Vegas hotel room checks raise privacy, safety concerns at Def Con, Black Hat

Vegas hotel room checks raise privacy, safety concerns at Def Con, Black Hat

Do Not Disturb means nothing at Caesars Entertainment hotels, as Def Con and Black Hat attendees had their privacy and potentially their safety threatened by hotel security busting in to search rooms.

08/15/18

Security flaws in police body cameras open the devices to attack

Security flaws in police body cameras open the devices to attack

A researcher presenting at Def Con 26 said security flaws in police body cameras could enable hackers to edit and delete footage and weaponize the devices with malware.

08/14/18

Attackers could ‘faxploit’ all-in-one printer to penetrate network and steal data

Attackers could ‘faxploit’ all-in-one printer to penetrate network and steal data

At Def Con 26, researchers revealed pwnage via fax. Hackers need only a fax number to infiltrate networks and exfiltrate data.

08/13/18

Hacking pacemakers, insulin pumps and patients' vital signs in real time

Hacking pacemakers, insulin pumps and patients' vital signs in real time

At the recent Black Hat and Def Con events, researchers showed how they are able to hack medical devices, including pacemakers and insulin pumps, and patients' vital signs in real time.

08/12/18

Weaponized AI and facial recognition enter the hacking world

Weaponized AI and facial recognition enter the hacking world

Your face could trigger a DeepLocker AI-powered malware attack or be used by Social Mapper to track you across social media sites.

08/08/18

FCC lied about DDoS attack during net neutrality comment process, blames former CIO

FCC lied about DDoS attack during net neutrality comment process, blames former CIO

FCC Chairman Ajit Pai says a DDoS attack did not take out the net neutrality comment site, and he blames the former FCC CIO for providing incorrect information.

08/07/18

Hundreds of HP inkjet printer models vulnerable to critical remote code execution flaws

Hundreds of HP inkjet printer models vulnerable to critical remote code execution flaws

Hundreds of HP inkjet printer models are in desperate need of firmware patches before hackers start exploiting vulnerabilities to gain remote code execution.

08/06/18

Avast pulls CCleaner version that lacked privacy options after backlash

Avast pulls CCleaner version that lacked privacy options after backlash

Avast-owned Piriform reverted to a previous version of CCleaner in response to user outrage over its new data collection policy that had no privacy options.

08/05/18

Bounty for hacking the ‘unhackable’ Bitfi wallet jumps from $100K to $250K

Bounty for hacking the ‘unhackable’ Bitfi wallet jumps from $100K to $250K

Toss around claims about a device being unhackable, and they will come for you. Amid the drama, McAfee upped the bounty for hacking the Bitfi hardware crypto wallet to $250,000.

08/01/18

$10,000 for hacking HP printers: First bug bounty program for printer security

$10,000 for hacking HP printers: First bug bounty program for printer security

HP invited 34 security researchers to participate in its bug bounty program for printers, offering up to $10,000 per bug.

07/31/18

Researchers reveal 20 vulnerabilities in Samsung SmartThings Hub

Researchers reveal 20 vulnerabilities in Samsung SmartThings Hub

Samsung released firmware to patch 20 flaws that if exploited, could have let attackers remotely control and even physically damage IoT gadgets connected the SmartThings Hub.

07/30/18

Secret Quiet Skies surveillance program tracks citizens not suspected of wrongdoing

Secret Quiet Skies surveillance program tracks citizens not suspected of wrongdoing

The TSA has a secret, domestic Quiet Skies surveillance program that includes federal air marshals tracking U.S. travelers not under investigation or suspected of wrongdoing.

07/29/18

C-suite is a weak link when it comes to email-based attacks

C-suite is a weak link when it comes to email-based attacks

Phishing and impersonation attacks are up, and the C-suite is the weak link in email-borne attacks.

07/25/18

Rapid7 penetration tests reveal multitude of software flaws, network misconfigurations

Rapid7 penetration tests reveal multitude of software flaws, network misconfigurations

In 268 penetration tests, Rapid7’s testers exploited software flaws 84% of the time, abused network misconfigurations 80% of the time, and captured credentials 53% of the time.

07/24/18

Unsecured server exposes 157 GB of highly sensitive data from Tesla, Toyota and more

Unsecured server exposes 157 GB of highly sensitive data from Tesla, Toyota and more

A publicly accessible server belonging to Level One Robotics and Controls exposed 157 GB of highly sensitive data from hundreds of companies, including Tesla, Toyota and Ford.

07/23/18

Half a billion smart devices vulnerable to decade-old DNS rebinding attacks

Half a billion smart devices vulnerable to decade-old DNS rebinding attacks

Researchers warned that 496 million smart devices used by enterprises are vulnerable to DNS rebinding attacks.

07/22/18

Microsoft’s Identity Bug Bounty program pays up to $100,000

Microsoft’s Identity Bug Bounty program pays up to $100,000

Microsoft’s new Identity Bounty program offers payouts of up to $100,000 for bugs in its identity solutions, as well as bugs in select OpenID standards.

07/18/18

Walmart teamed up with Microsoft to take on their rival Amazon

Walmart teamed up with Microsoft to take on their rival Amazon

Walmart, Amazon’s largest retail rival, inked a five-year agreement to use Amazon Web Services rival Azure as well as other Microsoft AI and machine learning projects.

07/17/18

IoT search engine ZoomEye cached passwords for tens of thousands of Dahua DVRs

IoT search engine ZoomEye cached passwords for tens of thousands of Dahua DVRs

IoT search engine ZoomEye scanned and stored Dahua DVR login credentials for anyone to find. Users should update vulnerable firmware before someone hacks the device.

07/16/18

Lawmakers ask FTC to investigate smart TV privacy concerns

Lawmakers ask FTC to investigate smart TV privacy concerns

Two senators, alarmed about the potential of smart TVs to spy on users, asked the FTC to investigate the privacy policies and practices of smart TV manufacturers.

07/15/18

Load More