Month: November 2017

Developers Can Do More to Up Their Security Game: Veracode

Read full post Developers can play a vital role in accelerating the adoption of AppSec practices, security vendor says.

/ November 27, 2017

New BankBot Version Avoids Detection in Google Play — Again

Read full post Mobile banking Trojan BankBot uses a unique payload downloading technique to skip past Google Play Protect.

/ November 27, 2017

Uber’s Security Slip-ups: What Went Wrong

Read full post The ride-sharing company’s decisions leading to a 2016 data breach and its handling of the incident should serve as a cautionary tale for enterprises facing a breach.

/ November 27, 2017

McAfee Looks to Cloud with Skyhigh Acquisition

Read full post McAfee agrees to buy CASB provider Skyhigh Networks, demonstrating a strong focus on cloud security.

/ November 27, 2017

The end of net neutrality draws near

Read full post Will it mean a newly vibrant and competitive internet or an internet for the rich?

/ November 27, 2017

How one man could have deleted any image on Facebook

Read full post Pouya Darabi found how to embed other people’s images in a Facebook poll so that deleting *his* poll also deleted *their* files.

/ November 27, 2017

Thoma Bravo to Acquire Barracuda Networks for $1.6 billion

Read full post The cloud email security and management company accepts buyout offer as a means to accelerate its growth.

/ November 27, 2017

Cyber Forensics: The Next Frontier in Cybersecurity

Read full post We can now recover evidence from the RAM on a cellphone, even if the account is locked, and use it to prosecute a case.

/ November 27, 2017

8 Low or No-Cost Sources of Threat Intelligence

Read full post Here’s a list of sites that for little or no cost give you plenty of ideas for where to find first-rate threat intelligence.

/ November 27, 2017

Facebook tool will reveal if you were fooled by Russian propaganda

Read full post Facebook says that Russia-backed posts reached 126 million Americans during the 2016 US election.

/ November 27, 2017

Imgur breached back in 2014, wasn’t storing your passwords properly

Read full post Photo-sharing site Imgur just found out it was breached back in 2014 – and back then it wasn’t storing your passwords securely.

/ November 27, 2017

Monday review – the hot 22 stories of the week

Read full post From the all-seeing eye watching you online and the Uber data breach to Androids secretly reporting your location, and more!

/ November 27, 2017

Imgur hackers stole 1.7 million email addresses and passwords

Read full post Image-hosting website Imgur discovered at the end of last week that hackers broke into its systems in 2014, and stole the account details of some 1.7 million registered users. The post Imgur hackers stole 1.7 million email...

/ November 26, 2017

Imgur confirms email addresses, passwords stolen in 2014 hack

Read full post The hackers stole email addresses and passwords.

/ November 24, 2017

A gargantuan all-seeing eye is watching you on popular websites

Read full post Some websites are recording everything you do, what could go wrong?

/ November 24, 2017

Alleged HBO hacker is an Iranian the FBI can’t arrest

Read full post Is publicly pursuing a man beyond reach a cry in the dark?

/ November 24, 2017

3 simple tips to stay off the hook this phishing season

Read full post We’re entering peak retail season, so here are three simple tips to help convince your friends and family to Stop – Think – Connect…

/ November 24, 2017

New reality in European banking looming large: the lowdown

Read full post At the heart of the regulation is the requirement for banks to allow licensed third-party providers (TPPs) of financial services to access securely their customer-account data, as long as the customer has given their prior consent. The...

/ November 24, 2017

Cloud storage for password managers – are you for or against?

Read full post Is the cloud the right place to keep your passwords?

/ November 24, 2017

Busy Browsers attract Black Friday Burglars

Read full post Just as in past decades when cash drawers and bank vaults were targeted for theft, today’s e-shops and online banks have fallen under the scope of cybercriminals. Their “digital-focus” is just an evolutionary step beyond robbing stagecoaches...

