BEC Hack Cons Catholic Church Out of $1.75 Million

Kapersky Labs - Tue, 30/04/2019 - 17:21
An Ohio parish lost a whopping $1.75 million after attackers breached two employees' email accounts - and then tricked other employees into sending wire transfers to a fraudulent bank account.
Categories: News

Oh dear. Huawei enterprise router 'backdoor' was Telnet, sighs Vodafone

The Register - Tue, 30/04/2019 - 15:37
We all want to see hard proof of espionage. This is absolutely not it

A claimed "backdoor" in Huawei routers used in the core of Vodafone Italy's 3G network was, in fact, a routine implementation of Telnet.…

Categories: News

Chinese dev jailed and fined for posting DJI's private keys on Github

The Register - Tue, 30/04/2019 - 08:10
Hapless soul repents 'unintentionally' sharing drone makers privates in repo

A Chinese software developer who previously expressed suicidal thoughts has been jailed after putting one of drone company DJI's AES private keys onto Github in plain text.…

Categories: News

From Docker Hub hack to Facebook's burglar-friendly API to phone fingerprint bypasses...

The Register - Tue, 30/04/2019 - 02:21
...let us bring you up to date on infosec bits and bytes

Roundup  Here's your quick-fire summary of recent computer security news.…

Categories: News

America's anti-hacking laws are so loose, even Donald Trump Jr broke them. So, what do we do about it?

The Register - Mon, 29/04/2019 - 23:21
Click to read to disappointingly logical answer

Comment  The President's son Donald Trump Jr broke the Computer Fraud and Abuse Act, a US federal law.…

Categories: News

Malware Infests Popular Pirate Streaming Hardware

Kapersky Labs - Mon, 29/04/2019 - 21:31
Hardware that supports pirated video streaming content comes packed with malware.
Categories: News

MuddyWater APT Hones an Arsenal of Custom Tools

Kapersky Labs - Mon, 29/04/2019 - 21:04
The attack group shows a moderate level of sophistication, but the stage is set for MuddyWater to take things to the next level.
Categories: News

Apple Defends Parental Control App Removal Amid Backlash

Kapersky Labs - Mon, 29/04/2019 - 20:26
After facing criticism for removing or restricting several parental control apps over the past year, Apple cited security and privacy reasons.
Categories: News

Docker Hub Hack Affects 190K Accounts

Kapersky Labs - Mon, 29/04/2019 - 15:13
Github and Bitbucket tokens for Docker autobuilds are also impacted.
Categories: News

2 Million IoT Devices Vulnerable to Complete Takeover

Kapersky Labs - Mon, 29/04/2019 - 14:37
Millions of security cameras, baby monitors and "smart" doorbells are open to hijack - and no solution is currently available.
Categories: News

Brit events and info biz Incisive Media admits open server port may have left readers deets exposed

The Register - Mon, 29/04/2019 - 12:59
Home of CRN UK, Computing and others warn remaining readers to update their freakin' passwords

UK events and publishing outfit Incisive Media today urged subscribers to change their account passwords after it found an open port on a server had left it exposed to a buffer overflow or another remotely exploitable vuln.…

Categories: News

Train up to navigate the diverse, chaotic cyber security landscape at SANS Munich

The Register - Mon, 29/04/2019 - 09:25
Join the institute this June to up your cyber game

Promo  High-profile cases of successful attacks on critical industrial control systems show the growing importance of protecting your organization or facing a turbulent future. Malware delivered by ever more creative methods can find its way to plant floors, encrypting critical files or wiping them altogether.…

Categories: News

Powershell, the Gandcrab infection and the long-forgotten server

The Register - Mon, 29/04/2019 - 09:04
GCHQ offshoot shares infosec hair-raisers

CyberUK 2019  If your hair isn't already grey enough, GCHQ staff have revealed a handful of infosec incidents that, in their words, "surprised us".…

Categories: News

Users Urged to Disable WordPress Plugin After Unpatched Flaw Disclosed

Kapersky Labs - Fri, 26/04/2019 - 20:44
Yet another WordPress plugin vulnerability has put thousands of websites at risk.
Categories: News

News Wrap: Amazon Echo Privacy, Facebook FTC Fines and Biometrics Regulation

Kapersky Labs - Fri, 26/04/2019 - 18:57
On this week's Threatpost news wrap, the team discusses Facebook's FTC fine for its data security practices, a report that Amazon is collecting Echo users' geolocation data, and more.
Categories: News

GoDaddy Shutters 14,000 Subdomains Tied to ‘Snake Oil’ Scams

Kapersky Labs - Fri, 26/04/2019 - 18:47
GoDaddy worked with researchers to shut down 15,000 domain-shadowing websites tied to bogus affiliate marketing offers promoted via spam campaigns.
Categories: News

Critical Flaws in Sierra Wireless 5G Gateway Allow RCE, Command Injection

Kapersky Labs - Fri, 26/04/2019 - 17:12
The wireless gateways are used in PoS, industrial IoT and distributed enterprise settings.
Categories: News

Facial Recognition ‘Consent’ Doesn’t Exist, Threatpost Poll Finds

Kapersky Labs - Fri, 26/04/2019 - 13:10
Half of Threatpost readers surveyed in a recent poll don't believe that consent realistically exists when it comes to facial recognition.
Categories: News

Thank you, your DNA data will help secure your… oh dear, we've lost that too

The Register - Fri, 26/04/2019 - 10:20
Er, do you have your original password written down somewhere?

Something for the Weekend, Sir?  I have been propositioned at midnight at a hotel door. "What's your room number?"…

Categories: News

There's NordVPN odd about this, right? Infosec types concerned over strange app traffic

The Register - Fri, 26/04/2019 - 09:50
Firm explains but security folk not appy with clarifications

Weird things are afoot with NordVPN's app and the traffic it generates - Reg readers have spotted it contacting strange domains in the same way compromised machines talk to botnets' command-and-control servers.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News