INSTA-LEADS: Our Full-Service B2B Marketing Program Delivers Sales-Ready Leads Click to Learn More!
Welcome Guest | Sign In
ECommerceTimes.com
FBI's Comey Argues Against Encryption: Trust Us
October 20, 2014
FBI director James Comey, in a speech last week at the Brookings Institute, reiterated his concerns about encryption built into iOS 8 and Android stymieing law enforcement. "I'm a huge believer in the rule of law, but I also believe that no one in this country should be beyond the law," he said. However, the law has not kept pace with technology, Comey pointed out.
Microsoft Patch Blocks Sandworm Tunnels
October 17, 2014
iSight Partners this week revealed that a cybergang it dubbed "Sandworm" has been exploiting a zero-day vulnerability that impacts all supported versions of Microsoft Windows, including Windows Server 2008 and 2012. The announcement was held off until Microsoft issued its patch earlier this week. If exploited, the flaw will let attackers remotely execute code on target systems.
Kaspersky Probes ATM Malware Mystery
October 10, 2014
Kaspersky Lab this week reported that criminals have been emptying ATMs and infecting them with malware dubbed "Tyupkin." About 50 machines have been infected in eastern Europe, and the attacks have spread to the United States, India and China, based on statistics culled from VirusTotal, Kaspersky said. The attackers target ATMs running Windows 32-bit operating systems.
Tech Execs Issue Dire Warnings on Impact of NSA Surveillance
October 10, 2014
The NSA's wide-ranging surveillance of people's communications worldwide is hitting America's high-tech industry hard, said panelists on Wednesday at a roundtable held by Senate Finance Committee Chairman Ron Wyden in Palo Alto, California. Wyden set the tone from the start: "This is going to cost America jobs." Several foreign governments are planning to build domestic Internets.
Phishers Find Apple Most Tasty Target
October 07, 2014
"Follow the money" isn't just the war cry of journalistic bloodhounds hot on the trail of political corruption. It's the mantra of Web predators, too. That's why PayPal consistently has been the top brand targeted by phishers -- although that appears to have changed. Apple now has the dubious distinction of most-phished brand, according to the latest report from the Anti-Phishing Work Group.
FDA Aims to Shore Up Medical Device Cybersecurity
October 06, 2014
The Food and Drug Administration last week released long-awaited recommendations aimed at better managing cybersecurity risks to protect patient health and information. The new standards recommend manufacturers take into account cybersecurity risks as part of the design and development of a medical device. They require device makers to submit documentation to the FDA about identified risks.
'Data Divination: Big Data Strategies' Is a Great Hip-Pocket Tool
October 02, 2014
Most of today's books about Big Data delve into highly technical tools, cloud technology, and high-level computer-assisted math calculations and algorithms. For most people in the business world, this is far from motivating readers to appreciate just what Big Data does and how to let it get you there. However, that's not so with Data Divination: Big Data Strategies by Pam Baker.
Consumers Fed Up With Data Breaches
September 30, 2014
Consumers are beginning to lose their patience with the custodians of their personal information. Survey results from 2,000 consumers released last week by HyTrust, suggest that 51 percent of those polled would bolt from any business involved in a data breach that compromised personal information such as address, Social Security number or credit card details.
Banks, Businesses Scramble to Smash Bash Shellshock Bug
September 29, 2014
Banks and businesses toiled over the weekend to crush a bug in a widely used open source operating system. The flaw has been in Unix for some 25 years, but it was revealed just last week. If exploited, the vulnerability could be used to inject malicious code or take command of a system or device. Dubbed "Shellshock," it requires patching systems and devices running Apple's OS X, Linux and Unix.
FBI Director Comey Gives Apple and Google a Tongue-Lashing
September 26, 2014
FBI Director James Comey on Thursday strongly criticized Apple and Google for hardening information stored in smartphones by encrypting data, making it inaccessible to law enforcement even with a court order. The FBI has had conversations with both Apple and Google over the encryption features, Comey said, although he personally was not involved in those talks.
Bash Shellshock Bug Patched but Not Pummeled
September 25, 2014
Researchers on Thursday discovered proof-of-concept code that could take advantage of unpatched computer systems, and found evidence of attacks exploiting the BASH Shellshock bug in the wild. Shellshock, which came to light on Wednesday, could become a major threat to Linux/Unix and Apple operating systems if published patches to BASH are not applied before an attacker cashes in.
Researcher Foils iPhone 6 Touch ID
September 24, 2014
Apple's Touch ID fingerprint scanner is a step up from passcodes for protecting iPhones, but it's far from totally secure. Lookout Mobile Security's Marc Roger, fooled Touch ID on Apple's new iPhone 6 by crafting a false fingerprint from a DIY forgery kit that cost about $200 to assemble. Rogers performed similar experiments when Touch ID was introduced in the iPhone 5s last year.
