Cybersecurity News


Apple wants to standardize the format of SMS OTPs (one-time passcodes)

WebKit team proposal aims to improve the security of one-time passcodes sent to users via SMS.
30 January 2020

U.N. Hack Stemmed From Microsoft SharePoint Flaw

U.N. Hack Stemmed From Microsoft SharePoint Flaw Reportedly, the bug wasn't patched, leading to a data breach in July.
30 January 2020

Election Security 2020: How We Should Allocate $425M in Funding

Too many states and municipalities still rely on aging systems; it's time they upped their game and treated election technology like they would any other security project.
30 January 2020

Facebook agrees to pay $550 million to end facial recognition tech lawsuit

The company says it is in the best interest of users and shareholders to pay up.
30 January 2020

Facebook to Pay $550M to Settle Class Action Case Over Facial Recognition

Facebook to Pay $550M to Settle Class Action Case Over Facial Recognition The settlement in a case over the social network’s Tag Suggestions feature is the latest financial blow the company has taken over its handling of user privacy.
30 January 2020

Dell, HP Memory-Access Bugs Open Attacker Path to Kernel Privileges

Dell, HP Memory-Access Bugs Open Attacker Path to Kernel Privileges The manufacturers have issued BIOS updates to address the issues, but researchers warn DMA attacks are likely possible against a range of laptops and desktops.
30 January 2020

Avast winds down Jumpshot, cites user data sale privacy concerns

Avast’s CEO said the move is “absolutely the right thing to do.”
30 January 2020

IoT laws are coming: What to expect

No more default logins on new IoT devices if UK legislators get their way

The post IoT laws are coming: What to expect appeared first on WeLiveSecurity

30 January 2020

IoT laws are coming: What to expect

No more default logins on new IoT devices if UK legislators get their way

The post IoT laws are coming: What to expect appeared first on WeLiveSecurity

30 January 2020

How Enterprises Are Developing and Maintaining Secure Applications

How Enterprises Are Developing and Maintaining Secure Applications The concept of application security is well known, but application security testing and remediation processes remain unbalanced. Most organizations are confident in their approach to AppSec, although others seem to have no approach at all. Read this report to find out more.
30 January 2020

Aftermath of a Major ICS Hacking Contest

Pwn2Own Miami could help spur more research on and attention to the security of industrial control system products, experts say.
29 January 2020

DOD contractor suffers ransomware infection

Virginia-based EWA has had systems infected with the Ryuk ransomware.
29 January 2020

Number of Botnet Command & Control Servers Soared in 2019

Servers worldwide that were used to control malware-infected systems jumped more than 71% compared to 2018, Spamhaus says.
29 January 2020

Apple Security Updates Tackle iOS Device Tracking

Apple Security Updates Tackle iOS Device Tracking Apple’s iOS 13.3.1 update includes a host of security patches and a way to turn off U1 Ultra Wideband tracking.
29 January 2020

Criminals Hide Malware Behind Grammy-Winning Cover

Songs by Ariana Grande, Taylor Swift, and Post Malone are the most popular places.
29 January 2020

Inside the Check Point Research Team's Investigation Process

The team sheds light on how their organization works and what they're watching in the threat landscape.
29 January 2020

Google Sets Record High in Bug-Bounty Payouts

Google Sets Record High in Bug-Bounty Payouts After a year of big changes, white hats reaped more from Google's programs than ever before.
29 January 2020

Sprint Exposed Customer Support Site to Web

Fresh on the heels of a disclosure that Microsoft Corp. leaked internal customer support data to the Internet, mobile provider Sprint has addressed a mix-up in which posts to a private customer support community were exposed to the Web.
29 January 2020

New web service can notify companies when their employees get phished

Abuse.ch launches new "I Got Phished" web portal.
29 January 2020

9 Things Application Security Champions Need to Succeed

9 Things Application Security Champions Need to Succeed Common elements to highly effective security champion programs that take DevSecOps to the next level.
29 January 2020