Cyber-insurance shock: Zurich refuses to foot NotPetya ransomware clean-up bill – and claims it's 'an act of war'

The Register - Fri, 11/01/2019 - 00:19
Snack company client disagrees, sues for $100m

US snack food giant Mondelez is suing its insurance company for $100m after its claim for cleaning up a massive NotPetya ransomware infection was rejected – for being "an act of war" and therefore not covered under its policy.…

Categories: News

At CES, Focus is On ‘Cool Factor’ Not IoT Security

Kapersky Labs - Thu, 10/01/2019 - 21:32
When it comes to IoT, the priority at CES is the "wow factor" - but not so much a focus on security.
Categories: News

Reddit locks out users with poor password hygiene after spotting 'unusual activity'

The Register - Thu, 10/01/2019 - 19:13
Forum admin blames recycled credentials for 'security concern'

Some Redditors have been locked out of their accounts over a mysterious security problem that the internet forum's admins have blamed on people reusing old passwords.…

Categories: News

‘Unprecedented’ DNS Hijacking Attacks Linked to Iran

Kapersky Labs - Thu, 10/01/2019 - 16:05
The attacks, targeting several countries to redirect traffic and harvest credentials, have been linked to Iran.
Categories: News

Google Search Results Spoofed to Create Fake News

Kapersky Labs - Thu, 10/01/2019 - 15:45
The technique can be used to spread disinformation while leveraging the trust people have in Google's search results.
Categories: News

Baddies linked to Iran fingered for DNS hijacking to read Middle Eastern regimes' emails

The Register - Thu, 10/01/2019 - 14:04
'Almost unprecedented' attacks use the old man-in-the-middle diddle – infoseccers

Infosec biz FireEye has suggested Iran may be responsible for what it claims are DNS hijacking attacks aimed at snooping on the contents of Middle Eastern governments' email inboxes.…

Categories: News

Before you slink off to the pub, be sure to patch these 19 serious vulns in Juniper Networks kit

The Register - Thu, 10/01/2019 - 09:45
Happy New Year from the Gin Palace

Juniper Networks has had its first big bug day in months, with 19 patches announced covering everything from third-party package catchups to critical errors in password handling.…

Categories: News

The D in SystemD stands for Dammmit... Security holes found in much-adored Linux toolkit

The Register - Thu, 10/01/2019 - 06:57
Patches pending for distros to deal with threat of local privilege escalation to root

Security biz Qualys has revealed three vulnerabilities in a component of systemd, a system and service manager used in most major Linux distributions.…

Categories: News

Critical Flaw in Cisco’s Email Security Appliance Enables ‘Permanent DoS’

Kapersky Labs - Wed, 09/01/2019 - 22:33
A remote attacker could exploit the vulnerability simply by sending an email.
Categories: News

Who cracked El Chapo's encrypted chats and brought down the Mexican drug kingpin? Er, his IT manager

The Register - Wed, 09/01/2019 - 21:33
Feds flipped techie and recorded hundreds of calls

In an extraordinary twist, it was revealed on Tuesday that the man most likely responsible for bringing drug kingpin "El Chapo" Joaquin Guzman to justice was none other than his sysadmin.…

Categories: News

ICEPick-3PC: A Sophisticated Adware That Collects Data En Masse

Kapersky Labs - Wed, 09/01/2019 - 21:16
Researchers think an organized crime gang is running the massive campaigns, prepping for large-scale follow-on attacks on Android users.
Categories: News

Google Play Boots 85 Malicious Adware Apps

Kapersky Labs - Wed, 09/01/2019 - 20:59
Once downloaded, the fake apps hide themselves on the victim’s device and continue to show a full-screen ad every 15 minutes.
Categories: News

ThreatList: WordPress Vulnerabilities Tripled in 2018

Kapersky Labs - Wed, 09/01/2019 - 18:27
Despite fewer plugins being added to Wordpress last year, the CMS saw an astounding tripling of vulnerabilities in its platform in 2018.
Categories: News

Biometrics in 2019: Increased Security or New Attack Vector?

Kapersky Labs - Wed, 09/01/2019 - 18:17
Should we pump the brakes on the roll out of biometric security to first consider whether we are creating new vulnerabilities?
Categories: News

The Promise and Peril of 5G

Kapersky Labs - Wed, 09/01/2019 - 17:35
As the hype at CES demonstrates, 5G is the newest and shiniest tech bauble out there: but security concerns loom.
Categories: News

Intel Patches High-Severity Privilege-Escalation Bugs

Kapersky Labs - Wed, 09/01/2019 - 16:16
Overall, the chip giant patched five vulnerabilities across an array of its products.
Categories: News

Google Play Store spews malware onto 9 million 'Droids

The Register - Wed, 09/01/2019 - 15:33
How did these get through the net?

Malware made it past Google's detection systems and infected some 9 million Android users, analyst Trend Micro has found. Google has removed 85 apps from the Google Play Store as a result.…

Categories: News

Great, you've moved your website or app to HTTPS. How do you test it? Here's a tool to make local TLS certs painless

The Register - Wed, 09/01/2019 - 08:04
Breathe easier knowing you've tested your software properly

A Google cyrptoboffin is close to releasing a tool that will hopefully make all of us more secure online.…

Categories: News

Make a SAP decision: Apply these security fixes if you're using German giant's software

The Register - Wed, 09/01/2019 - 00:58
11 patches ship on Patch Tuesday

While you were sighing your way through Microsoft's Patch Tuesday, enterprise vendor SAP slid 11 security advisories under your door.…

Categories: News

Welcome to 2019: Your Exchange server can be pwned by an email (and other bugs need fixing)

The Register - Tue, 08/01/2019 - 23:28
Hyper-V, DHCP, Word, and more. Plus, bonus shock: Adobe spares Flash in January patch dump

Patch Tuesday  Microsoft has released the first Patch Tuesday bundle of the year, patching up 49 CVE-listed security vulnerabilities and issuing two advisories.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News