Featured Blogs
CurveBall – An Unimaginative Pun but a Devastating Bug
2020 came in with a bang this year, and it wasn’t from the record-setting number of fireworks on display around the world to celebrate the new year. Instead, just over two weeks into the decade, the security world was rocked by a fix for CVE-2020-0601 introduced in Microsoft’s first patch ...
What CVE-2020-0601 Teaches Us About Microsoft’s TLS Certificate Verification Process
By: Jan Schnellbächer and Martin Stecher, McAfee Germany GmbH This week security researches around the world were very busy working on Microsoft’s major crypto-spoofing vulnerability (CVE-2020-0601) otherwise known as Curveball. The majority of research went into attacks with malicious binaries that are signed with a spoofed Certificate Authority (CA) which ...
Iran Cyber Threat Update
Recent political tensions in the Middle East region have led to significant speculation of increased cyber-related activities. McAfee is on a heightened state of alert to monitor the evolving threats and rapidly implement coverage across all McAfee products as intelligence becomes available. Known campaigns associated with the threat actors from ...
We Be Jammin’ – Bypassing Chamberlain myQ Garage Doors
The idea of controlling your garage door remotely and verifying that everything is secure at home, or having packages delivered directly into your garage is enticing for many people. The convenience that many of these IOT devices provide often persuades consumers away from thinking about the possible security concerns. McAfee ...
The Cloning of The Ring – Who Can Unlock Your Door?
Steve Povolny contributed to this report. McAfee’s Advanced Threat Research team performs security analysis of products and technologies across nearly every industry vertical. Special interest in the consumer space and Internet of Things (IoT) led to the discovery of an insecure design with the McLear NFC Ring a household access ...
The Tradeoff Between Convenience and Security – A Balancing Act for Consumers and Manufacturers
This week McAfee Advanced Threat Research (ATR) published new findings, uncovering security flaws in two popular IoT devices: a connected garage door opener and a “smart” ring, which, amongst many uses, utilizes near field communication (NFC) to open door locks. I’d like to use these cases as examples of a ...
Do You Have Blind Spots? McAfee Welcomes Check Your Blind Spots Bus Tour
A bus, virtual reality, and conversations around inclusion. How do all these fit together? The answer: CEO Action’s Check Your Blind Spots Bus Tour. Working at McAfee means innovating in everything we do – it’s imperative for us to stay a step ahead of cyberattacks. This includes new approaches to ...
New Version of App Control Revving Up
As a leader in the Department of Homeland Security’s (DHS) Continuous Diagnostics and Mitigation (CDM) program, McAfee is constantly innovating to meet and exceed the security needs of the federal government. Federal agencies count on McAfee to secure their networks and systems, from device to the cloud, and we’re always ...
ST15: Bedrohungsinformationen (German)
In diesem Podcast beleuchten wir das Thema “Threat Intelligence” von verschiedenen Blickwinkeln. Hierfür haben wir uns kompetente Unterstützung von Markus Auer, seines Zeichens Sales Manager bei ThreatQ, dazugeholt, der uns durch die Kernthemen bei der Nutzung von Threat Intelligence leiten wird. Dabei betrachten wir die Annahme von Informationen, die Weiterverarbeitung ...
ST14: Cloud-Sicherheit (German)
In der heutigen Folge unterhalten sich Kai Langhoff und Chris Trynoga über das Thema Cloud Security. Im Mittelpunkt stehen dabei die Veränderungen und die Dynamik, welche sich durch den Einsatz dieser Technologien entwickelt hat, und wie diese mit sinnvollen Mitteln sichtbar und kontrollierbar gemacht werden kann. Hierzu stellen wir ihnen ...
