Twitter Android Glitch Exposed Private Tweets for Years

Kapersky Labs - Fri, 18/01/2019 - 14:42
Twitter has fixed the issue, which has been ongoing since 2014.
Categories: News

Microsoft partner portal 'exposes 'every' support request filed worldwide' today

The Register - Fri, 18/01/2019 - 13:47
No customer data visible but hell's bells, Redmond, what have you borked now?

Exclusive  Alarmed Microsoft support partners can currently view support tickets submitted from all over the world, in what appears to be a very wide-ranging blunder by the Redmond-based biz.…

Categories: News

I used to be a dull John Doe. Thanks to Huawei, I'm now James Bond!

The Register - Fri, 18/01/2019 - 10:25
We'll know for sure when Huawei reveals a shoe-shaped smartphone

Something for the Weekend, Sir?  The name's McLeod. Alessandro McLeod. I am a spy for the secret services.…

Categories: News

Microsoft blue biz bug bounty bonanza beckons

The Register - Fri, 18/01/2019 - 06:22
Azure DevOps Services invites hackers to test its limits

There's more money to be made from bug hunting in Microsoft code after Redmond announced its 10th active bug hunting reward scheme, the Azure DevOps Bounty Program.…

Categories: News

Old bugs, new bugs, red bugs … yes, it's Oracle mega-update day again

The Register - Fri, 18/01/2019 - 02:56
Out of 284 flaws, 33 are rated critical. Big Red admins have big patches ahead

Oracle admins, here's your first critical patch advisory for 2019, and it's a doozy: a total of 284 vulnerabilities patched across Big Red's product range, and 33 of them are rated “critical”.…

Categories: News

Got a Drupal-powered website? You may want to get patching now...

The Register - Fri, 18/01/2019 - 01:45
Open-source CMS gets a pair of critical fixes

Drupal has issued a pair of updates to address two security vulnerabilities in its online publishing platform. The vulns are a little esoteric, and will not affect most sites, but it's good to patch just in case you later add functionality that can be exploited.…

Categories: News

Twitter. Android. Private tweets. Pick two... Account bug unlocked padlocked accounts

The Register - Fri, 18/01/2019 - 00:01
Cock-up went unnoticed for two Olympics, one World Cup, an EU referendum, and a US presidential election

Twitter has fessed up to a flaw in its Android app that, for more than four years, was making twits' private tweets public. The programming blunder has been fixed.…

Categories: News

Microsoft Launches Azure DevOps Bug Bounty Program

Kapersky Labs - Thu, 17/01/2019 - 22:36
Microsoft is offering rewards of up to $20,000 for flaws in its Azure DevOps online services and the latest release of the Azure DevOps server.
Categories: News

Apple CEO Demands Federal Data Privacy Legislation

Kapersky Labs - Thu, 17/01/2019 - 20:04
Apple CEO Tim Cook has called on the government to double down on data privacy regulation in 2019.
Categories: News

Top GP: Medical app Your.MD's data security wasn't my remit

The Register - Thu, 17/01/2019 - 17:15
Prof Maureen Baker told tribunal info security and clinical safety are two separate things

The founders of medical symptom-checker app Your.MD knew that a number of key medical information databases were "open to anyone who knows the URL", emails seen by a London tribunal have revealed.…

Categories: News

Cyber-Jackpot: 773M Credentials Dumped on the Dark Web

Kapersky Labs - Thu, 17/01/2019 - 15:41
Thousands of individual breaches make up the database, one of the largest troves of stolen credentials ever seen.
Categories: News

Cryptomining Malware Uninstalls Cloud Security Products

Kapersky Labs - Thu, 17/01/2019 - 14:03
New samples of cryptomining malware performs a never-before-seen function: uninstalling cloud security products.
Categories: News

Happy Thursday! 770 MEEELLLION email addresses and passwords found in yuge data breach

The Register - Thu, 17/01/2019 - 11:50
Now is a good time to get a password manager app

Infosec researcher Troy Hunt has revealed that more than 700 million email addresses have been floating around “a popular hacker forum” - along with a very large number of plain text passwords.…

Categories: News

South Korea says mystery hackers cracked advanced weapons servers

The Register - Thu, 17/01/2019 - 08:01
No idea who could have been behind this one...

The South Korea Ministry of National Defense says 10 of its internal PCs have been compromised by North Korea unknown hackers .…

Categories: News

$24m in fun bux stolen from crypto-mogul. Now he fires off huge fraud charge. Like, RICO, say?

The Register - Thu, 17/01/2019 - 00:29
Lawsuit claims coin thief was part of a gang targeting crypto whales

The victim of a $24m cryptocurrency heist is suing his assailants in what is believed to be the first ever RICO claim involving digital currency.…

Categories: News

Threatpost Survey Says: 2FA is Just Fine, But Go Ahead and Kill SMS

Kapersky Labs - Wed, 16/01/2019 - 22:09
Our reader poll showed overwhelming support for 2FA even in the wake of a bypass tool being released -- although lingering concerns remain.
Categories: News

Millions of Oklahoma Gov Files Exposed by Wide-Open Server

Kapersky Labs - Wed, 16/01/2019 - 20:25
The storage server was left open for about a week and exposed everything from sensitive FBI investigations to data related to patients with AIDS.
Categories: News

Lowjax city: Researchers crack open notorious Fancy Bear rootkit

The Register - Wed, 16/01/2019 - 18:04
UEFI malware has been in the wild for more than two years

The Fancy Bear hacking group's Lojax rootkit is far from a one-off tool, and may have been active in the wild for years before it was first reported.…

Categories: News

U.S. Issues Multiple Charges For 2016 SEC Hack

Kapersky Labs - Wed, 16/01/2019 - 16:47
The two were able to hack into the SEC's computer systems due to phishing attacks that stole credentials and spread malware.
Categories: News

Fortnite Hacked Via Insecure Single Sign-On

Kapersky Labs - Wed, 16/01/2019 - 16:16
Leaky Fortnite single sign-on mechanism could have allowed hackers to access game accounts.
Categories: News


Subscribe to Sec Tec Limited aggregator - News