Security News

Ubisoft sues operators of four DDoS-for-hire services

ZDNet Zero Day - Mon, 01/20/2020 - 14:03
Ubisoft delivers on threats it made in September 2019 and goes after website selling DDoS services that were used to launch attacks against Rainbow Six Siege servers.
Categories: Security News

Clearview AI and Facial Recognition

Schneier on Security - Mon, 01/20/2020 - 08:53
The New York Times has a long story about Clearview AI, a small company that scrapes identified photos of people from pretty much everywhere, and then uses unstated magical AI technology to identify people in other photos. His tiny company, Clearview AI, devised a groundbreaking facial recognition app. You take a picture of a person, upload it and get to... Bruce Schneier
Categories: Security News

Mitsubishi Electric discloses security breach, China is main suspect

ZDNet Zero Day - Mon, 01/20/2020 - 04:27
Mitsubishi Electric says hackers did not obtain sensitive information about defense contracts.
Categories: Security News

Betting companies given access to UK gov't information on millions of children

ZDNet Zero Day - Mon, 01/20/2020 - 03:29
Reports suggest a government database was misused for age verification purposes.
Categories: Security News

Citrix rolls out patches for critical ADC vulnerability exploited in the wild

ZDNet Zero Day - Mon, 01/20/2020 - 01:58
Citrix is racing to develop patches for software builds vulnerable to the severe bug.
Categories: Security News

LastPass is in the midst of a major outage

ZDNet Zero Day - Mon, 01/20/2020 - 01:50
LastPass issue appears to impact users with accounts dating back to 2014 and earlier.
Categories: Security News

Hacker leaks passwords for more than 500,000 servers, routers, and IoT devices

ZDNet Zero Day - Sun, 01/19/2020 - 05:32
The list was shared by the operator of a DDoS booter service.
Categories: Security News

Microsoft warns about Internet Explorer zero-day, but no patch yet

ZDNet Zero Day - Fri, 01/17/2020 - 16:59
IE zero-day connected to last week's Firefox zero-day.
Categories: Security News

Friday Squid Blogging: Giant Squid Genome Analyzed

Schneier on Security - Fri, 01/17/2020 - 16:19
This is fantastic work: In total, the researchers identified approximately 2.7 billion DNA base pairs, which is around 90 percent the size of the human genome. There's nothing particularly special about that size, especially considering that the axolotl genome is 10 times larger than the human genome. It's going to take some time to fully understand and appreciate the intricacies... Bruce Schneier
Categories: Security News

Visa's plan against Magecart attacks: Devalue and disrupt

ZDNet Zero Day - Fri, 01/17/2020 - 13:29
Visa is actively going after Magecart groups, but also deploying new technologies to safeguard payment card data.
Categories: Security News

JhoneRAT exploits cloud services to attack Middle Eastern countries

ZDNet Zero Day - Fri, 01/17/2020 - 08:09
Google Drive, Twitter, ImgBB and Google Forms are being abused in the name of data theft.
Categories: Security News

WordPress plugin vulnerability can be exploited for total website takeover

ZDNet Zero Day - Fri, 01/17/2020 - 07:10
The “easily exploitable” bug in WP Database Reset has serious consequences for webmasters.
Categories: Security News

A hacker is patching Citrix servers to maintain exclusive access

ZDNet Zero Day - Fri, 01/17/2020 - 06:29
FireEye believes this is a bad guy hoarding Citrix servers, rather than a good-guy vigilante looking out for organizations.
Categories: Security News

EU considers banning facial recognition technology in public spaces

ZDNet Zero Day - Fri, 01/17/2020 - 05:56
A potential ban could last for five years to allow lawmakers to catch up.
Categories: Security News

FBI seizes WeLeakInfo, a website that sold access breached data

ZDNet Zero Day - Fri, 01/17/2020 - 03:13
WeLeakInfo website sold access to more than 12 billion user records that leaked from breaches at other online services.
Categories: Security News

FBI: Nation-state actors have breached two US municipalities

ZDNet Zero Day - Thu, 01/16/2020 - 15:22
The SharePoint CVE-2019-0604 vulnerability has been one of the most targeted security flaw
Categories: Security News

Securing Tiffany's Move

Schneier on Security - Thu, 01/16/2020 - 10:01
Story of how Tiffany & Company moved all of its inventory from one store to another. Short summary: careful auditing and a lot of police.... Bruce Schneier
Categories: Security News

Proof-of-concept exploits published for the Microsoft-NSA crypto bug

ZDNet Zero Day - Thu, 01/16/2020 - 02:32
Two proof-of-concept exploits published for the CurveBall (CVE-2020-0601) vulnerability.
Categories: Security News

Chinese man arrested after making $1.6 million from selling VPN services

ZDNet Zero Day - Wed, 01/15/2020 - 18:01
Chinese authorities continue their crackdown against unauthorized VPN services with what appears to be their biggest catch so far.
Categories: Security News

More than 600 million users installed Android 'fleeceware' apps from the Play Store

ZDNet Zero Day - Wed, 01/15/2020 - 11:04
A new set of 25 Android apps caught illegally charging users at the end of a trial period.
Categories: Security News