Unregulated IoT Devices Now Entry Point for Elaborate Hacks

The Internet of Things is more vulnerable than previously proven. Up until now the most common attack via IoT device has been to enlist thousands of them into botnets. Another method of attack is to find entry via a weak IoT device to conduct a ransomware attack. Now, IoT security firm Senrio has demonstrated that attackers can jump from one IoT device to another, without moving through PCs and servers, making their path even harder to discover. In other words, one vulnerable IoT device can create network disruption. Continue reading Unregulated IoT Devices Now Entry Point for Elaborate Hacks

Facebook Rolls Out Plan in Effort to Increase Platform Security

Last week, Facebook executives detailed their plan to protect future elections from meddling on the social media platform, elaborating on Facebook’s “use of human moderators, third-party fact checkers, and automation to catch fake accounts, foreign interference, fake news, and to increase transparency in political ads,” reports Wired. This comes in response to what happened nearly three years ago, when “a Russian propaganda group infiltrated Facebook and other tech platforms in hopes of seeding chaos in the 2016 U.S. election.”

Continue reading Facebook Rolls Out Plan in Effort to Increase Platform Security

Hacker Accessed Customer Data From Orbitz Legacy System

Popular travel booking site Orbitz, owned by Expedia, confirmed yesterday that it “identified and remediated a data security incident affecting a legacy travel booking platform.” The company explained that a hack late last year exposed customer data and billing information spanning two years. Personal data may have included birth dates, mailing addresses, email addresses, gender, payment card info, and more. According to Orbitz, about 880,000 credit cards may have been affected. However, the company noted that the current Orbitz.com site was not breached. Continue reading Hacker Accessed Customer Data From Orbitz Legacy System

Symantec Publishes Global Security Findings in Latest Report

Today’s consumers are “overconfident in their security prowess,” which has resulted in a record year for cyberattacks, according to the “2017 Norton Cyber Security Insights Report.” The Symantec report found that 978 million people across 20 countries were impacted last year by cybercrime, and 44 percent of consumers were affected in the last 12 months. “As a result,” notes the report, “consumers who were victims of cybercrime globally lost $172 billion — an average of $142 per victim — and nearly 24 hours globally (or almost three full work days) dealing with the aftermath.” Continue reading Symantec Publishes Global Security Findings in Latest Report

Cryptocurrencies Are Experiencing a Significant Drop in Value

Those who doubted virtual currency have had their worst fears confirmed: cryptocurrency’s value has plummeted 50 percent from its peak in early January, pushing Bitcoin, for example, below $7,000. Among the problems bedeviling virtual currencies are hackers, scams and Ponzi schemes. Now, the Securities and Exchange Commission and the Commodity Futures Trading Commission are scheduled to testify to the Senate banking committee about how they have been trying to corral cryptocurrency markets. Continue reading Cryptocurrencies Are Experiencing a Significant Drop in Value

Blockchain at CES: Evaluating the Tech’s Hype and Potential

There were twice as many people as chairs throughout the nearly four-hour “Future of Blockchain” CES conference program this week. The enthusiasm of the program’s attendees mirrored that of exhibitors as well as the general anticipation surrounding blockchain and its applications at the show. The new offerings discussed at CES 2018 ranged from Kodak’s resurgence as a rights management platform to fast food chains asking users to mine tokens by eating chicken wings. A number of entertainment-specific blockchain technologies showed promise beyond an alternative means of purchasing content. Continue reading Blockchain at CES: Evaluating the Tech’s Hype and Potential

Flaws in Intel Chips Could Present Security Risk for Computers

Intel confirmed a report indicating that its microprocessor chips contain two major security flaws, which makes the vast majority of world computers vulnerable to hacking. Intel is working with Advanced Micro Devices (AMD), ARM Holdings and other chipmakers and operating system providers to develop a comprehensive, industry-wide approach to combating the potential problems. The two major security flaws, dubbed Meltdown and Spectre, could let hackers access the entire memory contents of computers. Continue reading Flaws in Intel Chips Could Present Security Risk for Computers

Microsoft Is Developing Cost-Effective Security for IoT Devices

IoT security researchers at Microsoft Research are focused on the near future when microcontrollers, which are small, low-power computers on a single chip, gain connectivity. Microcontrollers are already installed in billions of gadgets, so their eventual connectivity will explode the number of Internet of Things devices, all of which will require greater security. Microsoft Research’s Project Sopris aims to provide cost-effective security for microcontrollers, which currently don’t have enough compute power to offer security. Continue reading Microsoft Is Developing Cost-Effective Security for IoT Devices

