Security
09/11/2024
Just a quick reminder to regularly update all of your devices and tools. Updates are essential patches that fix security vulnerabilities, preventing exploitation by cybercriminals.
Browsers are prime targets for cybercriminals and keeping them updated is crucial for your online safety. Google just released a new Chrome update that fixes several high-severity vulnerabilities. These vulnerabilities can lead to system takeover, data corruption, code ex*****on, or DoS attacks.
Don’t wait, protect your data and stay secure by updating now!
We’re dedicated to keeping local families and businesses informed about online threats. Follow us for the latest security updates and tips to help protect our community.
Chrome 128 Update Resolves High-Severity Vulnerabilities Google has released a Chrome 128 security update to resolve high-severity memory safety vulnerabilities.
05/24/2024
Fake websites pretending to be Avast, Bitdefender, and Malwarebytes are spreading malware to Android and Windows devices.
Keep your family informed of all the dangers that we all face on a daily basis. Learn more by visiting us at Anthlas Security.
Fake Antivirus Websites Deliver Malware to Android and Windows Devices Fake antivirus websites are stealing your data. Cybercriminals are using sites that mimic Avast, Bitdefender, and Malwarebytes to spread malware.
08/24/2023
Cybersecurity Update
Researchers have identified four vulnerabilities in TP-Link Tapo L530E smart bulb and its accompanying app, TP-Link Tapo. Given the bulb's popularity on platforms like Amazon and the app's 10 million installations on Google Play, many users could be at risk.
Key Findings:
1. Attackers can impersonate the bulb, gaining access to user passwords and manipulating devices.
2️. Hard-coded secrets within the app can be brute-forced or decompiled.
3. Predictable cryptographic schemes due to lack of randomness.
4. Session keys are valid for 24 hours, enabling message replays.
Most concerning: Attackers can impersonate the bulb, retrieve account details, and eventually access the victim’s WiFi credentials. This could lead to breaches on all devices connected to that network.
While TP-Link has been informed and promised fixes, it's unclear which versions have been patched.
To keep your IoT devices safe:
-Isolate them from critical networks.
-Regularly update to the latest firmware and app versions.
-Use strong passwords and multi-factor authentication.
Stay vigilant and prioritize the security of your smart devices. Stay up to date with all the latest cybersecurity news by signing up for our weekly newsletter at anthlassecurity.com!
TP-Link smart bulbs can let hackers steal your WiFi password Researchers from Italy and the UK have discovered four vulnerabilities in the TP-Link Tapo L530E smart bulb and TP-Link's Tapo app, which could allow attackers to steal their target's WiFi password.
08/24/2023
Cybersecurity Alert
Data of 2.6 million DuoLingo users was leaked on a hacking forum, potentially putting them at risk of targeted phishing attacks. While DuoLingo, a popular language learning platform, acknowledged some of the data was scraped from public profiles, email addresses, which aren't public, were also exposed.
This data leak stems from an exposed application programming interface (API) which was reportedly abused to gather user details. Surprisingly, even after its misuse was flagged earlier this year, the API remains accessible. Combining public and private data enhances risks for users and may breach data protection laws. Remember, in the past, Facebook faced hefty fines for similar issues.
If you're a DuoLingo user, be cautious of phishing attempts, and always stay vigilant with your online interactions. Stay safe!
Stay up to date with the latest cyber security news by signing up for our weekly newsletter at anthlassecurity.com!
Scraped data of 2.6 million Duolingo users released on hacking forum The scraped data of 2.6 million DuoLingo users was leaked on a hacking forum, allowing threat actors to conduct targeted phishing attacks using the exposed information.
08/15/2023
Attention Ford and Lincoln vehicle owners! A vulnerability has been discovered in the SYNC3 infotainment system. Good news is, while a fix is on its way, vehicle driving safety isn't at risk. In the meantime, if you're concerned, simply disable your in-car WiFi. Stay tuned for the software patch, which you can easily download and install via USB. Drive safe and stay informed!
Check us out at anthlassecurity.com and sign up for our weekly newsletter for all your cybersecurity news and information.
Ford says cars with WiFi vulnerability still safe to drive Ford is warning of a buffer overflow vulnerability in its SYNC3 infotainment system used in many Ford and Lincoln vehicles, which could allow remote code ex*****on, but says that vehicle driving safety isn't impacted.
Click here to claim your Sponsored Listing.
Category
Contact the business
Website
Address
Richmond, TX