/ November 24, 2017

Tether hits back after $31m cryptocurrency hack

Read full post The money isn’t out of reach, yet

/ November 23, 2017

Worries over Intel’s Mangement Engine grow after new flaws found

Read full post What is the world’s most widely-used operating system on new PCs? Windows? Guess again.

/ November 23, 2017

Androids caught secretly reporting location data regardless of opt-out

Read full post Androids have been collecting our location data and sending it to Google when connected to the internet

/ November 23, 2017

Mr. Robot eps3.6_fredrick+tanya.chk – the security review

Read full post What’s new in Mr. Robot’s world?

/ November 23, 2017

Smartphone adoption among older Americans continues growth spurt

Read full post Some three-quarters of users up to 34 years of age reported that they “definitely” or “probably” use their phone too much. Almost half (47 percent) of all ages said they make a conscious effort to pare back...

/ November 23, 2017

HP patches severe code execution bug in enterprise printers

Read full post The vulnerability could be exploited to perform remote code execution.

/ November 23, 2017

US indicts alleged culprit of HBO hack-and-extort campaign

Read full post Between approximately July 23 and 29, Mesri reportedly engaged in his blackmail campaign. After the TV network didn’t pay the required $6 million in digital cryptocurrency, he began leaking portions of the stolen data on July 30....

/ November 23, 2017

3 Pillars of Cyberthreat Intelligence

Read full post Strong enterprise cybersecurity programs must be a built on a framework that incorporates strategic, operational, and tactical leadership and goals.

/ November 22, 2017

Time to Pull an Uber and Disclose your Data Breach Now

Read full post There is never a good time to reveal a cyber attack. But with EU’s GDPR looming, the fallout is only going to get harder and more expensive if you wait.

/ November 22, 2017

What we know about Uber (so far, anyway) [VIDEO]

Read full post Uber is the data breach story of the week that looks set to become the saga of the month/quarter/year/decade. Here’s the story so far…

/ November 22, 2017

Uber Paid Hackers $100K to Conceal 2016 Data Breach

Read full post The ride-sharing company has confirmed an October 2016 data breach that compromised 57 million accounts.

/ November 22, 2017

Intel Firmware Flaws Found

Read full post Another big firmware security issue affecting Intel processors, requires OEM updates.

/ November 22, 2017

Black Friday shopping? “A little delay goes a long way!”

Read full post Want to chase those bargains on Black Friday? Here’s how to do it without falling over yourself in haste…

/ November 22, 2017

Samsung Pay Leaks Mobile Device Information

Read full post Researcher at Black Hat Europe will show how Samsung Pay’s security falls short and ways attackers could potentially bypass it.

/ November 22, 2017

Google and Twitter turn their backs on Russian media over fake news

Read full post Russia Today and Sputnik swear up and down they’re legitimate news sources. The FBI, and former employees, beg to differ.

/ November 22, 2017

Girls Inc. in the spotlight: Nonprofit Pitch Fest contest grand prize winner

Read full post Girls Inc. of San Diego County was founded 50 years ago as a local affiliate of the national Girls Inc. The national organization was started as the Girls Club of America more than 150 years ago, to...

/ November 22, 2017

Chromebook exploit earns researcher second $100k bounty

Read full post A year on from Google’s last $100,000 bug bounty payout, the same researcher has found a second critical persistent compromise of Chrome OS.

/ November 22, 2017

Apple served with warrant for Texas mass killer’s iCloud data

Read full post Texas police are looking for any data stored by gunman Devin Patrick Kelley, who was found with an iPhone after he killed himself.

/ November 22, 2017

Uber suffered massive data breach, then paid hackers to keep quiet

Read full post Uber suffered a data breach in 2016, but didn’t tell anyone – instead, it seems the company paid the hackers to help to hush it up.

/ November 21, 2017

New OWASP Top 10 List Includes Three New Web Vulns

Read full post But dropping cross-site request forgeries from list is a mistake, some analysts say.

/ November 21, 2017