Cybersecurity News
Black Hat 2020: Open-Source AI to Spur Wave of ‘Synthetic Media’ Attacks
The explosion of open-source AI models are lowering the barrier of entry for bad actors to create fake video, audio and images - and Facebook, Twitter and other platforms aren't ready.
05 August 2020
HealthScare: Prioritizing Medical AppSec Research
Seth Fogie, information security director at Penn Medicine, explains which healthcare app vulnerabilities really matter in the day-to-day business of providing patient care.05 August 2020
A Most Personal Threat: Implantable Medical Devices
Alan Michaels, director of the Electronic Systems Lab at the Virginia Tech Hume Center, explains why implanted medical devices could pose a threat to secure communication facilities.05 August 2020
How An Electronic Medical Record System Flaw Exacerbated the Opioid Crisis
Mitch Parker, CISO of Indiana University Health, explains how healthcare appsec vulnerabilities and abuse can go undetected in small medical centers -- at great cost.05 August 2020
A Paramedic's Guide to Cybersecurity: Video
In this video segment, the Dark Reading News Desk speaks to several guests about healthcare cybersecurity. We begin with Rich Mogull, infosec pro and paramedic, for a discussion about what lessons cybersecurity can learn from emergency medical services and the parallels that already exist.05 August 2020
Voatz Delivers Multilayered Security to Protect Electronic Voting
SPONSORED CONTENT: While electronic voting has been plagued by fears of tampering or fraud, Voatz is looking to make the process more transparent and auditable, according to company founder Nimit Sawhney. He offers learning points from three recent pilots that highlight how governments can improve the integrity and better protect the voting process and its data.05 August 2020
Voatz Delivers Multi-Layered Security to Protect Electronic Voting
SPONSORED CONTENT: While electronic voting has been plagued by fears of tampering or fraud, Voatz is looking to make the process more transparent and auditable, according to company founder Nimit Sawhney. He offers learning points from three recent pilots that highlight how governments can improve the integrity and better protect the voting process and its data.05 August 2020
Russian Election Interference: What's Next?
Nate Beach-Westmoreland gives a look back at the past 10 years of Russian election interference and disinformation campaigns. What can we learn from the past and what should we expect as the 2020 US presidential election approaches?05 August 2020
Black Hat: How hackers gain root access to SAP enterprise servers through SolMan
Researchers demonstrated how the SAP Solution Manager could provide a bridge to full server access.05 August 2020
Building Cybersecurity Strategies in Sub-Saharan Africa
Evelyn Kilel and Laura Tich of Shehacks Ke discuss how they are working to build cybersecurity strategies that suit the needs and capabilities of developing nations.05 August 2020
Twitter patches Android app to prevent exploitation of bug that can grant access to DMs
Actual bug resided in the Android 8 and Android 9 operating systems. Twitter updated its Android app to prevent exploitation.05 August 2020
Attack of the Clone: Next-Gen Social Engineering
NeoEYED CTO Tamaghna Basu tells us how he created an AI bot to mimic him, how it could be used in social engineering attacks, and what the experience taught him about the value of true human connections.05 August 2020
3 Tips for Securing Open Source Software
Maintaining myriad open source components can be tough. Here's how teams can begin to address open source security and continue to innovate.05 August 2020
CISA Offers Tool for Career Navigation
The new Cyber Career Pathways Tool helps individuals understand the roles in cybersecurity and how to prepare for them.05 August 2020
Black Hat: How your pacemaker could become an insider threat to national security
Implanted medical devices are an overlooked security challenge that is only going to increase over time.05 August 2020
New EtherOops attack takes advantage of faulty Ethernet cables
EtherOops attack can be used to bypass network defenses and attack devices inside closed enterprise networks.05 August 2020
Microsoft Teams Vulnerable to Patch Workaround, Researchers Report
Attackers could work around an earlier patch and use Microsoft Teams Updater to download binaries and payloads.05 August 2020
High-Severity Android RCE Flaw Fixed in August Security Update
Google addressed high-severity and critical flaws tied to 54 CVEs in this month's Android security bulletin.
05 August 2020
NSA shares advice on how to limit location tracking
The intelligence agency warns of location tracking risks and offers tips for how to reduce the amount of data shared
The post NSA shares advice on how to limit location tracking appeared first on WeLiveSecurity
05 August 2020
Microsoft Teams Patch Bypass Allows RCE
An attacker can hide amidst legitimate traffic in the application's update function.
05 August 2020