🛡 Cybersecurity & Privacy 🛡 - News

Gamification is Adding a Spoonful of Sugar to Security Training

Gamification is becoming popular as companies look for new ways to keep employees from being their largest vulnerability.

67 views23:11

ATENTION‼ New - CVE-2011-1939

SQL injection vulnerability in Zend Framework 1.10.x before 1.10.9 and 1.11.x before 1.11.6 when using non-ASCII-compatible encodings in conjunction PDO_MySql in PHP before 5.3.6.

📖 Read

via "National Vulnerability Database".

82 views23:31

ATENTION‼ New - CVE-2011-1934

lilo-uuid-diskid causes lilo.conf to be world-readable in lilo 23.1.

📖 Read

via "National Vulnerability Database".

85 views23:31

ATENTION‼ New - CVE-2011-1933

SQL injection vulnerability in Jifty::DBI before 0.68.

📖 Read

via "National Vulnerability Database".

87 views23:31

How Microsoft is using hardware to secure firmware

🔐 How Microsoft is using hardware to secure firmware 🔐

Even full disk encryption can't keep you secure if your PC firmware is compromised, so Secured-core PCs will use the CPU to check if UEFI is telling the truth about secure boot.

📖 Read

via "Security on TechRepublic".

TechRepublic

Even full disk encryption can't keep you secure if your PC firmware is compromised, so Secured-core PCs will use the CPU to check if UEFI is telling the truth about secure boot.

87 views11:29

⚠ Firefox gets tough on tracking tricks that sneakily sap your privacy ⚠

Firefox is getting ready to turn on its automatic anti-snooping tools to stop web 'fingerprinting" tricks.

📖 Read

via "Naked Security".

Firefox gets tough on tracking tricks that sneakily sap your privacy

Firefox is getting ready to turn on its automatic anti-snooping tools to stop web ‘fingerprinting” tricks.

75 views11:29

⚠ Police arrest alleged Chuckling Squad member who hijacked @Jack Dorsey ⚠

Debug, another Chuckling Squadder, told Motherboard that the kid was weird, "Swatting celebrities for a follow back."

📖 Read

via "Naked Security".

Police arrest alleged Chuckling Squad member who hijacked @Jack Dorsey

Debug, another Chuckling Squadder, told Motherboard that the kid was weird, “Swatting celebrities for a follow back.”

70 views11:59

⚠ EU raises eyebrows at possible US encryption ban ⚠

EU officials have warned that they may not take kindly to a US encryption ban or insertion of crypto backdoor technology.

📖 Read

via "Naked Security".

EU raises eyebrows at possible US encryption ban

EU officials have warned that they may not take kindly to a US encryption ban or insertion of crypto backdoor technology.

68 views12:34

⚠ Splunk customers should update now to dodge Y2K-style bug ⚠

Splunk has issued a critical warning regarding a showstopping Y2K-style date bug in one of the platform’s configuration files.

📖 Read

via "Naked Security".

Splunk customers should update now to dodge Y2K-style bug

Splunk has issued a critical warning regarding a showstopping Y2K-style date bug in one of the platform’s configuration files.

69 views12:44

⚠ Facebook, Twitter profiles slurped by mobile apps using malicious SDKs ⚠

Hundreds of users gave permission to these third-party apps to access their social media accounts, but the apps got more handsy than that.

📖 Read

via "Naked Security".

Facebook, Twitter profiles slurped by mobile apps using malicious SDKs

Hundreds of users gave permission to these third-party apps to access their social media accounts, but the apps got more handsy than that.

68 views12:54

What is HIPAA Compliance?

🔏 What is HIPAA Compliance? 2019 HIPAA Requirements 🔏

Learn about the Health Insurance Portability and Accountability Act (HIPAA) and the requirements for HIPAA compliance in Data Protection 101, our series on the fundamentals of information security.

📖 Read

via "Subscriber Blog RSS Feed ".

Digitalguardian

Learn about the Health Insurance Portability and Accountability Act (HIPAA) and the requirements for HIPAA compliance in Data Protection 101, our series on the fundamentals of information security.

66 views13:41

Dexphot Malware Hijacked 80K+ Devices to Mine Cryptocurrency

❌ Dexphot Malware Hijacked 80K+ Devices to Mine Cryptocurrency ❌

A cryptomining malware has infected at least 80k devices and uses various tactics to evade detection.

📖 Read

via "Threatpost".

Threat Post

A crypto-mining malware has infected at least 80k devices and boasts detection evasion tactics.

60 views14:06

🕴 7 Ways to Hang Up on Voice Fraud 🕴

Criminals are coming at us from all direction, including our phones. Don't answer that next call without reading this tips first.

📖 Read

via "Dark Reading: ".

Slideshows - Dark Reading

Dark Reading: Connecting The Information Security Community. Explore our slideshows.

59 views14:11

🕴 How to Be a More Thoughtful & Safe Digital Citizen 🕴

Don't be a Billy ... or Jennie ... or Betty.

📖 Read

via "Dark Reading: ".

How to Be a More Thoughtful & Safe Digital Citizen

Don't be a Billy ... or Jennie ... or Betty.

59 views14:21

🕴 Practical Principles for Security Metrics 🕴

A proactive approach to cybersecurity requires the right tools, not more tools.

📖 Read

via "Dark Reading: ".

Practical Principles for Security Metrics

A proactive approach to cybersecurity requires the right tools, not more tools.

62 views15:16

Federal Data Privacy Bill Takes Aim at Tech Giants

❌ Federal Data Privacy Bill Takes Aim at Tech Giants ❌

The COPRA legislation would provide GDPR-like data protections, and create a new FTC enforcement bureau.

📖 Read

via "Threatpost".

Threat Post

The COPRA legislation would provide GDPR-like data protections, and create a new FTC enforcement bureau.

63 views15:31

IoT Smartwatch Exposes Kids’ Personal, GPS Data

❌ IoT Smartwatch Exposes Kids’ Personal, GPS Data ❌

Yet another connected smartwatch for children has been discovered exposing personal and location data of kids - opening the door for various insidious threats.

📖 Read

via "Threatpost".

Threat Post

Yet another connected smartwatch for children has been discovered exposing personal and location data of kids - opening the door for various insidious threats.

63 views15:36

🕴 7 Ways to Hang Up on Voice Fraud 🕴

Criminals are coming at us from all direction, including our phones. Don't answer that next call without reading this tips first.

📖 Read

via "Dark Reading: ".

7 Ways to Hang Up on Voice Fraud

Criminals are coming at us from all direction, including our phones. Don't answer that next call without reading this tips first.

67 views15:51

Packet Fence 9.2.0 ≈ Packet Storm

🛠 Packet Fence 9.2.0 🛠

PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.

📖 Go!

via "Security Tool Files ≈ Packet Storm".

Packetstormsecurity

Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers

67 views15:53

🕴 How to Get Prepared for Privacy Legislation 🕴

All the various pieces of legislation, both in the US and worldwide, can feel overwhelming. But getting privacy basics right is a solid foundation.

📖 Read

via "Dark Reading: ".

How to Get Prepared for Privacy Legislation

All the various pieces of legislation, both in the US and worldwide, can feel overwhelming. But getting privacy basics right is a solid foundation.

68 views17:12

🕴 New Free Emulator Challenges Apple's Control of iOS 🕴

An open-source tool gives researchers and jailbreakers a free option for researching vulnerabilities in the operating system - and gives Apple a new headache.

📖 Read

via "Dark Reading: ".