Security News

FCC tells US telcos to implement caller ID authentication by June 30, 2021

ZDNet Zero Day - Tue, 03/31/2020 - 14:54
FCC says all US telcos must use the new SHAKEN/STIR protocol to support caller ID authentication by June, next year.
Categories: Security News

Marriott discloses new data breach impacting 5.2 million hotel guests

ZDNet Zero Day - Tue, 03/31/2020 - 13:09
Marriott says a hacker gained access to the accounts of two employees.
Categories: Security News

Clarifying the Computer Fraud and Abuse Act

Schneier on Security - Tue, 03/31/2020 - 07:51
A federal court has ruled that violating a website's terms of service is not "hacking" under the Computer Fraud and Abuse Act. The plaintiffs wanted to investigate possible racial discrimination in online job markets by creating accounts for fake employers and job seekers. Leading job sites have terms of service prohibiting users from supplying fake information, and the researchers worried... Bruce Schneier
Categories: Security News

FBI re-sends alert about supply chain attacks for the third time in three months

ZDNet Zero Day - Tue, 03/31/2020 - 01:14
The FBI says some attacks have also targeted the healthcare industry, currently grappling with the coronavirus outbreak.
Categories: Security News

Houseparty app offers $1m reward to unmask entity behind hacking smear campaign

ZDNet Zero Day - Mon, 03/30/2020 - 23:36
App maker denies getting hacked after multiple reports in British media.
Categories: Security News

Hacker hijacks YouTube accounts to broadcast Bill Gates-themed crypto Ponzi scam

ZDNet Zero Day - Mon, 03/30/2020 - 11:42
UPDATE: Microsoft says none of its verified accounts were hacked. YouTube has also intervened to take down the scam's live streams.
Categories: Security News

Privacy vs. Surveillance in the Age of COVID-19

Schneier on Security - Mon, 03/30/2020 - 06:32
The trade-offs are changing: As countries around the world race to contain the pandemic, many are deploying digital surveillance tools as a means to exert social control, even turning security agency technologies on their own civilians. Health and law enforcement authorities are understandably eager to employ every tool at their disposal to try to hinder the virus ­ even as... Bruce Schneier
Categories: Security News

Zeus Sphinx malware resurrects to abuse COVID-19 fears

ZDNet Zero Day - Mon, 03/30/2020 - 04:57
Operators are exploiting the pandemic in the quest to steal your financial information.
Categories: Security News

RDP and VPN use skyrocketed since coronavirus onset

ZDNet Zero Day - Sun, 03/29/2020 - 22:57
RDP use is up by 41%, enterprise VPN use is up by 33%.
Categories: Security News

Voter records for the entire country of Georgia published online

ZDNet Zero Day - Sun, 03/29/2020 - 21:07
A file containing voter information for 4,934,863 Georgians has been published on a hacker forum over the weekend.
Categories: Security News

Source code of Dharma ransomware pops up for sale on hacking forums

ZDNet Zero Day - Sun, 03/29/2020 - 00:16
The source code of one of today's most profitable and advanced ransomware strains is up for sale on two Russian-language hacking forums.
Categories: Security News

A mysterious hacker group is eavesdropping on corporate email and FTP traffic

ZDNet Zero Day - Fri, 03/27/2020 - 22:54
Hacker group uses zero-day in DrayTek Vigor enterprise routers and VPN gateways to record network traffic.
Categories: Security News

Friday Squid Blogging: Squid Can Edit Their Own Genome

Schneier on Security - Fri, 03/27/2020 - 16:28
Amazing: Revealing yet another super-power in the skillful squid, scientists have discovered that squid massively edit their own genetic instructions not only within the nucleus of their neurons, but also within the axon -- the long, slender neural projections that transmit electrical impulses to other neurons. This is the first time that edits to genetic information have been observed outside... Bruce Schneier
Categories: Security News

Network of fake QR code generators will steal your Bitcoin

ZDNet Zero Day - Fri, 03/27/2020 - 16:09
Nine malicious QR code generator sites have stolen $46,000 from users so far.
Categories: Security News

Story of Gus Weiss

Schneier on Security - Fri, 03/27/2020 - 06:03
This is a long and fascinating article about Gus Weiss, who masterminded a long campaign to feed technical disinformation to the Soviet Union, which may or may not have caused a massive pipeline explosion somewhere in Siberia in the 1980s, if in fact there even was a massive pipeline explosion somewhere in Siberia in the 1980s. Lots of information about... Bruce Schneier
Categories: Security News

Booz Allen analyzed 200+ Russian hacking operations to better understand their tactics

ZDNet Zero Day - Thu, 03/26/2020 - 22:40
Booz Allen: Russia uses its GRU military hackers following predictable patterns based on a public military doctrine.
Categories: Security News

Google says no APP users have been phished to date

ZDNet Zero Day - Thu, 03/26/2020 - 14:26
Google lauds its Advanced Protection Program (APP) that provides enhanced security features.
Categories: Security News

Google to resume Chrome updates it paused last week due to COVID-19

ZDNet Zero Day - Thu, 03/26/2020 - 11:34
Google Chrome 81 to be released next month, on April 7.
Categories: Security News

4G networks vulnerable to denial of service attacks, subscriber tracking

ZDNet Zero Day - Thu, 03/26/2020 - 08:00
Don’t think you’re protected on upcoming 5G networks, either.
Categories: Security News

Rare BadUSB attack detected in the wild against US hospitality provider

ZDNet Zero Day - Thu, 03/26/2020 - 08:00
Hackers use snail-mail to send target company an envelope with a malware-laced USB thumb drive.
Categories: Security News