Security News

New to iOS 11? Change these privacy and security settings right now

zdnet 0 day - Tue, 09/19/2017 - 11:29
Before you do anything on your iPhone or iPad, you should lock it down. This is how you do it.
Categories: Security News

New alliance advocates the blockchain to improve IoT security, trust

zdnet 0 day - Tue, 09/19/2017 - 09:00
The Trusted IoT Alliance hopes to "set the standard" for IoT blockchain protocols worldwide.
Categories: Security News

Hackers reveal leading enterprise security blind spots

zdnet 0 day - Tue, 09/19/2017 - 07:00
Mobile devices and facial recognition software have made the list this year.
Categories: Security News

Apple's FaceID

Bruce Shneier's Blog - Tue, 09/19/2017 - 06:44
This is a good interview with Apple's SVP of Software Engineering about FaceID. Honestly, I don't know what to think. I am confident that Apple is not collecting a photo database, but not optimistic that it can't be hacked with fake faces. I dislike the fact that the police can point the phone at someone and have it automatically unlock.... Bruce Schneier
Categories: Security News

Pirate Bay uses your PC to mine cryptocurrency in quest to become ad-free

zdnet 0 day - Tue, 09/19/2017 - 04:58
Could CPU usage replace adverts in the future?
Categories: Security News

HP's Aruba announces 360 Secure Fabric analytics security solution

zdnet 0 day - Mon, 09/18/2017 - 11:00
Aruba says the new offering will simplify and improve enterprise security.
Categories: Security News

Bluetooth Vulnerabilities

Bruce Shneier's Blog - Mon, 09/18/2017 - 06:58
A bunch of Bluetooth vulnerabilities are being reported, some pretty nasty. BlueBorne concerns us because of the medium by which it operates. Unlike the majority of attacks today, which rely on the internet, a BlueBorne attack spreads through the air. This works similarly to the two less extensive vulnerabilities discovered recently in a Broadcom Wi-Fi chip by Project Zero and... Bruce Schneier
Categories: Security News

Microsoft extends Office bug bounty program

zdnet 0 day - Mon, 09/18/2017 - 04:32
The company is offering up to $15,000 per bounty.
Categories: Security News

Friday Squid Blogging: Another Giant Squid Caught off the Coast of Kerry

Bruce Shneier's Blog - Fri, 09/15/2017 - 14:53
The Flannery family have caught four giant squid, two this year. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Read my blog posting guidelines here.... Bruce Schneier
Categories: Security News

Another iPhone Change to Frustrate the Police

Bruce Shneier's Blog - Fri, 09/15/2017 - 06:28
I recently wrote about the new ability to disable the Touch ID login on iPhones. This is important because of a weirdness in current US law that protects people's passcodes from forced disclosure in ways it does not protect actions: being forced to place a thumb on a fingerprint reader. There's another, more significant, change: iOS now requires a passcode... Bruce Schneier
Categories: Security News

Yet another trove of sensitive US voter records has leaked

zdnet 0 day - Thu, 09/14/2017 - 13:00
Each record contained details on voters, including names, addresses, dates of birth, their ethnic identity, whether an individual is married, and the individual's voting preferences.
Categories: Security News

AppGuard secures $30 million in Series B funding

zdnet 0 day - Thu, 09/14/2017 - 08:00
The cybersecurity firm will use the cash to complete the acquisition of KeepTree.
Categories: Security News

Hacking Robots

Bruce Shneier's Blog - Thu, 09/14/2017 - 06:17
Researchers have demonstrated hacks against robots, taking over and controlling their camera, speakers, and movements. News article.... Bruce Schneier
Categories: Security News

JPMorgan calls Bitcoin 'fraud' only for use by criminals and North Koreans

zdnet 0 day - Thu, 09/14/2017 - 05:05
JPMorgan boss Jamie Dimon has not minced his words when it comes to the cryptocurrency.
Categories: Security News

Samsung launches bug bounty program for mobile devices

zdnet 0 day - Thu, 09/14/2017 - 03:43
Researchers can earn up to $200,000 for disclosing bugs impacting the security of your handsets.
Categories: Security News

Zerodium lures researchers with $1 million payout for Tor Browser flaws

zdnet 0 day - Thu, 09/14/2017 - 02:57
The new bug bounty program only wants functional zero-day exploits.
Categories: Security News

Equifax confirms Apache Struts security flaw it failed to patch is to blame for hack

zdnet 0 day - Wed, 09/13/2017 - 20:27
The company said the March vulnerability was exploited by hackers.
Categories: Security News

On the Equifax Data Breach

Bruce Shneier's Blog - Wed, 09/13/2017 - 12:49
Last Thursday, Equifax reported a data breach that affects 143 million US customers, about 44% of the population. It's an extremely serious breach; hackers got access to full names, Social Security numbers, birth dates, addresses, driver's license numbers -- exactly the sort of information criminals can use to impersonate victims to banks, credit card companies, insurance companies, and other businesses... Bruce Schneier
Categories: Security News

Hacking Voice Assistant Systems with Inaudible Voice Commands

Bruce Shneier's Blog - Wed, 09/13/2017 - 06:03
Turns out that all the major voice assistants -- Siri, Google Now, Samsung S Voice, Huawei HiVoice, Cortana and Alexa -- listen at audio frequencies the human ear can't hear. Hackers can hijack those systems with inaudible commands that their owners can't hear. News articles.... Bruce Schneier
Categories: Security News

Does Face ID make the iPhone X more secure? Depends who's asking

zdnet 0 day - Tue, 09/12/2017 - 17:00
A brief lesson in threat models, and why you should care.
Categories: Security News