A high-risk vulnerability in Cisco‘s secure boot process was disclosed earlier this week by Cisco and Red Balloon Security and is believed to have affected an estimate 100 or more devices. The vulnerability (CVE-2019-1649) is “in the logic that handles access control to one of the hardware components in Cisco’s proprietary Secure Boot implementation could allow
admin
by Naked Security writer It’s that time of year again. Please vote for us in the European Security Blogger Awards 2019. We’re up for an award called The Corporates – The Best CyberSecurity Vendor Blog, and if you think we’re the best, you can have your say on the voting page: (You don’t have to
Cloud management is a critical topic that organizations are looking at to simplify operations, increase IT efficiency, and reduce costs. Although cloud adoption has risen in the past few years, some organizations aren’t seeing the results they’d envisioned. That’s why we’re sharing a few of the top cloud management challenges enterprises need to be cautious
In a joint effort by several law enforcement agencies from 6 different countries, officials have dismantled a major global organized cybercrime behind GozNym banking malware. GozNym banking malware is responsible for stealing nearly $100 million from over 41,000 victims across the globe for years. GozNym was created by combining two known powerful Trojans—Gozi ISFB malware,
Pinterest (NYSE: PINS) shared lukewarm first-quarter financials on Thursday after the closing bell in what was its first earnings report as a public company. The digital pinboard went public in April, rising 25 percent during its first day trading on the New York Stock Exchange. Pinterest’s public market performance has continued to stay in the
AI would be useful for tons of everyday tasks for small businesses and other operations — if people just knew how to build and deploy their own machine learning agent. Unfortunately, few do. Edge-based AI startup Xnor.ai aims to let non-experts put state of the art AI to work as easily as they might update
You think you’re watching the games for free, but are you sure that’s the case? Let’s review some of the risks that may come with free live streaming websites The IIHF Ice Hockey World Championship kicked off in Slovakia last Friday and many fans who can’t attend in person are on the hunt for an
Security researchers have continued tracking WannaCry infections and have seen the ransomware spread to nearly 5 million vulnerable devices in the past two years. The initial WannaCry attacks occurred in May 2017 and caused massive damage before security researcher Marcus “MalwareTech” Hutchins inadvertently discovered a kill switch for the ransomware by registering a dummy URL
After analyzing the top three breaches from the past three years, Bitglass found that in the aftermath of a data breach, a decrease in stock price was a notable repercussion identifiable for publicly traded companies. The report, Kings of the Monster Breaches, identified the extensive damage done by improper security by looking specifically at the Marriott
by Mark Stockley Microsoft has issued a patch for a vulnerability in its Remote Desktop Services that can be exploited remotely, via RDP, without authentication and used to run arbitrary code: A remote code execution vulnerability exists in Remote Desktop Services – formerly known as Terminal Services – when an unauthenticated attacker connects to the
Messaging apps are a common form of digital communication these days, with Facebook’s WhatsApp being one of the most popular options out there. The communication platform boasts over 1.5 billion users – who now need to immediately update the app due to a new security threat. In fact, WhatsApp just announced a recently discovered security
It’s Patch Tuesday—the day when Microsoft releases monthly security updates for its software. Microsoft has software updates to address a total of 79 CVE-listed vulnerabilities in its Windows operating systems and other products, including a critical wormable flaw that can propagate malware from computer to computer without requiring users’ interaction. Out of 79 vulnerabilities, 18
Alex Chuang Contributor Alex Chuang is the Managing Partner of Shape Immersive, a boutique studio that helps enterprise and brands transform their businesses by incorporating VR/AR solutions into their strategies. More posts by this contributor The fall of the unicorns brings a new dawn for water bears British science fiction writer, Sir Arther C. Clark,
This one’s dedicated to all the genius hackers, coders and creators who also happen to be inveterate procrastinators. Right here, right now — this is your final opportunity to participate in the TechCrunch Hackathon at VivaTech 2019 in Paris on 17-18 May. The application is free and the process couldn’t be easier, so drop whatever you’re
ESET researchers have discovered that the attackers have been distributing the Plead malware via compromised routers and man-in-the-middle attacks against the legitimate ASUS WebStorage software In July 2018 we discovered that the Plead backdoor was digitally signed by a code-signing certificate that was issued to D-Link Corporation. Recently we detected a new activity involving the
