β Drive away a Tesla today (even if it isnβt yours) β
π Read
via "Naked Security".
Raspberry Pi's processing power versus Tesla's Model X cryptography - victory for the little guy!π Read
via "Naked Security".
Naked Security
Drive away a Tesla today (even if it isnβt yours)
Raspberry Piβs processing power versus Teslaβs Model S cryptography β victory for the little guy!
ATENTIONβΌ New - CVE-2016-0715
π Read
via "National Vulnerability Database".
Pivotal Cloud Foundry Elastic Runtime version 1.4.0 through 1.4.5, 1.5.0 through 1.5.11 and 1.6.0 through 1.6.11 is vulnerable to a remote information disclosure. It was found that original mitigation configuration instructions provided as part of CVE-2016-0708 were incomplete and could leave PHP Buildpack, Staticfile Buildpack and potentially other custom Buildpack applications vulnerable to remote information disclosure. Affected applications use automated buildpack detection, serve files directly from the root of the application and have a buildpack that matched after the Java Buildpack in the system buildpack priority when Java Buildpack versions 2.0 through 3.4 were present.π Read
via "National Vulnerability Database".
π΄ The Key to Stealing a Tesla Model S π΄
π Read
via "Dark Reading: ".
A team of hackers finds it's possible to steal a Tesla Model S by cloning the key fob.π Read
via "Dark Reading: ".
Dark Reading
The Key to Stealing a Tesla Model S
A team of hackers finds it's possible to steal a Tesla Model S by cloning the key fob.
β Millions of Records Exposed in Veeam Misconfigured Server β
π Read
via "The first stop for security news | Threatpost ".
Exposed data included names, emails addresses and IP addresses.π Read
via "The first stop for security news | Threatpost ".
Threat Post
Millions of Records Exposed in Veeam Misconfigured Server
Exposed data included names, emails addresses and IP addresses.
β Bad Actors Sizing Up Systems Via Lightweight Recon Malware β
π Read
via "The first stop for security news | Threatpost ".
These stealthy downloaders initially infect systems and then only install additional malware on systems of interest.π Read
via "The first stop for security news | Threatpost ".
Threat Post
Bad Actors Sizing Up Systems Via Lightweight Recon Malware
These stealthy downloaders initially infect systems and then only install additional malware on systems of interest.
π Here's what happens during a social engineering cyber-attack π
π Read
via "Security on TechRepublic".
BioCatch's VP Frances Zelazny explains each step of social engineering hacks, low-tech cyberattacks that have a big impact on business.π Read
via "Security on TechRepublic".
TechRepublic
Here's what happens during a social engineering cyber-attack
BioCatch's VP Frances Zelazny explains each step of social engineering hacks, low-tech cyberattacks that have a big impact on business.
β’ Microsoft patches recent ALPC zero-day in September 2018 Patch Tuesday updates β’
π Read
via "Latest topics for ZDNet in Security".
Microsoft engineers patch 62 vulnerabilities, including 17 rated 'Critical'π Read
via "Latest topics for ZDNet in Security".
ZDNET
Microsoft patches recent ALPC zero-day in September 2018 Patch Tuesday updates
Microsoft engineers patch 62 vulnerabilities, including 17 rated 'Critical'
π΄ Mirai, Gafgyt Botnets Resurface with New Tricks π΄
π Read
via "Dark Reading: ".
A new version of Mirai exploits the Apache Struts flaw linked to the Equifax breach, while Gafgyt targets an old flaw in SonicWall.π Read
via "Dark Reading: ".
Darkreading
Mirai, Gafgyt Botnets Resurface with New Tricks
A new version of Mirai exploits the Apache Struts flaw linked to the Equifax breach, while Gafgyt targets an old flaw in SonicWall.
β Microsoft Patches Three Actively Exploited Bugs as Part of Patch Tuesday β
π Read
via "The first stop for security news | Threatpost ".
Microsoft's September Patch Tuesday release tackles three vulnerabilities actively being exploited in the wild.π Read
via "The first stop for security news | Threatpost ".
Threat Post
Microsoft Patches Actively Exploited Bug as Part of Patch Tuesday
Microsoftβs September Patch Tuesday release tackles a vulnerability actively being exploited in the wild.
π΄ Microsoft Patches 61 Vulns, One Under Active Attack π΄
π Read
via "Dark Reading: ".
CVE-2018-8440, which was publicly disclosed on Twitter in August, has already been used in a malware campaign.π Read
via "Dark Reading: ".
β Threatlist: Email Attacks Surge, Targeting Execs β
π Read
via "The first stop for security news | Threatpost ".
Overall, the number of email fraud attacks per targeted company rose 25 percent from the previous quarter (to 35 on average) and 85 percent from the year-ago quarter.π Read
via "The first stop for security news | Threatpost ".
Threat Post
Threatlist: Email Attacks Surge, Targeting Execs
Overall, the number of email fraud attacks per targeted company rose 25 percent from the previous quarter (to 35 on average) and 85 percent from the year-ago quarter.
