by Danny Bradbury A security researcher has found a way to tinker with Windows’ core settings while persuading users to accept the changes, it emerged this week – and Microsoft has no intention of patching the issue. The attack was discovered by John Page, who goes by the name hyp3rlinkx. It focuses on the Windows
Cyberblackmail/sextortion again raises its not-so-pretty little head Vox Emptoris: “Voice of the Customer” For more than 30 years, I’ve had the privilege of assisting people get rid of viruses and other malicious software. In the course of doing so, I’ve often been asked questions about computer security-related topics that are not product-specific. Some are simple or
Libssh2, a popular open source client-side C library implementing the SSHv2 protocol, has released the latest version of its software to patch a total of nine security vulnerabilities. The Libssh2 library is available for all major distributors of the Linux operating systems, including Ubuntu, Red Hat, Debian, and also comes bundled within some distributions and
On the heels of Hyundai becoming the latest investor in Ola, today another key deal was revealed that underscores Hyundai’s ambitions in next-generation automotive services. Yandex, the Russian search giant that has been working on self-driving car technology, has inked a partnership with Hyundai to develop software and hardware for autonomous car systems. While companies like
Ray tracing has been a major topic of conversation at both GDC and GTC so it seems fitting that that the overlapping conventions would both kick off with an announcement that touches both industries. Today at GTC, Nvidia announced that it has built-out a number of major partnerships with 3D software makers including some apparent
Before the next WannaCry or NotPetya cyber-attack strikes, potentially resulting in widespread damage for which few are actually prepared, law enforcement in the EU have established an incident response protocol, according to a Europol press release. “To prepare for major cross-border cyber-attacks, an EU Law Enforcement Emergency Response Protocol has been adopted by the Council
by Lisa Vaas Update 18 March 2019 FamilyTreeDNA emailed users last week to let them know that they can now opt out of DNA matching that will be used to help police identify the remains of deceased people or to help them track down violent criminals. It’s now calling that type of investigative DNA research
Last week, the RSA Conference painted San Francisco’s Moscone Center purple with the theme ‘Better’, and the cybersecurity industry did not disappoint in making the digital world a better and safer place. Below, we’re sharing a few McAfee highlights from this year’s event. [embedded content] Behind the Scenes of MGM Resorts’ Digital Transformation at CSA
A hacker who was selling details of nearly 890 million online accounts stolen from 32 popular websites in three separate rounds has now put up a fourth batch of millions of records originating from 6 other sites for sale on the dark web. The Hacker News today received a new email from the Pakistani hacker,
Ridehailing firm Lyft will make its Nasdaq debut as early as next week at a valuation of up to $23 billion, The Wall Street Journal reports. The business will reportedly price its shares at between $62 and $68 apiece, raising roughly $2 billion in the process. With a $600 million financing, Lyft was valued at
Months before the hard-fought battle for its second global headquarters in Queens, Amazon planted a massive, 855,000-square-foot flag in Staten Island. The $100 million JFK8 fulfillment center opened last fall, after an “on the spot” hiring spree, aimed at employing an eventual 2,250 people. The new factory smell still permeated the air when we visited
The National Security Agency has a history of releasing its tools to open source and the latest in that lineup, a powerful reverse-engineering tool called Ghidra, has been embraced by infosec professionals after some initial hesitation. Ghidra, the 35th piece of open source software made public by the NSA, is a modular, cross-platform, Java-based tool
The data breach at Wolverine Solutions Group (WSG) continues to plague the healthcare industry, with more organizations, including Spectrum Healthcare, sending security notices to customers. As was the case for many organizations who have already issued security notices, Spectrum said it has no reason to believe its systems or customer information may have been compromised.
by Paul Ducklin This week, the Naked Security Podcast tries to figure out where Mark Zuckerberg’s new “Facebook Privacy Promise” is going, and digs into both the technical and community aspects of a recent Chrome zero-day exploit. With Anna Brading, Mark Stockley and Matthew Boddy. (This week, Duck was away in London giving a dramatic
I spoke last week at the RSA Conference in San Francisco on the subject of AI related threats and opportunities in the cybersecurity field. I asserted that innovations such as AI can strengthen our defenses but can also enhance the effectiveness of a cyber attacker. I also looked at some examples of underlying fragility in
If you are a Counter-Strike gamer, then beware, because 39% of all existing Counter-Strike 1.6 game servers available online are malicious that have been set-up to remotely hack gamers’ computers. A team of cybersecurity researchers at Dr. Web has disclosed that an attacker has been using malicious gaming servers to silently compromise computers of Counter-Strike
PC gaming has grown to be a pretty wide niche of people with some far-flung similarities and differences, one thing they all share are souped-up rigs that rely on beefy GPUs. This is fine for those with dedicated machines but PC gaming isn’t too friendly to those trying to pull double-duty on their everyday machine.
