Feed aggregator

US charges two members of the Dridex malware gang

ZDNet Zero Day - Thu, 12/05/2019 - 11:46
One of them is considered the leader of Evil Corp, described as "the world’s most harmful cyber crime group."
Categories: Security News

44 million Microsoft users reused passwords in the first three months of 2019

ZDNet Zero Day - Thu, 12/05/2019 - 09:42
Microsoft used a database of three billion publicly leaked credentials to identify users who reused passwords.
Categories: Security News

OpenBSD patches authentication bypass, privilege escalation vulnerabilities

ZDNet Zero Day - Thu, 12/05/2019 - 07:27
The open source project took less than 40 hours to develop fixes for the bugs.
Categories: Security News

HackerOne awards $20,000 bug bounty for private data access vulnerability on its own platform

ZDNet Zero Day - Thu, 12/05/2019 - 06:22
An analyst and a cut-and-paste job resulted in a critical security problem.
Categories: Security News

Election Machine Insecurity Story

Schneier on Security - Thu, 12/05/2019 - 06:06
Interesting story of a flawed computer voting machine and a paper ballot available for recount. All ended well, but only because of that paper backup. Vote totals in a Northampton County judge's race showed one candidate, Abe Kassis, a Democrat, had just 164 votes out of 55,000 ballots across more than 100 precincts. Some machines reported zero votes for him.... Bruce Schneier
Categories: Security News

Ransomware attack hits major US data center provider

ZDNet Zero Day - Wed, 12/04/2019 - 22:08
CyrusOne data centers infected by REvil (Sodinokibi) ransomware.
Categories: Security News

The most copied StackOverflow Java code snippet contains a bug

ZDNet Zero Day - Wed, 12/04/2019 - 18:09
Nine years later, developer corrects code snippet.
Categories: Security News

China resurrects Great Cannon for DDoS attacks on Hong Kong forum

ZDNet Zero Day - Wed, 12/04/2019 - 12:10
Two years after the last attacks, the Great Cannon is up and running again.
Categories: Security News

Iranian hackers deploy new ZeroCleare data-wiping malware

ZDNet Zero Day - Wed, 12/04/2019 - 08:47
IBM identifies new ZeroCleare destructive malware targeting energy companies active in the Middle East region.
Categories: Security News

New Zealand’s gun buyback scheme impacted by data breach, SAP to blame

ZDNet Zero Day - Wed, 12/04/2019 - 06:19
SAP has been left red-faced for allowing the security lapse to occur.
Categories: Security News

Becoming a Tech Policy Activist

Schneier on Security - Wed, 12/04/2019 - 06:04
Carolyn McCarthy gave an excellent TEDx talk about becoming a tech policy activist. It's a powerful call for public-interest technologists.... Bruce Schneier
Categories: Security News

Drugs stashed in kids toys lead to $1 million cryptocurrency seizure by police

ZDNet Zero Day - Wed, 12/04/2019 - 05:33
A pair in their twenties have been arrested.
Categories: Security News

Two malicious Python libraries caught stealing SSH and GPG keys

ZDNet Zero Day - Tue, 12/03/2019 - 18:52
One library was available for only two days, but the second was live for nearly a year.
Categories: Security News

RSA-240 Factored

Schneier on Security - Tue, 12/03/2019 - 14:12
This just in: We are pleased to announce the factorization of RSA-240, from RSA's challenge list, and the computation of a discrete logarithm of the same size (795 bits): RSA-240 = 12462036678171878406583504460810659043482037465167880575481878888328 966680118821085503603957027250874750986476843845862105486553797025393057189121 768431828636284694840530161441643046806687569941524699318570418303051254959437 1372159029236099 = 509435952285839914555051023580843714132648382024111473186660296521821206469746 700620316443478873837606252372049619334517 * 244624208838318150567813139024002896653802092578931401452041221336558477095178 155258218897735030590669041302045908071447 [...] The previous records were RSA-768 (768 bits) in December 2009 [2], and a 768-bit prime discrete logarithm in... Bruce Schneier
Categories: Security News

Dutch politician faces three years in prison for hacking iCloud accounts and leaking nudes

ZDNet Zero Day - Tue, 12/03/2019 - 13:17
City council member who doubled as a hacker set to be sentenced on Christmas Eve.
Categories: Security News

80% of all Android apps are encrypting traffic by default

ZDNet Zero Day - Tue, 12/03/2019 - 12:00
90% of all Android 9 apps are encrypting network traffic via HTTPS.
Categories: Security News

Mozilla removes Avast and AVG extensions from add-on portal over snooping claims

ZDNet Zero Day - Tue, 12/03/2019 - 09:22
The four extensions, two from Avast and two from AVG, are still available on the Chrome Web Store.
Categories: Security News

EFF warns of ‘one-way mirror’ in the world of corporate online spying

ZDNet Zero Day - Tue, 12/03/2019 - 08:09
The report exposes privacy issues and tracking techniques in online services we use on a daily basis.
Categories: Security News

Microsoft: Malware, ransomware, and cryptominer detections are down in 2019

ZDNet Zero Day - Tue, 12/03/2019 - 06:40
Phishing and DDoS attacks are up, Microsoft security stats reveal.
Categories: Security News

Remember the viral app that aged you? FBI slams FaceApp as counterintelligence threat

ZDNet Zero Day - Tue, 12/03/2019 - 06:39
Novelty may have a hidden, nefarious purpose, the FBI has cautioned.
Categories: Security News