Viry a Červi

Drone firm says it’s stepping up security after US army ban

Sophos Naked Security - 18 Srpen, 2017 - 16:36
DJI security patch should ease military fears - but throws up further issues for pilots

So long and thanks for all the phish: Red teams need to be smarter now

The Register - Anti-Virus - 18 Srpen, 2017 - 16:06
Pen-testers face new challenges as defences evolve

BSides  The opening talk at BSides Manchester on Thursday examined how red team tactics are evolving beyond phishing to include a wider variety of methods.…

Kategorie: Viry a Červi

‘Pulse wave’ DDoS – another way of blasting sites offline

Sophos Naked Security - 18 Srpen, 2017 - 16:04
If there's one thing we've learned, it's that any new way of DDoSing will reveal that there are a huge number of undefended devices online

Threatpost News Wrap, August 18, 2017 - 18 Srpen, 2017 - 15:30
Mike Mimoso and Tom Spring discuss this week's security news, including a discussion on recent hijacking of popular Chrome extensions and Adobe's decision to end-of-life Flash Player.
Kategorie: Viry a Červi

Q: How many drones are we bombing ISIS with? A: That's secret, mmkay

The Register - Anti-Virus - 18 Srpen, 2017 - 15:23
But the MoD will happily tell you how many manned jets we're using to do that exact thing

The UK's Information Tribunal has rejected an appeal by campaigners trying to find out how many British Reaper drones are being used for warlike missions in the Middle East.…

Kategorie: Viry a Červi

Phone location privacy – for armed robber – headed to Supreme Court

Sophos Naked Security - 18 Srpen, 2017 - 13:59
Defending a convicted armed robber's right to privacy feels distasteful, but defending rights are important - as this case seeks to do

What weighs 800kg and runs Windows XP? How to buy an ATM for fun and profit

The Register - Anti-Virus - 18 Srpen, 2017 - 13:57
Security researchers pick up angle grinder, drop £2k-plus in B-sides chat

BSides  Weighing in at 800kg secondhand, freestanding ATMs - a “safe with a computer on top” - are a logistical nightmare to own and research, security boffin Leigh-Anne Galloway warned delegates at the BSides Manchester infosec conference yesterday.…

Kategorie: Viry a Červi

New NIST draft embeds privacy into US govt security for the first time

The Register - Anti-Virus - 18 Srpen, 2017 - 03:57
Federal agency addresses the new world of Alexa, smart cameras and IoT

A draft of new IT security measures by the US National Institute of Standards and Technology (NIST) has for the first time pulled privacy into its core text as well as expanded its scope to include the internet of things and smart home technology.…

Kategorie: Viry a Červi

Hacker Publishes iOS Secure Enclave Firmware Decryption Key - 18 Srpen, 2017 - 02:32
A hacker identified only as xerub published the decryption key unlocking the iOS Secure Enclave Processor.
Kategorie: Viry a Červi

US cops point at cell towers and say: Give us every phone number that's touched that mast

The Register - Anti-Virus - 18 Srpen, 2017 - 01:52
Verizon says basestation dumps increasingly popular

US telecoms giant Verizon says police are increasingly asking it to cough up massive dumps of cellphone data rather than individual records.…

Kategorie: Viry a Červi

What code is running on Apple's Secure Enclave security chip? Now we have a decryption key...

The Register - Anti-Virus - 18 Srpen, 2017 - 00:48
Ladies and gentlemen, start your ARM disassemblers

Apple's Secure Enclave, an ARM-based coprocessor used to enhance iOS security, became a bit less secure on Thursday with the publication of a firmware decryption key.…

Kategorie: Viry a Červi

Don't panic, Chicago, but an AWS S3 config blunder exposed 1.8 million voter records

The Register - Anti-Virus - 17 Srpen, 2017 - 22:47
Personal info spills from another poorly secured Amazon service

A voting machine supplier for dozens of US states left records on 1.8 million Americans in public view for anyone to download – after misconfiguring its AWS-hosted storage.…

Kategorie: Viry a Červi

Cisco Patches Privilege Escalation Bugs in APIC - 17 Srpen, 2017 - 21:55
Cisco patched two high-severity vulnerabilities in its Cisco Application Policy Infrastructure Controller (APIC) that could allow an attacker to elevate privileges on the host machine.
Kategorie: Viry a Červi

Drupal Patches Critical Access Bypass in Core Engine - 17 Srpen, 2017 - 21:50
A critical flaw in Drupal CMS platform could allow unwanted access to the platform allowing a third-party to view, create, update or delete entities.
Kategorie: Viry a Červi

Rowhammer Attacks Come to MLC NAND Flash Memory - 17 Srpen, 2017 - 19:48
IBM researchers have demonstrated a filesystem-level version of the Rowhammer attack against MLC NAND flash memory.
Kategorie: Viry a Červi

News in brief: new Bitcoin fork; HBO hacked; China cracks down

Sophos Naked Security - 17 Srpen, 2017 - 18:16
Your daily round-up of some of the other stories in the news

Woman targeted with 120 images on public transport via AirDrop

Sophos Naked Security - 17 Srpen, 2017 - 17:10
Bluejacking is back, this time via Apple's AirDrop technology, allowing strangers to bombard women with unwanted photos

Uber faces privacy audits every two years until 2037, rules FTC

Sophos Naked Security - 17 Srpen, 2017 - 15:29
Uber 'failed consumers in two key ways' says FTC after probe into catalogue of privacy concerns

London council 'failed to test' parking ticket app, exposed personal info

The Register - Anti-Virus - 17 Srpen, 2017 - 14:55
Authority fined £70k after missing URL manipulation

A London council has been fined £70,000 after design faults in its TicketViewer app allowed unauthorised access to 119 documents containing sensitive personal information.…

Kategorie: Viry a Červi

Got an iPhone? Here’s what we think about the security of iOS11

Sophos Naked Security - 17 Srpen, 2017 - 13:11
Will your iOS device be more or less secure when iOS11 is launched? We've had a look beyond the cosmetic tweaks to the security features
Syndikovat obsah