We’ve decided to step back from the breaking news for a minute to conduct a review of seed and early-stage funding trends over the last decade for U.S.-based companies. I’m fairly certain we can all agree that the environment for startups has changed dramatically in the past 10 years, specifically in two major ways: The
Researchers at vpnMentor have discovered a security vulnerability in Gearbest, a Chinese e-commerce business that reportedly processes hundreds of thousands of sales a day. According to a blog post from vpnMentor’s research team, hackers were able to access different parts of Gearbest’s database, during which time they discovered more than 1.5 million records, ranging from
by Lisa Vaas Back in 2012, Sophos picked up a stash of USB keys from a lost property auction as an experiment. It turned out that they were a scary bunch of sticks: 66% of them contained malware, and not a single one was encrypted. Well, the more things change, the more things USB drive-related
The risk to your family’s healthcare data often begins with that piece of paper on a clipboard your physician or hospital asks you to fill out or in the online application for healthcare you completed. That data gets transferred into a computer where a patient Electronic Health Record (EHR) is created or added to. From
If for some reason your WordPress-based website has not yet been automatically updated to the latest version 5.1.1, it’s highly recommended to immediately upgrade it before hackers could take advantage of a newly disclosed vulnerability to hack your website. Simon Scannell, a researcher at RIPS Technologies GmbH, who previously reported multiple critical vulnerabilities in WordPress,
After a conspicuous stretch of silence ending with a mysterious teaser tweet on Thursday, No Man’s Sky creator Sean Murray revealed that another major free update is on the way. The new content, which is the first since last year’s Visions update, will hit the massive space exploration game this summer. The bundle of new
Mital Makadia’s legal career began on the East Coast, with Big Law firms, but she moved into early-stage startup work with long-time Silicon Valley boutique Grellas Shah nearly a decade ago. She’ll work with companies on a range of usual startup issues, but she and the firm also focus on individual founder representation (when it
Amid widespread speculation that a cyber-attack caused the outage of Facebook‘s services earlier this week, the social media platform contends that the issue was the result of a server configuration change. Despite the array of questions about when it made the change to the server and when it realized that the configuration error had triggered the
by Paul Ducklin Sextortion is where crooks email you out of the blue, say they have sex-related pictures or webcam footage of you, and demand you to pay them thousands of dollars, OR ELSE. Even people who never watch porn and don’t have a webcam find this sort of scam confronting and scary… …so we
Earlier this month Check Point Research reported discovery of a 19 year old code execution vulnerability in the wildly popular WinRAR compression tool. Rarlab reports that that are over 500 million users of this program. While a patched version, 5.70, was released on February 26, attackers are releasing exploits in an effort to reach vulnerable
Users should waste no time in updating to the browser’s latest version Google has revealed that the update for Google Chrome, rolled out late last week, addressed a security hole that attackers were already exploiting in the wild. “Google is aware of reports that an exploit for CVE-2019-5786 exists in the wild,” the company noted
Various cyber criminal groups and individual hackers are still exploiting a recently patched critical code execution vulnerability in WinRAR, a popular Windows file compression application with 500 million users worldwide. Why? Because the WinRAR software doesn’t have an auto-update feature, which, unfortunately, leaves millions of its users vulnerable to cyber attacks. The critical vulnerability (CVE-2018-20250) that
Two days after Spotify announced that it had filed a suit against Apple with the European Commission over anticompetitive practices, Apple today issued its own response of sorts. In a lengthy statement on its site called “Addressing Spotify’s Claims”, Apple walks through and dismantles some of the key parts of Spotify’s accusations about how the App Store
- « Previous Page
- 1
- 2
- 3
- 4
- …
- 61
- Next Page »