Security News

North Korean defectors, journalists targeted through Google Play

zdnet 0 day - Mon, 05/21/2018 - 04:53
Malware-laden Android apps aim to steal photos, contact lists, and sensitive information belonging to defectors and their supporters.
Categories: Security News

Teen phone monitoring app leaked thousands of user passwords

zdnet 0 day - Sun, 05/20/2018 - 11:20
Exclusive: A server stored teenagers' Apple ID email addresses and plaintext passwords.
Categories: Security News

Friday Squid Blogging: Flying Squid

Bruce Shneier's Blog - Fri, 05/18/2018 - 16:20
Flying squid are real. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Read my blog posting guidelines here.... Bruce Schneier
Categories: Security News

Maliciously Changing Someone's Address

Bruce Shneier's Blog - Fri, 05/18/2018 - 06:20
Someone changed the address of UPS corporate headquarters to his own apartment in Chicago. The company discovered it three months later. The problem, of course, is that in the US there isn't any authentication of change-of-address submissions: According to the Postal Service, nearly 37 million change-of-address requests ­ known as PS Form 3575 ­ were submitted in 2017. The form,... Bruce Schneier
Categories: Security News

Operator of counter-antivirus service Scan4You prosecuted

zdnet 0 day - Fri, 05/18/2018 - 01:59
The service was designed for malware developers seeking to circumvent antivirus products.
Categories: Security News

Cell phone tracking firm exposed millions of Americans' real-time locations

zdnet 0 day - Thu, 05/17/2018 - 14:45
The bug allowed one Carnegie Mellon researcher to track anyone's cell phone in real time.
Categories: Security News

A bug in Keeper password manager leads to sparring over "zero-knowledge" claim

zdnet 0 day - Thu, 05/17/2018 - 13:20
The company says it has "zero knowledge" of user data. But a security researcher claimed otherwise.
Categories: Security News

A flaw in a connected alarm system exposed vehicles to remote hacking

zdnet 0 day - Thu, 05/17/2018 - 10:38
The researchers said it was easy to locate a nearby car, unlock it, and drive away.
Categories: Security News

Adware bundle makes Chrome invisible to launch cryptojacking attacks

zdnet 0 day - Thu, 05/17/2018 - 06:51
CPU usage spikes up to 80 percent on infected machines.
Categories: Security News

White House Eliminates Cybersecurity Position

Bruce Shneier's Blog - Thu, 05/17/2018 - 06:23
The White House has eliminated the cybersecurity coordinator position. This seems like a spectacularly bad idea.... Bruce Schneier
Categories: Security News

MaxiDed, dead: Law enforcement closes hosting service linked to criminal activity

zdnet 0 day - Thu, 05/17/2018 - 05:40
The hosting provider was connected to everything from botnets to child pornography.
Categories: Security News

Brutal cryptocurrency mining malware crashes your PC when discovered

zdnet 0 day - Thu, 05/17/2018 - 04:15
WinstarNssmMiner not only leeches your processing power but will maliciously crash your system if you attempt to remove it.
Categories: Security News

SEC launches spoof cryptocurrency ICO scam website

zdnet 0 day - Thu, 05/17/2018 - 03:20
The US agency's eerie Initial Coin Offering domain is designed to educate investors about the risks of ICOs.
Categories: Security News

Security vendors need to stop doing more harm than good

zdnet 0 day - Wed, 05/16/2018 - 12:00
Opinion: What if the security industry operated under a basic tenet: "First, do no harm?"
Categories: Security News

Telegrab malware hijacks Telegram desktop sessions

zdnet 0 day - Wed, 05/16/2018 - 12:00
Telegram sessions, contacts, and previous chats are all at risk of the info-stealing malware.
Categories: Security News

I asked Apple for all my data. Here's what was sent back

zdnet 0 day - Wed, 05/16/2018 - 08:00
Apple gave me all the data it collected on me since I bought my first iPhone — in 2010.
Categories: Security News

Accessing Cell Phone Location Information

Bruce Shneier's Blog - Wed, 05/16/2018 - 06:16
The New York Times is reporting about a company called Securus Technologies that gives police the ability to track cell phone locations without a warrant: The service can find the whereabouts of almost any cellphone in the country within seconds. It does this by going through a system typically used by marketers and other companies to get location data from... Bruce Schneier
Categories: Security News

GDPR: A boon for privacy or choking regulation? Businesses weigh in

zdnet 0 day - Wed, 05/16/2018 - 05:30
IBM says that while many firms view GDPR as a catalyst for new business models, few will be ready in time.
Categories: Security News

White House eliminates cybersecurity coordinator role

zdnet 0 day - Tue, 05/15/2018 - 14:33
There was near universal agreement that the cybersecurity coordinator position was important. But the White House disagreed.
Categories: Security News

Auth0 secures $55 million to improve identity-as-a-service tech

zdnet 0 day - Tue, 05/15/2018 - 10:00
The company's Identity-as-a-Service products have appealed to a fresh round of investors willing to take a bet on the startup.
Categories: Security News