News Wrap: Facebook Regulation, Verizon DBIR, Hidden Airbnb Cameras

Kapersky Labs - Fri, 10/05/2019 - 19:48
From a creepy Airbnb incident to Verizon's Data Breach Investigations Report, Threatpost editors break down the top privacy and security stories for the week ended May 10.
Categories: News

Another remote-code execution hole in top database engine SQLite: How it works, and why not to <i>totally</i> freak out

The Register - Fri, 10/05/2019 - 18:30
You know the drill: Patch and stop using C

Cisco Talos researchers have uncovered an SQLite use-after-free() vulnerability that could allow an attacker to, in theory, remotely execute code on an affected device.…

Categories: News

The WannaCry Security Legacy and What’s to Come

Kapersky Labs - Fri, 10/05/2019 - 17:53
The WannaCry attack proved pivotal, changing the way organizations go about securing their environments.
Categories: News

Nvidia Warns Windows Gamers on GPU Driver Flaws

Kapersky Labs - Fri, 10/05/2019 - 16:43
Nvidia has patched three vulnerabilities in its Windows GPU display driver that could enable information disclosure, denial of service and privilege escalation.
Categories: News

Symantec boss Greg Clark exits biz amid dismal financials

The Register - Fri, 10/05/2019 - 15:30
Troubled security house keeps up trend of sudden resignations

Greg Clark, CEO and president of Symantec, has "stepped down" suddenly and with no permanent replacement lined up, just as his predecessor did.…

Categories: News

ThreatList: Nigerian Cybercrime Surged 54 Percent in 2018

Kapersky Labs - Fri, 10/05/2019 - 13:45
Nigerian scam groups launched even more attacks in 2018 - and used more complex types of malware to reach more victims.
Categories: News

Just in time for the Wiki-end: Chelsea Manning released from prison

The Register - Fri, 10/05/2019 - 13:10
Might be back inside soon

Chelsea Manning has been released from prison after 62 days for refusing to testify to an American grand jury investigating WikiLeaks.…

Categories: News

Who pwns the watchmen? Maybe Russians selling the source code for three US antivirus vendors

The Register - Fri, 10/05/2019 - 12:01
Unnamed security shops said to have lost source code

A Russian hacking outfit says it has stolen confidential data from a trio of US antivirus companies.…

Categories: News

Double-sided printing data ballsup leaves insurance giant Chubb with egg on its face

The Register - Fri, 10/05/2019 - 09:36
Firm ever so sorry, takes security of info seriously, vows not to do it again etc

Insurer Chubb scored a privacy own goal recently when a double-sided printing error on bulk mailers sent to customers about a policy document change contained a stranger's personal details on one side of the sheet.…

Categories: News

Uncle Sam accuses Chinese pair of romping through Anthem's servers for almost a year

The Register - Fri, 10/05/2019 - 00:30
Fujie charged with killing them softly with his scripts. And by them, we mean, the health insurance giant's computers

US prosecutors today formally accused two people of being part of a Chinese hacking crew responsible for one of the biggest cyber-heists in American history.…

Categories: News

‘Unhackable’ Biometric USB Offers Up Passwords in Plain Text

Kapersky Labs - Thu, 09/05/2019 - 22:08
A simple Wireshark analysis was enough to subvert the gadget, which uses iris identification to protect the drive.
Categories: News

Chinese Hackers Behind 2015 Anthem Data Breach Indicted

Kapersky Labs - Thu, 09/05/2019 - 22:07
Two have been indicted in the 2015 massive data breach of health insurer Anthem, which compromised the data of at least 78 million customers.
Categories: News

Air Force intel bod Daniel Hale charged with 'leaking drone documents' to journo

The Register - Thu, 09/05/2019 - 21:41
Soldier's pilfered docs provided basis for drone news reports

A former Air Force intelligence analyst who fed documents to the press detailing the US military's secret drone programs has been indicted on five criminal charges.…

Categories: News

Hackers Take Over IoT Devices to ‘Click’ on Ads

Kapersky Labs - Thu, 09/05/2019 - 20:08
A video interview and Q&A with IoT specialist Dan Demeter of Kaspersky Lab.
Categories: News

Alpine Linux Docker Images Shipped for 3 Years with Root Accounts Unlocked

Kapersky Labs - Thu, 09/05/2019 - 18:06
Alpine Linux Docker images available via the Docker Hub contained a critical flaw allowing attackers to authenticate on systems using the root user and no password.
Categories: News

Serious Phar Flaw Allows Arbitrary Code Execution on Drupal

Kapersky Labs - Thu, 09/05/2019 - 17:00
Drupal, Typo3 and Joomla are all impacted by the bug.
Categories: News

US minister invokes Maggie Thatcher, says she would have halted Huawei 5G rollout

The Register - Thu, 09/05/2019 - 16:05
Mike Pompeo reaches beyond grave to read Iron Lady's mind in ongoing security spat

Margaret Thatcher would not let Huawei build Britain's 5G networks, US foreign secretary Mike Pompeo claimed yesterday as British ministers suggested the rollout may be delayed for security reasons.…

Categories: News

Researchers in the Dark on Powerful LightNeuron Malware, for Years

Kapersky Labs - Thu, 09/05/2019 - 15:49
LightNeuron is the first to target Microsoft Exchange transport agents -- and is used as a hub for major Turla APT espionage efforts.
Categories: News

Enter the minds of hackers at the SANS Pen Test Hackfest Europe

The Register - Thu, 09/05/2019 - 09:42
Add new skills to your security arsenal to stay one step ahead

Promo  Organisations can no longer ignore the growing problem of cybercrime, with ransomware affecting enterprises of all sizes while state-sponsored adversaries and others attempt to obtain access to their most critical data.…

Categories: News

Eggheads confirm: Rampant Android bloatware a privacy and security hellscape

The Register - Thu, 09/05/2019 - 08:05
Bundled software not just an annoyance, it's also a risk

The apps bundled with many Android phones are presenting threats to security and privacy greater than most users think.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News