Researchers at Cisco have identified millions of machines that could become infected with file-encrypting ransomware due to out-of-date software.
Ransomware attacks aimed at organizations have been increasingly common and malicious actors have been trying to come up with new methods to make their operations more profitable.
read more
Apple Defends Stand in Brooklyn Case on iPhone Access
Apple urged a federal court Friday to reject efforts to force the company to help break into an iPhone as part of a New York drug investigation.
In the latest case involving efforts to compel Apple to help law enforcement break encryption, the company said the court should simply rule the assistance is unnecessary and not authorized by law.
read more
Authorities Disrupt ATM Skimming Operation
Authorities successfully disrupted a large-scale ATM skimming operation as part of a collaboration with Italian law enforcement, Europol announced Thursday.
read more
Western Digital User Data Exposed by DNS Issue
A DNS configuration issue on a Western Digital (WD) server supporting the company's My Cloud NAS products could have been exploited by malicious actors to gain access to potentially valuable user data. WD has taken steps to address the problem.
read more
Microsoft Details Security Responsibilities for Azure Cloud Customers
Microsoft Publishes White Papers on Incident Response and Shared Responsibility for Azure Cloud Customers
read more
VMware Patches Critical Vulnerability
VMware released updates for several of its products on Thursday to address a critical vulnerability.
The VMware Client Integration Plugin (CIP) provides access to a virtual machine’s console in the vSphere Web Client, and allows users to connect virtual devices that reside on a client computer to a virtual machine.
read more
New EU General Data Protection Regulation Affects Multinational Companies
The General Data Protection Regulation is now, effectively, law. Businesses have 730 days from official publication (expected to be in June) to comply. It would be a mistake to think that this is just a European issue: it will affect every business throughout the world that holds or uses European personal data.
read more
California Quietly Drops Bill Requiring Phone Decryption
The California Assembly Bill 1681 was quietly dropped this week without a vote. The bill would have authorized $2,500 penalties for phone manufacturers and operating system providers if they do not comply with court orders to decrypt phones. In effect, it would force phone providers to include a backdoor or face repeated fines.
read more
Hacker Group Disrupts Video Game Service in DDoS Attack
“Lizard Squad” Knocks Video Game Servers of Blizzard Entertainment Offline
Servers operated by Blizzard Entertainment went down yesterday following a distributed denial of service (DDoS) attack against the video game company,claimed by the Lizard Squad hacking group.
read more
Blackhole Exploit Kit Author Sentenced to Prison
Dmitry Fedotov, the Russian national who created the now-defunct Blackhole exploit kit, was sentenced this week by a Moscow court to seven years in prison.
read more
