Europol admitted on Wednesday that confidential information on terror investigations were accidentally put online, as it launched a probe into what it called a "very serious incident."
read more
Flaws Found in Emerson DeltaV, Liebert Products
ICS-CERT has published three advisories describing vulnerabilities discovered in Emerson’s DeltaV and Liebert products by the company and outside researchers.
The most serious of the flaws, rated “high severity” with a CVSS score of 7.5, was identified by Evgeny Ermakov from Positive Technologies.
read more
Cyber Defenders Must Focus on the Ends, Not the Means
Too Many Organizations Focus on the Means, Rather than the Ends
read more
Tor Users Targeted With Firefox Zero-Day Exploit
A JavaScript exploit leveraging a zero-day vulnerability in Firefox has been spotted in attacks aimed at Tor users. Mozilla and Tor Browser developers are expected to quickly release updates that address the security hole.
read more
The Past, Present, and Future of Cyber Security
It’s No Longer Feasible to Manage Threats Individually, Given the Sheer Volume of Security Gaps That Exist.
read more
SHIFT+F10 During Windows 10 Updates Can Bypass BitLocker
Windows has long had a troubleshooting feature that can be used during installs: SHIFT+F10 brings up a command prompt. While this has many advantages, it can be abused. For example, during the more frequent feature updates in Windows 10 (as opposed to the old practice of providing a distinct new OS version), pressing SHIFT+F10 gives the user admin privileges while BitLocker is disabled.
read more
PCI DSS 3.2: Third Party Service Providers, It’s Time to Step Up
On November 1, 2016, the latest version of the Payment Card Industry Data Security Standard (PCI DSS 3.2) took effect. The PCI DSS 3.2 has a number of notable changes, particularly for third party service providers.
read more
UK’s GCHQ Spy Agency Launches Open Source Data Analysis Tool
The U.K. Government Communications Headquarters (GCHQ) on Monday announced the launch of a new open source web tool designed for analyzing and decoding data.
read more
‘Dronejacking’ May be the Next Big Cyber Threat
A big rise in drone use is likely to lead to a new wave of "dronejackings" by cybercriminals, security experts warned Tuesday.
A report by Intel's McAfee Labs said hackers are expected to start targeting drones used for deliveries, law enforcement or camera crews, in addition to hobbyists.
read more
How Machine Learning Will Help Attackers
Machine Learning Will Improve The Probability of a Successful Attack
read more