New Technology Is a Clear Focal Point of 2017 LA Auto Show

Cars are still the obvious centerpiece of the LA Auto Show (December 1-10), but, increasingly, the hackers are starting to outnumber the gearheads. At AutoMobility LA, a four-day preview event for industry insiders and press preceding the consumer-focused show, cybersecurity and artificial intelligence were talked about with the same frequency as horsepower and mpg. Show organizers stressed the importance of bringing together “the entire new mobility ecosystem” and showcased a number of startups with vehicle debuts mixed in. Additionally, the event featured the first ever hackathon at an auto show. Continue reading New Technology Is a Clear Focal Point of 2017 LA Auto Show

New Uber CEO Faces the Impact of Undisclosed Data Breach

Uber Technologies acknowledged that one year ago it paid hackers $100,000 to hide a data breach that impacted 47 million accounts. The company fired then-chief security officer Joe Sullivan and deputy Craig Clark for both the breach itself and concealing it. The hackers got the names, emails and phone numbers of millions of riders as well as 600,000 drivers’ license numbers, although apparently Social Security numbers and credit card numbers were not accessed. Uber says it will inform those impacted by the breach in “coming days.” Continue reading New Uber CEO Faces the Impact of Undisclosed Data Breach

Europe to Employ Stricter Protection Rules for Personal Data

Since 1995, European businesses and organizations have operated under data protection rules specific to an era of much less digital data. To update the rules, the European General Data Protection Regulation (GDPR) will launch on May 25, 2018, and numerous GDPR experts are ready to profit off of their offer to help businesses get ready. U.K. information commissioner Elizabeth Denham dubs much of the activity as “scaremongering,” saying that companies that complied with the older rules won’t have to deal with major changes. Continue reading Europe to Employ Stricter Protection Rules for Personal Data

WPA2 Wi-Fi Flaw Revealed, Android & Linux Most Vulnerable

According to researchers, the WPA2 protocol for Wi-Fi connectivity contains a significant weakness that makes it vulnerable to attackers. A hacker within range of connected devices would reportedly be able to exploit this weakness to hijack passwords, emails and other “encrypted” data, or even place ransomware into a website the user is visiting. The research, which has been ongoing for weeks, reveals that the WPA2 core vulnerability could affect operating systems and devices including Android, Linux, OpenBSD, MediaTek, Linksys, macOS and Windows. Continue reading WPA2 Wi-Fi Flaw Revealed, Android & Linux Most Vulnerable

Clicking Flash Update on the Equifax Site Results in Adware

In the wake of May’s Equifax website breach that reportedly involved personal data of 145.5 million U.S. consumers, the credit reporting service’s site was manipulated again this week. On Wednesday, and again on Thursday, fraudulent Adobe Flash updates appeared that infected computers with adware when clicked. Only three of 65 antivirus providers detected the adware. Security analyst Randy Abrams discovered the issue while investigating false information that had appeared on his credit report. Meanwhile. federal legislators have introduced a new cybersecurity bill to help protect consumers. Continue reading Clicking Flash Update on the Equifax Site Results in Adware

Security Update: 3 Billion Yahoo Accounts Hit in 2013 Attack

Yahoo announced yesterday that all 3 billion of its user accounts were affected by a previously disclosed August 2013 cyberattack, originally reported by the company as affecting 1 billion accounts. Yahoo had earlier reported that a separate 2014 attack affected 500 million accounts. Last year we learned that, “digital thieves made off with names, birth dates, phone numbers and passwords of users that were encrypted with security that was easy to crack,” according to The New York Times. “The intruders also obtained the security questions and backup email addresses used to reset lost passwords.” Continue reading Security Update: 3 Billion Yahoo Accounts Hit in 2013 Attack

CCleaner Malware Is Linked to Attack Against 20 Tech Firms

Security companies Morphisec and Cisco reported the extent of the damage caused by a malware attack on security software CCleaner. Experts say that the software, distributed by Czech company Avast, was targeted not simply to disrupt as many computers as possible, but to conduct espionage. Hackers penetrated the software and added a backdoor, ultimately installing malware on more than 700,000 computers. But hackers also sought to find computers among those infected that resided in networks of 20 leading tech firms. Continue reading CCleaner Malware Is Linked to Attack Against 20 Tech Firms

Page 1 of 6123456