🛡 Cybersecurity & Privacy 🛡 - News

Apple Pledges Privacy, Beefs Up Security

The company hits back at the data economy - and fellow tech giants Facebook and Google - by announcing its own single sign-on service. A host of other iterative security improvements are on their way as well.

50 views23:44

Naked Security – Sophos News

⚠ Microsoft’s battle with SandboxEscaper zero days turns into grim Groundhog Day ⚠

Why is SandboxEscaper releasing vulnerabilities in such an irresponsible way? It matters not - Microsoft must patch what’s in front of it whatever the backstory.

📖 Read

via "Naked Security".

Sophos News

56 views12:03

SQL Injection Attacks Represent Two-Third of All Web App Attacks

🕴 SQL Injection Attacks Represent Two-Third of All Web App Attacks 🕴

When Local File Inclusion attacks are counted, nearly nine in 10 attacks are related to input validation failures, Akamai report shows.

📖 Read

via "Dark Reading: ".

Darkreading

When Local File Inclusion attacks are counted, nearly nine in 10 attacks are related to input validation failures, Akamai report shows.

54 views12:04

🔐 Blockchain for drugs: IBM, Walmart pilot prescription medication tracking 🔐

KPMG and Merck are among the companies that will collaborate in an FDA program to evaluate using blockchain to protect pharmaceutical products.

📖 Read

via "Security on TechRepublic".

Blockchain for drugs: IBM, Walmart pilot prescription medication tracking

KPMG and Merck are among the companies that will collaborate in an FDA program to evaluate using blockchain to protect pharmaceutical products.

45 views12:27

🔐 Blockchain projects: 7 mistakes to avoid 🔐

Successful blockchain projects require CIOs to be aware of the technology's capabilities and limitations, according to Gartner.

📖 Read

via "Security on TechRepublic".

Blockchain projects: 7 mistakes to avoid

Successful blockchain projects require CIOs to be aware of the technology's capabilities and limitations, according to Gartner.

44 views12:52

🕴 Black Hat Q&A: Defending Against Cheaper, Accessible 'Deepfake' Tech 🕴

ZeroFox's Matt and Mike Price discuss their work researching cybersecurity responses to the rising tide of 'deepfake' videos.

📖 Read

via "Dark Reading: ".

Black Hat Q&A: Defending Against Cheaper, Accessible 'Deepfake' Tech

ZeroFox's Matt and Mike Price discuss their work researching cybersecurity responses to the rising tide of 'deepfake' videos.

40 views13:09

High-Severity Cisco Flaw in IOS XE Enables Device Takeover

❌ High-Severity Cisco Flaw in IOS XE Enables Device Takeover ❌

A high-severity flaw could give attackers full control of Cisco routers or switches.

📖 Read

via "Threatpost".

Threat Post

A high-severity flaw could give attackers full control of Cisco routers or switches.

37 views14:03

Vim devs fix system-pwning text editor bug

⚠ Vim devs fix system-pwning text editor bug ⚠

Diehard text editor users everywhere breathed a sigh of relief this week as the open source community fixed a bug in one of the most venerable *nix programs: Vim.

📖 Read

via "Naked Security".

Naked Security

Diehard text editor users everywhere breathed a sigh of relief this week as the open source community fixed a bug in one of the most venerable *nix programs: Vim.

35 views14:13

🔐 Ransomware rebounding in popularity as cryptojacking loses steam 🔐

Hackers are going back to the tried-and-true method of simply demanding ransoms be paid in cryptocurrencies, rather than trying to covertly mine them.

📖 Read

via "Security on TechRepublic".

Ransomware rebounding in popularity as cryptojacking loses steam

Hackers are going back to the tried-and-true method of simply demanding ransoms be paid in cryptocurrencies, rather than trying to covertly mine them.

35 views14:27

Backpacker claims to find a network of hidden webcams in farm stay

⚠ Backpacker claims to find a network of hidden webcams in farm stay ⚠

In the bug repellent gizmo, in the shower, in the little birds glued to the footboard—all hiding webcams, alleges the Dutch backpacker.