β’ Judge rules cryptocurrency ICO scam case falls under securities law β’
π Read
via "Latest topics for ZDNet in Security".
Judge rules that initial coin offerings are "securities" and SEC can go after ICO scammers for securities fraud under US securities laws.π Read
via "Latest topics for ZDNet in Security".
ZDNet
Judge rules cryptocurrency ICO scam case falls under securities law | ZDNet
Judge rules that initial coin offerings are "securities" and SEC can go after ICO scammers for securities fraud under US securities laws.
β’ Australia's Consumer Data Right rules to be shaped around banking β’
π Read
via "Latest topics for ZDNet in Security".
With banking the first sector to be overhauled under the impending Consumer Data Right, the ACCC will be shaping its rules framework on the new data-sharing requirements of financial sector.π Read
via "Latest topics for ZDNet in Security".
ZDNet
Australia's Consumer Data Right rules to be shaped around banking
With banking the first sector to be overhauled under the impending Consumer Data Right, the ACCC will be shaping its rules framework on the new data-sharing requirements of financial sector.
β’ Publication of PoC in popular WordPress plugin leads to scans for vulnerable sites β’
π Read
via "Latest topics for ZDNet in Security".
WordPress security firm Defiant reports "very noticeable uptick" in scans for vulnerable plugin installations.π Read
via "Latest topics for ZDNet in Security".
ZDNet
Publication of PoC in popular WordPress plugin leads to scans for vulnerable sites | ZDNet
WordPress security firm Defiant reports "very noticeable uptick" in scans for vulnerable plugin installations.
π‘ My Health Record needs to be compared to fax-based reality: AMA π‘
π Read
via "Latest topics for ZDNet in Security".
The Australian Medical Association has said privacy experts are comparing My Health Record with a utopian ideal, not a doctor's lived reality.π Read
via "Latest topics for ZDNet in Security".
ZDNet
My Health Record needs to be compared to fax-based reality: AMA
The Australian Medical Association has said privacy experts are comparing My Health Record with a utopian ideal, not a doctor's lived reality.
π‘ Adobe patch update tackles six critical vulnerabilities in ColdFusion π‘
π Read
via "Latest topics for ZDNet in Security".
The worst vulnerabilities lead to arbitrary code execution.π Read
via "Latest topics for ZDNet in Security".
ZDNet
Adobe patch update tackles six critical vulnerabilities in ColdFusion | ZDNet
The worst vulnerabilities lead to arbitrary code execution.
π‘ Data management firm Veeam mismanages own data, leaks 445m records π‘
π Read
via "Latest topics for ZDNet in Security".
The server was reportedly available for anyone to access and lacked any form of protection against intrusion.π Read
via "Latest topics for ZDNet in Security".
ZDNet
Data management firm Veeam mismanages own data, leaks millions of records | ZDNet
Updated: The server was reportedly available for anyone to access and lacked any form of protection against intrusion.
β Vizio to send class notices through the TVs that spied on viewers β
π Read
via "Naked Security".
Millions of smart TVs may soon be forced to admit to viewers that they spied on them, and then sold their data.π Read
via "Naked Security".
Naked Security
Vizio to send class notices through the TVs that spied on viewers
Millions of smart TVs may soon be forced to admit to viewers that they spied on them, and then sold their data.
π‘ Apricorn Aegis Secure Key 3NX: The best flash drive for business users π‘
π Read
via "Latest topics for ZDNet in Security".
Business users looking for a USB flash drive that offers built-in encryption and a broad range of storage capacities, all at an affordable price need look no further.π Read
via "Latest topics for ZDNet in Security".
ZDNet
Apricorn Aegis Secure Key 3NX: The best flash drive for business users
Business users looking for a USB flash drive that offers built-in encryption and a broad range of storage capacities, all at an affordable price need look no further.
π‘ OpenSSL 1.1.1 out with TLS 1.3 support and "complete rewrite" of RNG component π‘
π Read
via "Latest topics for ZDNet in Security".
TLS 1.3 brings speed improvements and better cryptography to OpenSSL, the most popular open source cryptography library on the marketπ Read
via "Latest topics for ZDNet in Security".
ZDNET
OpenSSL 1.1.1 out with TLS 1.3 support and 'complete rewrite' of RNG component
TLS 1.3 brings speed improvements and better cryptography to OpenSSL, the most popular open source cryptography library on the market
π Why behavioral biometrics are the next hot security technology π
π Read
via "Security on TechRepublic".
Biometrics, from fingerprints to iris- and facial-recognition, are advancing, with behavioral biometrics quickly becoming the security access of choice, says BioCatch VP Frances Zelazny.π Read
via "Security on TechRepublic".
TechRepublic
Why behavioral biometrics are the next hot security technology
Biometrics, from fingerprints to iris- and facial-recognition, are advancing, with behavioral biometrics quickly becoming the security access of choice, says BioCatch VP Frances Zelazny.