A new ransomware family spotted for the first time recently is already being distributed via an exploit kit (EK).
read more
Carbanak Hackers Hit Hospitality Firms With New Tactics
The prolific Carbanak crime group has recently zoned in on the hospitality sector and adopted a new attack methodology, Trustwave security researchers warn.
read more
Identity Management Firm Okta Launches Bug Bounty Program
Cloud identity and mobility management services provider Okta announced on Wednesday the launch of a public bug bounty program with rewards of up to $15,000 per vulnerability.
read more
PacketSled CEO Resigns After Threatening to Assassinate Donald Trump
After being put on administrative leave for threatening to assassinate president-elect Donald Trump, the CEO of a network security firm has resigned after what he claims was a joke threat to shoot Trump went viral.
read more
“PoisonTap” Device Can Hack Password-Protected Computers
A researcher has created a hacking device that allows attackers to easily gain access to a password-protected computer, hijack all its Internet traffic, and install backdoors.
read more
Backdoor in Some Android Phones Sends Data to Server in China
Multiple Android mobile device models sold in the United States have been recently found to include a backdoor in their firmware and to send personally identifiable information (PII) to third-party servers without disclosure or the users' consent.
read more
The Dangers of Public Company Valuations and Security Breaches
All companies should uphold a certain standard of ethics for security, protecting their customers, employees and shareholders from personal or company valuation damage – a Hippocratic oath of sorts. Legal legislation is dangerous as it spurns activity that is only focused on compliance and not the safety of individuals. There needs to be a general collective desire for security teams to want to work together to protect the public at large.
read more
Serious Flaws Found in Lynxspring SCADA Product
A researcher has discovered some serious vulnerabilities in a SCADA product from Missouri-based building automation and management solutions provider Lynxspring. The product is no longer supported, but it’s still used by companies.
read more
Symantec Patches DLL Hijacking Flaw in Enterprise Products
Symantec informed customers on Tuesday that it has addressed a DLL loading flaw in several of its enterprise products. These types of vulnerabilities affect software from many major vendors, but they are often seen as low risk issues.
read more
Security Firms Allege Microsoft as Anti-competitive
Kaspersky Lab Accuses Microsoft of Aggressive Attitude Towards Endpoint Security Firms With Windows 10
read more