📖 Read

via "Naked Security".

Naked Security

In the bug repellent gizmo, in the shower, in the little birds glued to the footboard—all hiding webcams, alleges the Dutch backpacker.

38 views14:33

Facebook keeps deepfake of Mark Zuckerberg

⚠ Facebook keeps deepfake of Mark Zuckerberg ⚠

"Whoever controls the data, controls the future," says the evil Zuck, who, according to the platform's current policy, won't be taken down.

📖 Read

via "Naked Security".

Naked Security

“Whoever controls the data, controls the future,” says the evil Zuck, who, according to the platform’s current policy, won’t be taken down.

38 views14:43

🕴 The Rise of "Purple Teaming" 🕴

The next generation of penetration testing represents a more collaborative approach to old fashioned Red Team vs. Blue Team.

📖 Read

via "Dark Reading: ".

The Rise of Purple Teaming

The next generation of penetration testing represents a more collaborative approach to old fashioned Red Team vs. Blue Team.

44 views14:44

Telegram CEO Fingers China State Actors for DDoS Attack

❌ Telegram CEO Fingers China State Actors for DDoS Attack ❌

Durov took to Twitter to hint that Beijing tried to take Telegram offline to disrupt the Hong Kong protests.

📖 Read

via "Threatpost".

Threat Post

Durov took to Twitter to hint that Beijing tried to take Telegram offline to disrupt the Hong Kong protests.

52 views15:13

🕴 The Rise of "Purple Teaming" 🕴

The next generation of penetration testing represents a more collaborative approach to old fashioned Red Team vs. Blue Team.

📖 Read

via "Dark Reading: ".

The Rise of 'Purple Teaming'

The next generation of penetration testing represents a more collaborative approach to old fashioned Red Team vs. Blue Team.

44 views15:54

🔐 Magecart attack: What it is, how it works, and how to prevent it 🔐

Learn how to combat this web-based card skimming attack.

📖 Read

via "Security on TechRepublic".

Magecart attack: What it is, how it works, and how to prevent it

Learn how to combat this web-based card skimming attack.

43 views16:17

🕴 Google Adds Two-Factor Authentication For Its Apps on iOS 🕴

Android-based two-factor authentication now works for Google applications on iPad and iPhone.

📖 Read

via "Dark Reading: ".

Google Adds Two-Factor Authentication For Its Apps on iOS

Android-based two-factor authentication now works for Google applications on iPad and iPhone.

40 views16:34

Business email compromise attacks are growing in prevalence and creativity. Here's a look at how they work, the latest stats, and some recent horror stories.

🕴 7 Truths About BEC Scams 🕴

Business email compromise attacks are growing in prevalence and creativity. Here's a look at how they work, the latest stats, and some recent horror stories.

📖 Read

via "Dark Reading: ".

Darkreading

7 Truths About BEC Scams

39 views17:54

🕴 The CISO's Drive to Consolidation 🕴

Cutting back on the number of security tools you're using can save money and leave you safer. Here's how to get started.

📖 Read

via "Dark Reading: ".

The CISO's Drive to Consolidation

Cutting back on the number of security tools you're using can save money and leave you safer. Here's how to get started.

40 views18:09

ATENTION‼ New - CVE-2018-12147

Insufficient input validation in HECI subsystem in Intel(R) CSME before version 11.21.55, Intel? Server Platform Services before version 4.0 and Intel? Trusted Execution Engine Firmware before version 3.1.55 may allow a privileged user to potentially enable escalation of privileges via local access.

📖 Read

via "National Vulnerability Database".

35 views18:35

🔐 Hospital medical equipment contains potentially lethal vulnerability 🔐

A vulnerability in the Windows CE-powered Alaris Gateway Workstation allows attackers to modify dosage rates for infusion pumps, which can have lethal results.

📖 Read

via "Security on TechRepublic".

Hospital medical equipment contains potentially lethal vulnerability

A vulnerability in the Windows CE-powered Alaris Gateway Workstation allows attackers to modify dosage rates for infusion pumps, which can have lethal results.

38 views18:37