Lawmakers in San Francisco will vote today on legislation that would ban the use of facial recognition technology among city departments, according to NPR. If approved, the law would make San Francisco the first city to ban the technologies use, a ban that would extend to police body cameras. “Governments have used the technology for
by Mark Stockley On Monday 13 May, Facebook revealed that an “advanced cyber actor” has been spying on some users of its ridiculously popular WhatsApp messaging app, thanks to a zero-day vulnerability that allowed hackers to install spyware, silently, just by calling a victim’s phone. The vulnerability is now fixed, which means that if you’re
Many of us use social media to keep our family and friends up-to-date on our everyday lives. We don’t typically expect social media companies to keep their partners updated on our every move as well. But for some Twitter users, this is exactly the situation they’ve found themselves in. On Monday afternoon, the social media
Academic researchers today disclosed details of the newest class of speculative execution side-channel vulnerabilities in Intel processors that impacts all modern chips, including the chips used in Apple devices. After the discovery of Spectre and Meltdown processor vulnerabilities earlier last year that put practically every computer in the world at risk, different classes of Spectre
As wild as it sounds, the race is on to build a functioning space internet — and SpaceX is taking its biggest step yet with the launch of 60 (!) satellites tomorrow that will form the first wave of its Starlink constellation. It’s a hugely important and incredibly complex launch for the company — and
As Uber’s biggest shareholder, SoftBank Group had high hopes for the ride-sharing company’s stock market debut last week. Instead, the Japanese conglomerate’s shares have been sliding along with Uber’s following its disappointing initial public offering. SoftBank shares began sliding at the end of last week after Uber set its IPO price at the low end
What are some of the most interesting takeaways from Verizon’s latest annual security report? Data breach, yawn. Those two little words that occur so frequently in the media and will have you switching off. Last week, Verizon released their 2019 Data Breach Investigations Report (DBIR) which provides valuable insight spanning across 86 countries and 41,686
Years ago, when users required access to a specific system, application or other corporate resource, they were provided a username and password tied to the necessary access required for that specific user. While this was a viable option when the number of IT services was small, it didn’t take long before the number of accounts
Malicious or criminal attacks accounted for nearly twice as many data breaches as those resulting from human error during the first quarter of 2019, according to the Notifiable Data Breaches Quarterly Statistics Report by the Office of the Australian Information Commissioner (OAIC). The report, published today, marks the start of Australia’s Privacy Awareness Week. “By understanding the
by Lisa Vaas The US thinks it knows who’s behind the vast breach that siphoned off 78.8 million customer and employee records from US health insurer Anthem between 2014 and 2015. On Thursday, the Justice Department unsealed an indictment against two people who prosecutors say are part of a sophisticated hacking group, based in China,
If you haven’t given your online privacy much attention lately then things need to change. In our era of weekly data breaches, the ‘I’ve got nothing to hide’ excuse no longer cuts it. In my opinion, ensuring your privacy is protected online is probably more important than protecting your home and car! A sloppy approach
At the company’s I/O 2019 developer conference, Google has announced its plan to introduce two new privacy and security-oriented features in the upcoming versions of its Chrome web browser. In an attempt to allow users to block online tracking, Google has announced two new features—Improved SameSite Cookies and Fingerprinting Protection—that will be previewed by Google
Spotify is testing its own version of Stories — the sharing format popularized by social apps like Snapchat and Instagram and has since made its way to other apps like Facebook, YouTube, WhatsApp, and others. In Spotify’s case, it’s not called “Stories” but rather “Storyline,” and the focus is on allowing artists to share their
Another day, another episode of Equity. This time it was an emergency episode, because Uber (finally) went public and a lot of financial folks were quite looking forward to how it would perform on opening day. Turns out it didn’t do so well. Kate and Alex had a lot of questions about why? Was it
Most organizations are falling behind when it comes to addressing the cybersecurity skills shortage, a new study found. And the effects of the shortage are worsening. In its third year, the study conducted by the Information Systems Security Association (ISSA) and analyst firm Enterprise Strategy Group (ESG) surveyed 267 cybersecurity professionals worldwide. The cybersecurity skills
- « Previous Page
- 1
- 2
- 3
- 4
- …
- 77
- Next Page »