Banking Trojan Targets Petrochemical Outfits
September 23, 2014
The pernicious program Citadel has been around for awhile, but it's using some new tricks on new targets. From its humble origins as a "man in the browser" thief of banking credentials, Citadel has become a knave of all trades. Once it lands on a computer, it can be configured in a number of ways with a file from a server operated by Web predators.
Home Depot Gives 56 Million Customers a Heads Up
September 19, 2014
Home Depot on Thursday said it had excised the malware demon from its computerized payment system after its recent discovery of a security breach in which thieves stole records of 56 million credit cards. Home Depot stopped short of admitting that an ongoing security upgrade may have contributed to the breach. Efforts to harden the system with enhanced encryption are under way.
Android L Will Keep Your Secrets Safer
September 19, 2014
Hard on the heels of increased security measures in Apple's newly released iOS 8, Google this week confirmed that encryption will be turned on by default in the next release of Android. Android has offered encryption for more than three years, and keys are not stored off the device, so they can't be shared with law enforcement, Google said. In Android L, encryption will be enabled by default.
Apple Fills iOS 8 Security Basket to Brim
September 19, 2014
With data thefts and cybersnooping making headlines daily, security has started to capture the attention of the disciples of the digital lifestyle -- and if the latest version of iOS is any indication, it's catching the attention of Apple, too. Along with nifty features like Hand Off and Family Sharing, iOS 8 contains a number of significant security and privacy enhancements.
XSS Flaw Burns a Hole in Kindle Security
September 16, 2014
Security consultant Benjamin Mussler last week warned that the Kindle e-book library had a cross-site scripting vulnerability. It appears Amazon previously had fixed the XSS flaw but two months ago reintroduced it in a new version of the "Manage Your Kindle" Web application, according to Mussler. People who download pirated e-books are at greatest risk, he said.
Feds Wielded Baseball Bat to Win Yahoo's NSA Cooperation
September 12, 2014
The Obama administration threatened Yahoo with fines of $250,000 daily if it wouldn't comply with demands to hand over user information to the NSA, Yahoo has disclosed. Yahoo had filed suit against the demands in 2007, citing the Fourth Amendment. "They basically said you must do this thing that you don't want to do or we'll put you out of business," said ITIF's Daniel Castro.
DoD Ramps Up Security as It Drifts Toward Cloud
September 12, 2014
DoD is committed to pursuing cloud-based services and steadily has been improving its capabilities to utilize the technology. The latest evidence of its embracing the cloud is approval of a protocol that will facilitate the use of the technology at higher security levels. DISA has granted provisional authorization for the use of cloud services to levels 3 to 5 of its Cloud Security Model.
Millions of Gmail Users Victims of Latest Password Heist
September 11, 2014
About 5 million Gmail usernames and passwords have been published on a Russian bitcoin security forum as a text file. Sixty percent of the 4.93 million credentials in the file were valid, claimed the poster, who used the online handle "tvskit." The information reportedly was dumped on several Russian cybercrime forums and shared through a variety of peer-to-peer services.
IBM Enlists Intel to Shore Up Hybrid Cloud
September 10, 2014
Despite the growing momentum behind cloud computing in recent times, security concerns have been a drag on adoption. IBM sought to reduce that resistance by announcing on Monday that it would start using Intel chip technology to better secure its SoftLayer cloud platform. The Intel technology can be especially reassuring to enterprises running hybrid clouds.
Comcast Ad Tinkering Could Muck Up WiFi Security
September 10, 2014
Comcast has begun using JavaScript injection to serve ads for its services to devices connected to its publicly accessible Xfinity WiFi hotspots across the U.S. The ads are fleeting, but they can appear roughly every seven minutes. The program reportedly began months ago. "This practice is definitely concerning for multiple reasons," said the Electronic Freedom Foundation's Jeremy Gillula.
Botnet Twists the Knife in iCloud Security
September 10, 2014
Hot on the heels of hackers stealing celebrities' nude photos from their iCloud accounts and posting them on the Web comes news that iCloud users are being targeted again. The Kelihos botnet is sending emails purporting to be from Apple, informing targets they have purchased a film through their iTunes account using a PC or other device not previously linked to their Apple ID.
Apple's Cook Promises Feeble iCloud Security Upgrades
September 05, 2014
Apple is taking steps to improve security in the wake of the furor generated by hackers' posting nude photos of celebs on the Internet, CEO Tim Cook said. Apple will alert users via email and push notifications when someone tries to restore iCloud data to a new device. It already does this when someone tries to change an account password or when a device first logs in to an account.

See More Articles in Cybersecurity Section >>
Facebook Twitter LinkedIn Google+ RSS