The Electronic Frontier Foundation (EFF) filed a lawsuit on Tuesday against the U.S. Department of Justice in hopes of obtaining information on secret court orders requiring technology companies to decrypt their customers’ communications.
read more
Bugcrowd Raises $15 Million to Expand Bug Bounty Business
Crowdsourced security testing company Bugcrowd announced today that has closed $15 million in a Series B funding round led by Blackbird Ventures. The new funding brings the total raised by the company to $24 million.
read more
CryptXXX Ransomware Steals Bitcoin, Private Data
As if denying a user’s access to their files and asking for a $500 ransom to restore access wasn’t bad enough, the authors of a new piece of ransomware called CryptXXX decided to also pack their malware with information stealing capabilities.
read more
“Multigrain” PoS Malware Exfiltrates Card Data Over DNS
Researchers at FireEye have come across a piece of malware that steals payment card data from point-of-sale (PoS) systems and sends it back to the attackers via DNS.
read more
Oracle Critical Patch Update for April 2016 Fixes 136 Vulnerabilities
Oracle’s Critical Patch Update (CPU) for April 2016 was released on Tuesday, bringing 136 security fixes across multiple product families. Many of the vulnerabilities addressed in the update are remotely exploitable, with seven carrying a rating of a 10.0 using the Common Vulnerability Scoring System (CVSS).
read more
Google Runs Over 400 Million Android Security Scans Daily
Google has been working on improving the overall security of its Android platform, and the Internet giant is not being shy about some of the success it has had in advancing the security of its mobile ecosystem.
read more
Dam Hackers! The Rising Risks to ICS and SCADA Environments
A German steel mill, a Ukrainian power grid, and an American dam all walk into a bar… Okay, so what could be the beginning of a bad joke is anything but a joke. No longer are data and dollars the only things at risk in cyber attacks. More and more, hackers are targeting critical infrastructure with the potential to disrupt operations and cause physical damage.
read more
Apple Denies Handing Source Code over to China
Apple on Tuesday denied providing Chinese authorities with special access to its devices, as the iPhone maker defended its position on encryption and cooperation with US law enforcement.
read more
‘We Have Not Provided Source Code to China’: Apple
Apple has not provided its underlying software instructions or "source code" to China, the company's top lawyer said Tuesday, seeking to quash rumors about the iPhone maker's data security.
read more
Security Awareness Training: Poor in UK, Better in US
AXELOS, a UK firm with strong ties to the UK government Cabinet Office, yesterday published a stinging criticism on business security awareness training in the UK.
read more
