Malicious subtitles in popular media players could lead to remote compromise

Email not displaying correctly? View it in your browser.

CSO

CSO Salted Hash

May 25, 2017
Featured Image

Few firms will be ready for new European breach disclosure rules, fines

The new European General Data Protection Regulation goes into effect next May, with onerous notification requirements and high penalties, but a year might not be enough for firms to get ready Read More

Twitter Facebook LinkedIn

Your Must-Read Stories

Malicious subtitles in popular media players could lead to remote compromise
Amazon's 2-For-1 Dash Button Deal Actually Nets You Two Free Dash Buttons - Deal Alert
APT3 hackers linked to Chinese intelligence

Webcast: CA Technologies

Live Event: 3rd Annual DevOps Virtual Summit

Today's business leaders are transforming software delivery and building significant competitive advantage by successfully leveraging agile and DevOps methodologies in concert. Having spent countless hours recasting culture, advancing innovation and engaging greater levels of automation, related best practices now exist to be shared and further refined by all. Expanding DevOps adoption from pockets of early adoption across the entire software delivery lifecycle is the challenge that most organizations now face. Join us live March 7th for this virtual summit and get the real-world expertise and hands-on guidance available only from the industry's leading practitioners and DevOps evangelists. Read More

Thumbnail Image

Malicious subtitles in popular media players could lead to remote compromise

Researchers at Check Point have discovered a flaw affecting several popular media players, which stems from how they process subtitles. If exploited, an attacker could gain remote access to the victim's system. It's estimated that nearly 200 million video players and streaming apps use the vulnerable software. Read More

Thumbnail Image
DealPost

Amazon's 2-For-1 Dash Button Deal Actually Nets You Two Free Dash Buttons - Deal Alert

Right now if you buy a Dash Button, Amazon will give you one for free in honor of National Pet Week. But they're still giving you the $4.99 credit after the first time you use it. That's two Dash buttons for free, really. Read More

Thumbnail Image

APT3 hackers linked to Chinese intelligence

The APT3 hacker group, which has been attacking government and defense industry targets since 2010, has been linked to the Chinese Ministry of State Security, according to a report by Recorded Future. Read More

Video/Webcast: Veritas

365 Days and Counting... Your Playbook for Accelerating GDPR Readiness

The countdown has started - the General Data Protection Regulation (GDPR) takes effect May 25, 2018. Are you ready? Hear what organizations of all sizes are doing to prepare themselves to get GDPR-ready. Attend this 25-minute roundtable for clear guidance on building a strong GDPR strategy for your organization. Read More

Top 5 Stories

1. Microsoft patches Windows XP and Server 2003 due to WannaCrypt attacks
2. Dealing with WannaCry on Monday morning, and the days ahead
3. Did Kaspersky step in dog-doo?
4. Paying the WannaCry ransom will probably get you nothing, here's why
5. Vendors approve of NIST password draft

Editor's Picks

1. 15 hot, new security and privacy apps for Android and iOS
2. How to get creative with your penetration testing
3. 5 security bolstering strategies that won't break the bank
4. What's wrong with this picture? The NEW clean desk test
5. Inside an attack by the Syrian Electronic Army
Twitter Facebook LinkedIn Google+

You are currently subscribed to CSO Salted Hash as newsletter@newslettercollector.com.

Unsubscribe from this newsletter | Manage your subscriptions | Subscribe | Privacy Policy

Learn more about INSIDER

Copyright (C) 2017 CSO Online Media Group, 492 Old Connecticut Path, Framingham, MA 01701

Please do not reply to this message.
To contact someone directly, send an e-mail to online@csoonline.com.