🛡 Cybersecurity & Privacy 🛡 - News

Transforming 'Tangible Security' into a Competitive Advantage

Today's consumers want to see and touch security. Meeting this demand will be a win-win for everyone, from users to vendors to security teams.

64 views18:14

🕴 Capital One Breach Affects 100M US Citizens, 6M Canadians 🕴

The breach exposed credit card application data, Social Security numbers, and linked bank accounts, among other information.

📖 Read

via "Dark Reading: ".

Capital One Breach Affects 100M US Citizens, 6M Canadians

The breach exposed credit card application data, Social Security numbers, and linked bank accounts, among other information.

52 views18:19

ATENTION‼ New - CVE-2018-16871

A flaw was found in the Linux kernel's NFS implementation, all versions 3.x and all versions 4.x up to 4.20. An attacker, who is able to mount an exported NFS filesystem, is able to trigger a null pointer dereference by using an invalid NFS sequence. This can panic the machine and deny access to the NFS server. Any outstanding disk writes to the NFS server will be lost.

📖 Read

via "National Vulnerability Database".

48 views18:32

🕴 Insecure Real-Time Video Protocols Allow Hollywood-Style Hacking 🕴

Lack of security in the default settings of Internet-enabled video cameras make co-opting video feeds not just a movie-hacker technique, but a reality for millions of cameras.

📖 Read

via "Dark Reading: ".

Insecure Real-Time Video Protocols Allow Hollywood-Style Hacking

Lack of security in the default settings of Internet-enabled video cameras make co-opting video feeds not just a movie-hacker technique, but a reality for millions of cameras.

49 views18:39

New York Updates Data Breach Notification Law

🔏 New York Updates Data Breach Notification Law 🔏

The law, which updates data breach notification requirements in the state, was one of two forms of legislation signed last week to better protect New York residents against security breaches.

📖 Read

via "Subscriber Blog RSS Feed ".

Digital Guardian

The law, which updates data breach notification requirements in the state, was one of two forms of legislation signed last week to better protect New York residents against security breaches.

51 views18:48

🕴 Suffering SOC Saga Continues 🕴

New study exposes low confidence among security professionals in their security operations centers.

📖 Read

via "Dark Reading: ".

Suffering SOC Saga Continues

New study exposes low confidence among security professionals in their security operations centers.

47 views19:02

Apple iMessage Flaw Allows Remote Attackers to Read iPhone Messages

❌ Apple iMessage Allows Remote Attackers to Read iPhone Messages, Images ❌

Remote exploitation can be achieved with no user interaction.

📖 Read

via "Threatpost".

Threat Post

Remote exploitation can be achieved with no user interaction.

46 views19:29

🕴 Apple iOS Flaw Could Give Attacker Access via iMessage 🕴

Google Project Zero researchers found an iOS vulnerability that could let an attacker snoop on a victim's phone remotely.

📖 Read

via "Dark Reading: ".

Apple iOS Flaw Could Give Attacker Access via iMessage

Google Project Zero researchers found an iOS vulnerability that could let an attacker snoop on a victim's phone remotely.

38 views19:34

ATENTION‼ New - CVE-2017-18381

The installation process in Open edX before 2017-01-10 exposes a MongoDB instance to external connections with default credentials.

📖 Read

via "National Vulnerability Database".

41 views20:32

DHS Warning: Small Aircraft are Ripe for Hacking

❌ DHS Warning: Small Aircraft are Ripe for Hacking ❌

Hackers with physical access to small aircraft can easily hack the plane's CAN bus system and take control of key navigation systems.

📖 Read

via "Threatpost".

Threat Post

Hackers with physical access to small aircraft can easily hack the plane's CAN bus system and take control of the navigation systems.

49 views21:09

🕴 New AT&T Cybersecurity Managed Threat Detection and Response service 🕴

📖 Read

via "Dark Reading: ".

New AT&T Cybersecurity Managed Threat Detection and Response service

Cyber security's comprehensive news site is now an online community for security professionals, outlining cyber threats and the technologies for defending against them.

61 views21:19

🕴 Container Security Is Falling Behind Container Deployments 🕴

Organizations are increasingly turning to containers even though they are not as confident in the security of those containers, according to a new survey.

📖 Read

via "Dark Reading: ".

Container Security Is Falling Behind Container Deployments

Organizations are increasingly turning to containers even though they are not as confident in the security of those containers, according to a new survey.

59 views23:04

Cyberattacks on connected cars could gridlock entire cities

⚠ Cyberattacks on connected cars could gridlock entire cities ⚠

It would require taking over and stranding 20% of a city's cars to freeze traffic, and only 10% to impede ambulances, physicists calculate.

📖 Read

via "Naked Security".

Naked Security

It would require taking over and stranding 20% of a city’s cars to freeze traffic, and only 10% to impede ambulances, physicists calculate.

57 views10:46

🕴 Keep Your Eye on Digital Certificates 🕴

X.509 certificates help secure the identity, privacy, and communication between two endpoints, but these digital certificates also have built-in expirations and must be managed.

📖 Read

via "Dark Reading: ".

Keep Your Eye on Digital Certificates

X.509 certificates help secure the identity, privacy, and communication between two endpoints, but these digital certificates also have built-in expirations and must be managed.

52 views11:14

SanDisk's SSD Dashboard uses hardcoded password, lacks encrypted updates

🔐 SanDisk's SSD Dashboard uses hardcoded password, lacks encrypted updates 🔐

Lackadaisical security practices in proprietary management software from a hardware vendor underscore the need for a vendor-agnostic solution.

📖 Read

via "Security on TechRepublic".

TechRepublic

Lackadaisical security practices in proprietary management software from a hardware vendor underscore the need for a vendor-agnostic solution.

47 views12:17

🕴 Best Practices 🕴

📖 Read

via "Dark Reading: ".

Cyber security's comprehensive news site is now an online community for security professionals, outlining cyber threats and the technologies for defending against them.

In-Depth - Dark Reading

40 views12:19

iOS and Android patched 440 security vulnerabilities in 2019, so far

🔐 iOS and Android patched 440 security vulnerabilities in 2019, so far 🔐

Android patched more CVEs than Apple did, according to a Zimperium report.

📖 Read

via "Security on TechRepublic".

TechRepublic

Android patched more CVEs than Apple did, according to a Zimperium report.

43 views12:42

Capital One is not alone: 3.5B malicious login attacks target banks and customers

🔐 Capital One is not alone: 3.5B malicious login attacks target banks and customers 🔐

Phishing and credential stuffing attacks are top threats to financial services organizations and customers, according to Akamai.

📖 Read

via "Security on TechRepublic".

TechRepublic

Phishing and credential stuffing attacks are top threats to financial services organizations and customers, according to Akamai.

43 views12:47

Black Hat USA 2019 Preview

❌ Black Hat USA 2019 Preview ❌

Threatpost editors discuss the top trends, keynotes and sessions that they look forward to at Black Hat USA and DEF CON 2019.

📖 Read

via "Threatpost".

Threat Post

Threatpost editors discuss the top trends, keynotes and sessions that they look forward to at Black Hat USA and DEF CON 2019.

40 views13:05

Georgia hit with malware yet again

⚠ Georgia hit with malware yet again ⚠

The Department of Public Safety says it won't pay, but given the umpteen times the state's agencies have been hit, somebody's not listening.

📖 Read

via "Naked Security".

Naked Security

The Department of Public Safety says it won’t pay, but given the umpteen times the state’s agencies have been hit, somebody’s not listening.

42 views13:16