NX-OS-hit! Got Cisco Nexus and MDS 9000 switches? Then you've got patching to do, too

The Register - Thu, 07/03/2019 - 13:39
Oof. Crop of vulns include remote code execution as root

Cisco has published patches for a plethora of problems with its products, including vulns that could trigger denial-of-service conditions – and a sneaky one that "could allow an authenticated, remote attacker to execute arbitrary commands with root privileges".…

Categories: News

RSA Conference 2019: NIST’s Privacy Framework Starts to Take Shape

Kapersky Labs - Thu, 07/03/2019 - 12:53
The Privacy Framework is being developed to be risk-based/outcome-based and non-prescriptive, unlike the GDPR.
Categories: News

TalkTalk kept my email account active for 8 years after I left – now it's spamming my mates

The Register - Thu, 07/03/2019 - 09:10
But ISP won't nuke nuisance without proof of ID

TalkTalk has refused to delete a former customer's email address which was taken over by spammers – because the unfortunate person cancelled their contract eight years ago.…

Categories: News

Schneier: Don't expect Uncle Sam to guard your web privacy – it's Europe riding to the rescue

The Register - Thu, 07/03/2019 - 08:03
'Everything we do has a moral dimension ... we are responsible for the world we create with our technologies'

RSA  If you're looking to the US government to save your electronic privacy, don't hold your breath: Europe looks to be the real hero in this fight.…

Categories: News

RSA Conference 2019: UniKey Patches BleedingBit Flaws Granting Access To Hotel Rooms, Cars

Kapersky Labs - Wed, 06/03/2019 - 21:30
BleedingBit's impact continues to spread across various devices, researchers at RSA Conference 2019 said.
Categories: News

RSA Conference 2019: The Sky’s the Limit For Satellite Hacks

Kapersky Labs - Wed, 06/03/2019 - 19:45
Satellites are spotted with vulnerabilities and design flaws - and hackers are taking note, researchers report at the RSA Conference.
Categories: News

RSA Conference 2019: How to Defend Against an AI vs AI ‘Flash War’

Kapersky Labs - Wed, 06/03/2019 - 19:42
Offensive cyber attack chains are accelerating rapidly thanks to a combination of artificial intelligence, machine learning and broadening threat landscape.
Categories: News

UK Ministry of Justice: Surprise! We tested out biometric tech in prisons and 'visitors' with drugs up their bums ran away

The Register - Wed, 06/03/2019 - 16:53
Oh, we'll let regulators know about it next time, promise

The UK Ministry of Justice is mooting a rollout of biometric technology in prisons to cut down on visitors bringing in contraband, reporting that a "successful" recent trial had a deterrent effect.…

Categories: News

RSA Conference 2019: Cryptographers’ Panel Decries Adi Shamir’s Visa Issues

Kapersky Labs - Wed, 06/03/2019 - 13:42
Panelists react to missing noted cryptographer Adi Shamir who was denied a visa to enter the US to attend RSA Conference 2019.
Categories: News

RSA Conference 2019: Data-Wiping Cyberattacks Plague Financial Firms

Kapersky Labs - Wed, 06/03/2019 - 13:00
A new report outlines the cyberattacks and threats that financial firms are facing.
Categories: News

RSA Conference 2019: Microsoft, Google, Twitter on Federal Privacy Regs

Kapersky Labs - Wed, 06/03/2019 - 11:00
Public policy honchos for the tech giants discussed what they would like to see in sweeping GDPR-like federal data privacy legislation.
Categories: News

RSAC 2019: TLS Markets Flourish on the Dark Web

Kapersky Labs - Wed, 06/03/2019 - 08:01
The certificates are often paired with ancillary products, like Google-indexed “aged” domains, after-sale support, web design services and even integration with a range of payment processors.
Categories: News

How to keep your flock of users secure: Let them know exactly who and where the wolves are

The Register - Wed, 06/03/2019 - 06:34
Rather than talk about generic threats, go through some examples with people

RSA  When it comes to getting your users up to speed with cyber-security, the best approach is to give it to them straight. Practicalities over jargon. Specific examples of threats are very persuasive, rather than simply insisting people enable a firewall and malware scanner, check regularly for updates, and avoid clicking on any suspicious attachments and links.…

Categories: News

Did you know?! Ghidra, the NSA's open-sourced decompiler toolkit, is ancient Norse for 'No backdoors, we swear!'

The Register - Wed, 06/03/2019 - 03:48
Reverse-engineering suite now available to download... and maybe run in a VM, eh?

RSA  The NSA has released its home-grown open-source reverse-engineering suite Ghidra that folks can use to poke around inside applications to hunt down security holes and other bugs.…

Categories: News

Level up Mac security, and say game over to malware? System alerts plus Apple game engine equals antivirus package

The Register - Wed, 06/03/2019 - 02:22
Wise Wardle waves wand, whacks wily worms which work without Windows

RSA  Infosec guru Patrick Wardle has found a novel way to attempt to detect and stop malware and vulnerability exploits on Macs – using Apple's own game engine.…

Categories: News

How to make people sit up and use 2-factor auth: Show 'em a vid reusing a toothbrush to clean the toilet, then tell compare it to password reuse

The Register - Wed, 06/03/2019 - 00:53
Education, education, education is key to security

RSA  Despite multi-factor authentication being on hand to protect online accounts and other logins from hijackings by miscreants for more than a decade now, people still aren't using it. Today, a pair of academics revealed potential reasons why there is limited uptake.…

Categories: News

NSA may kill off mass phone spying program Snowden exposed, says Congressional staffer

The Register - Tue, 05/03/2019 - 23:25
But really it's just the start of the latest surveillance chess game

Special report  The NSA may kill off a controversial mass surveillance program of Americans that was exposed by Edward Snowden, according to a Congressional staffer.…

Categories: News

You. Shall. Not. Pass... word: Soon, you may be logging into websites using your phone, face, fingerprint or token

The Register - Tue, 05/03/2019 - 21:37
Just don't lose your hardware keys

RSA  At 2004's RSA Conference, then Microsoft chairman Bill Gates predicted the death of the password because passwords have problems and people are bad at managing them. And fifteen years on, as RSA USA 2019 gets underway in San Francisco this week, we still have passwords.…

Categories: News

RSA Conference: BEC Scammer Gang Takes Aim at Boy Scouts, Other Nonprofts

Kapersky Labs - Tue, 05/03/2019 - 21:00
A scammer ring dubbed Scarlet Widow has targeted nonprofits, schools and universities with an array of business email compromise (BEC) attacks over the past few months.
Categories: News

RSA Conference 2019: How to Be Better, on Trust, AI and IoT

Kapersky Labs - Tue, 05/03/2019 - 20:56
Tuesday's keynotes kicking off RSA tackled both light and dark visions of the future, the imperative to become obsessed with trust, IoT and AI, and they even featured Helen Mirren and a flash mob.
Categories: News


Subscribe to Sec Tec Limited aggregator - News