News

Maker insists the privacy cock-up has been fixed, mostly

An undisclosed number of Nokia 7 Plus smartphones have been caught sending their identification numbers to a domain owned by a Chinese telecom firm.…

US govt sounds alarm over wireless comms, caveats apply

Medical gear maker Medtronic is once again at the center of a hacker panic storm. This time, a number of its heart defibrillators, implanted in patients' chests, can, in certain circumstances, be wirelessly hijacked and reprogrammed, perhaps to lethal effect.…

Study found Android software slinging deets all over the place

Folks using healthcare-related Android apps: after you've handed over your private details to that software, do you know where it is sending your data? If you don't, nobody should blame you. It turns out it can be a complicated and obfuscated affair.…

Credentials logged for years is antisocial network's latest Zuck-up

Facebook today admitted it stored "some" of its addicts' account passwords in a plaintext readable format. For "some", read hundreds of millions.…

Store policy removed key features, alleges complaint

Antivirus vendor Kaspersky Lab has lodged a complaint about Apple with the Russian competition authority.…

The balancing act of strategy and tactics revealed

Promo  What does it take to reach a leading role in the security field? There are different paths to take to get there: some go directly from analyst to leadership, others have a more technical background in general IT, or excellent tactical skills acquired in a consultancy or vendor role.…

Sort-of union for bobbies has triggered criminal investigation

The Police Federation of England and Wales (PFEW), a sort-of trade union for police workers, has been battling to contain a ransomware strike on the group's computer systems, it confessed this afternoon.…

New entry in network attack hit parade: That 2017 Cisco WebEx flaw you patched already (right?)

Attacks targeting a years-old – and patched – vulnerability in a Chrome extension for Cisco's WebEx are on the increase, according to security outfit WatchGuard.…

Redmond's anti-malware now coming to a Mac near you

Microsoft nudged the Windows brand further out of the limelight today by thwacking its anti-malware package with the rebranding stick. Behold, Microsoft Defender ATP.…

Training classes will cover all security angles

Promo  As data thieves and hackers become more inventive, and more destructive, learning how to protect networks from attack and threats is zooming up organizations' lists of priorities.…

You're free to bash the Bishap

A man has pleaded guilty in America to a single felony count for his role in a $3m tech support scam operation.…

Researchers said 1 million user sessions could have been exposed to the campaign, which downloads the Shlayer trojan.

Experts from Gartner, Lookout and Google talk enterprise mobile security in this webinar replay.

Kit-Kat API whacked, don't give hackers your phone. This WebView came rolling home

Smartphones and other gadgets running Android 4.4 or later contain a bug that can be exploited by rogue apps to steal website login tokens and spy on owners' browsing histories.…

The campaign, codenamed “Bad Tidings,” has sought out victims’ credentials with clever fake landing pages pretending to be the Saudi Arabian Ministry of Interior’s e-Service portal.

Despite the 2018 crackdown on Fin7, the cybercrime group has been ramping up its efforts with two new malware samples and an attack panel.

Until a report this week, Uber's Surfcam's use was thought to be limited to incidents uncovered in Singapore in 2017. For its part, Uber denies that it's a "spyware."

Fed bust of massive attack network caused traffic loads to plummet in Q4

The FBI's takedown of a group of prolific DDoS-for-hire websites has single-handedly helped to drop attack levels globally.…

A long-quiet malware family has been spotted targeting financial technology firms, armed with new obfuscation techniques to avoid detection.

Some of the flaws would allow remote code-execution.