Giga-hurts radio: Terrorists build Wi-Fi bombs to dodge cops' cellphone jammers

The Register - Fri, 17/05/2019 - 21:30
Explosives activated by wireless networking signals discovered amid election

Terrorists have been caught strapping Wi-Fi-activated backup triggers to bombs in Indonesia, police revealed this week.…

Categories: News

WordPress WP Live Chat Support Plugin Fixes XSS Flaw

Kapersky Labs - Fri, 17/05/2019 - 20:28
A cross-site scripting flaw in a popular WordPress plugin enables an unauthenticated attacker to insert JavaScript payloads into impacted websites.
Categories: News

It's not chicken feed: Million-dollar meal deal for livestock sabotaged by hackers... and, er, exchange rates

The Register - Fri, 17/05/2019 - 18:30
Six-week investigation delay shrank payment by 13%

A $1.2m shipment of livestock feed went awry when "hackers" intercepted and tweaked emails with payment details, eventually costing the cheeky buyers an extra $161,000 after exchange rates moved during the legal fallout.…

Categories: News

Ransomware ‘Remediation’ Firm Exposed: Researchers Weigh in on Paying

Kapersky Labs - Fri, 17/05/2019 - 18:06
The decision to pay a ransom in the case of a ransomware attack can be a complex one for businesses.
Categories: News

How Decoding Network Traffic Can Save Your Data Bacon

Kapersky Labs - Fri, 17/05/2019 - 16:44
The importance of reading the network tealeaves of a company’s network traffic to head off an attack.
Categories: News

Get out of Huawei, it's an avalanche of news from everyone's favourite Chinese bogeyman

The Register - Fri, 17/05/2019 - 15:28
We read this week's Huawei happenings and filleted it so you don't have to

Roundup  Huawei has been kicked by a US national emergency proclamation hitting "foreign" gear, spent some cash in France, claimed it's worth billions to Britain and was described as "a potential security risk" by a former head of MI6. And that's just the last five days.…

Categories: News

News Wrap: WhatsApp, Microsoft, Intel and Cisco Flaws

Kapersky Labs - Fri, 17/05/2019 - 12:37
From a zero day flaw in WhatsApp, to Patch Tuesday fixes, Threatpost breaks down the top vulnerabilities of this week.
Categories: News

Good heavens, is it time to patch Cisco kit again? Prime Infrastructure root privileges hole plugged

The Register - Fri, 17/05/2019 - 09:09
Do the thing ASAP, you know how it works by now

Among a bumper crop of 57 security issues Cisco divulged on Wednesday was a fix for a trio of vulns, one critical, in networks management tool Prime Infrastructure.…

Categories: News

Freed whistleblower Chelsea Manning back in jail for refusing to testify before secret grand jury

The Register - Fri, 17/05/2019 - 02:56
If orange is the new black, she's back in black

After seven days of freedom, US Army whistleblower Chelsea Manning is back behind bars for refusing to testify before a secret federal grand jury investigating WikiLeaks.…

Categories: News

Bank-account-raiding Goznym malware bust: Five suspects collared, five still on the run. $100m feared stolen

The Register - Fri, 17/05/2019 - 00:37
Most exciting Enid Blyton book yet – Five accused of international fraud?

Ten people have been accused of masterminded the theft of roughly $100m from bank accounts using the Goznym malware. Five have been arrested, charged, and are facing prosecution, and five have been indicted and remain at large. An eleventh person linked to the software nasty is awaiting sentencing after admitting his crimes.…

Categories: News

The plane, it's 'splained, falls mainly without the brain: We chat to boffins who've found a way to disrupt landings using off-the-shelf radio kit

The Register - Thu, 16/05/2019 - 22:03
DoS cyber-attacks are not just for websites, they may also be for aircraft ILS

Video  Aircraft instrument landing systems (ILS) are susceptible to radio signal spoofing using off-the-shelf equipment, boffins have found, calling into question the adequacy of aviation cybersecurity.…

Categories: News

Mobile Risks Boom in a Post-Perimeter World

Kapersky Labs - Thu, 16/05/2019 - 19:36
The bloom is on mobile, whether it be the enterprise, employees or the cybercriminals plotting new ways to slip past a corporate defenses in a post-parameter world.
Categories: News

Forbes Becomes Latest Victim of Magecart Payment Card Skimmer

Kapersky Labs - Thu, 16/05/2019 - 19:01
The web skimming script was recently found stealing payment data on the websites of Forbes Magazine as well as seven others.
Categories: News

Office 365 user security practices are woeful, yet it's still 'Microsoft's fault' when an org is breached

The Register - Thu, 16/05/2019 - 18:04
As soon as defences are sold as a product, hygiene suffers

The US Cybersecurity and Infrastructure Security Agency (CISA) has become the latest government body to plead with admins to implement security best practices on Microsoft's Office 365 platform.…

Categories: News

Cisco Service Provider, WebEx Bugs Offer Up Remote Code Execution

Kapersky Labs - Thu, 16/05/2019 - 14:53
The vendor also issued a patch schedule for the still-unpatched bug in its Secure Boot trusted hardware environment, which affects most of its enterprise and SMB portfolio, amounting to millions of vulnerable devices.
Categories: News

Cybercrime Gang Behind GozNym Banking Malware Dismantled

Kapersky Labs - Thu, 16/05/2019 - 14:05
Europol said it has dismantled the cybercrime network behind the GozNym malware, which siphoned more than $100 million from businesses.
Categories: News

Breaking news: Bank-card-slurping malware sneaks into Forbes' mag subscription website

The Register - Thu, 16/05/2019 - 02:57
Dead-tree devotees who recently signed up may want to check their statements

The Magecart credit-card-skimming malware that is the bane of internet shoppers has been spotted again, this time on the Forbes magazine subscription website.…

Categories: News

Google Titan Security Key Recalled After Bluetooth Pairing Bug

Kapersky Labs - Wed, 15/05/2019 - 21:01
Google is offering free replacements for its Titan Security Key after discovering a misconfiguration in its pairing protocols.
Categories: News

Titan-ic disaster: Bluetooth blunder sinks Google's 2FA keys, free replacements offered

The Register - Wed, 15/05/2019 - 20:42
A pairing problem makes an account compromise possible, although improbable

Google is offering free replacements of its Titan Security Keys, used for two-factor authentication, after learning the widgets' Bluetooth connections could be compromised by nearby hackers.…

Categories: News

We like transparency and we're a CA, hackers hack all night and we log all day

The Register - Wed, 15/05/2019 - 19:24
Cert authority Sectigo funds Lets Encrypt transparency log

Let’s Encrypt has wheeled out a new certificate transparency log called Oak, which is funded for a year by the certificates arm of Sectigo (formerly known as Comodo).…

Categories: News


Subscribe to Sec Tec Limited aggregator - News