Attackers used D-Link routers to steal bank credentials from fake malicious websites of several Brazilian banks.
TSMC – one of the world’s largest makers of semiconductors and processors, which cooperates with AMD, Apple, Nvidia and Qualcomm was forced to suspend production processes due to the attack of WannaCry.
German hosting provider DomainFactory, owned by GoDaddy, confirmed the data breach. Customers are recommended to change their passwords immediately.
As part of the planned June 2018 Patch Tuesday Microsoft added protections from an additional subclass of speculative execution side channel vulnerability known as Speculative Store Bypass (CVE-2018-3639).
Microsoft has released a security update for Malware Protection Engine, including a patch for the remote code execution vulnerability
Two critical vulnerabilities that could allow unprivileged remote attackers to launch DoS attacks against servers and change any other users’ passwords, including admin’s, were detected and addressed by maintainers of Samba.
Google Project Zero discovered a new security issue that was tested on Windows 10 Version 1709.
Cisco engineers found other attack vectors and features that are affected by CVE-2018-0101 vulnerability that were not originally identified by the NCC Group and subsequently updated the security advisory.
Vulnerability CVE-2017-3145 affects all versions of BIND since 9.9.0, released in 2000, and can lead to denial-of-service and crash.
Microsoft has added important note on the support page describing incompatibilities between antivirus (AV) products and the recent Windows Meltdown and Spectre patches.