News
Digital Ocean dumps Mailchimp after attack leaked customer email addresses
Junior cloud Digital Ocean has revealed that some of its clients’ email addresses were exposed to attackers, thanks to an attack on email marketing service Mailchimp.…
It's 2022 and there are still thousands of public systems using password-less VNC
Thousands of machines on the public internet can be remotely controlled via VNC without any authentication, a cybersecurity vendor has reminded us this month.…
Oh Deere: Farm hardware jailbroken to run Doom
At DEF CON 30 on Saturday, an Australian who goes by the handle Sick Codes showed off a way to fully take control of some John Deere farming machine electronics to run first-person shooter Doom.…
CIA accused of illegally spying on Americans visiting Assange in embassy
The CIA illegally spied on US citizens while they visited WikiLeaks publisher Julian Assange inside the Ecuadorian embassy in London, a lawsuit filed today has claimed.…
Dutch authorities arrest 29-year-old dev with suspected ties to Tornado Cash
Dutch authorities have arrested a software developer suspected of working with Tornado Cash, a cryptocurrency mixing service that only two days earlier was sanctioned by the US government for allegedly laundering money for ransomware operators and other cybercriminals.…
Indian military ready to put long-range quantum key distribution on the line
India's military has celebrated the nation's Independence Day by announcing it will adopt locally developed quantum key distribution (QKD)technology that can operate across distances of 150km.…
Black Hat and DEF CON visitors differ on physical risk management
Black Hat As last week's hacker summer camps would down it's clear that attendee numbers are still well down on the pre-COVID days, although things are recovering.…
Elon Musk wrote article for China's internet regulator, hinted at aged care robots
Asia in Brief Elon Musk has written an article for the Cyberspace Administration of China's flagship magazine.…
Ukraine's cyber chief comes to Black Hat in surprise visit
Black Hat In Brief Victor Zhora, Ukraine's lead cybersecurity official, made an unannounced visit to Black Hat in Las Vegas this week, where he spoke to attendees about the state of cyberwarfare in the country's conflict with Russia. The picture Zhora painted was bleak.…
Let there be ambient light sensing, without fear of data theft
Six years after web security and privacy concerns surfaced about ambient light sensors in mobile phones and notebooks, browser boffins have finally implemented defenses.…
Palo Alto bug used for DDoS attacks and there's no fix yet
A high-severity Palo Alto Networks denial-of-service (DoS) vulnerability has been exploited by miscreants looking to launch DDoS attacks, and several of the affected products won't have a patch until next week.…
Starlink satellite dish cracked on stage at Black Hat
Black Hat A security researcher has shown how to, with physical access at least, fully take over a Starlink satellite terminal using a homemade modchip.…
US reveals 'Target' pic of Conti man with $10m reward offer
The US government is putting a face on a claimed member of the infamous Conti ransomware group as part of a $10 million reward for information about five of the gang's crew.…
Microsoft trumps Google for 2021-22 bug bounty payouts
Microsoft appears to have beat Google on the bug bounty front, with $13.7 million in rewards spread out over 335 researchers.…
Intel ups protection against physical chip attacks in Alder Lake
Black Hat Intel has disclosed how it may be able to protect systems against some physical threats by repurposing circuitry originally designed to counter variations in voltage and timing that may occur as silicon circuits age.…
Emergency services call-handling provider: Ransomware forced it to pull servers offline
Advanced, the MSP forced to shut down some of its servers last week after identifying an "issue" with its infrastructure hosting products, has confirmed a ransomware attack and says recovery will be in the order of weeks.…
FAANGs failing on keeping user data safe from bug hunters
Black Hat Dylan Ayrey, a bug hunter and CEO of Truffle Security, discovered a big data company credential dump containing personal information belonging to about 50,000 of its users, and still hasn't fixed it. …
Higher risks and premiums are creating critical gap in cyber insurance
Black Hat Many organizations are increasingly unprepared to deal with the skyrocketing costs of a ransomware attacks, at a time when the number of incidents and the payments demanded by cybercriminals are rising rapidly.…
Security needs to learn from the aviation biz to avoid crashing
Black Hat video The security industry needs to take a leaf from the manual of an industry where smart incident response is literally life and death, if it is to fix systemic problems.…
Russian invasion has dangerously destabilized cyber security norms
Black Hat The hacktivist attacks that have occurred during the ongoing war in Ukraine are setting a dangerous precedent for cyber norms — and infrastructure security, according to journalist and author Kim Zetter.…
Pages
