Bounty for hacking the ‘unhackable’ Bitfi wallet jumps from $100K to $250K

Bounty for hacking the ‘unhackable’ Bitfi wallet jumps from $100K to $250K

Toss around claims about a device being unhackable, and they will come for you. Amid the drama, McAfee upped the bounty for hacking the Bitfi hardware crypto wallet to $250,000.

08/01/18

$10,000 for hacking HP printers: First bug bounty program for printer security

$10,000 for hacking HP printers: First bug bounty program for printer security

HP invited 34 security researchers to participate in its bug bounty program for printers, offering up to $10,000 per bug.

07/31/18

Researchers reveal 20 vulnerabilities in Samsung SmartThings Hub

Researchers reveal 20 vulnerabilities in Samsung SmartThings Hub

Samsung released firmware to patch 20 flaws that if exploited, could have let attackers remotely control and even physically damage IoT gadgets connected the SmartThings Hub.

07/30/18

Secret Quiet Skies surveillance program tracks citizens not suspected of wrongdoing

Secret Quiet Skies surveillance program tracks citizens not suspected of wrongdoing

The TSA has a secret, domestic Quiet Skies surveillance program that includes federal air marshals tracking U.S. travelers not under investigation or suspected of wrongdoing.

07/29/18

C-suite is a weak link when it comes to email-based attacks

C-suite is a weak link when it comes to email-based attacks

Phishing and impersonation attacks are up, and the C-suite is the weak link in email-borne attacks.

07/25/18

Rapid7 penetration tests reveal multitude of software flaws, network misconfigurations

Rapid7 penetration tests reveal multitude of software flaws, network misconfigurations

In 268 penetration tests, Rapid7’s testers exploited software flaws 84% of the time, abused network misconfigurations 80% of the time, and captured credentials 53% of the time.

07/24/18

Unsecured server exposes 157 GB of highly sensitive data from Tesla, Toyota and more

Unsecured server exposes 157 GB of highly sensitive data from Tesla, Toyota and more

A publicly accessible server belonging to Level One Robotics and Controls exposed 157 GB of highly sensitive data from hundreds of companies, including Tesla, Toyota and Ford.

07/23/18

Half a billion smart devices vulnerable to decade-old DNS rebinding attacks

Half a billion smart devices vulnerable to decade-old DNS rebinding attacks

Researchers warned that 496 million smart devices used by enterprises are vulnerable to DNS rebinding attacks.

07/22/18

Microsoft’s Identity Bug Bounty program pays up to $100,000

Microsoft’s Identity Bug Bounty program pays up to $100,000

Microsoft’s new Identity Bounty program offers payouts of up to $100,000 for bugs in its identity solutions, as well as bugs in select OpenID standards.

07/18/18

Walmart teamed up with Microsoft to take on their rival Amazon

Walmart teamed up with Microsoft to take on their rival Amazon

Walmart, Amazon’s largest retail rival, inked a five-year agreement to use Amazon Web Services rival Azure as well as other Microsoft AI and machine learning projects.

07/17/18

IoT search engine ZoomEye cached passwords for tens of thousands of Dahua DVRs

IoT search engine ZoomEye cached passwords for tens of thousands of Dahua DVRs

IoT search engine ZoomEye scanned and stored Dahua DVR login credentials for anyone to find. Users should update vulnerable firmware before someone hacks the device.

07/16/18

Lawmakers ask FTC to investigate smart TV privacy concerns

Lawmakers ask FTC to investigate smart TV privacy concerns

Two senators, alarmed about the potential of smart TVs to spy on users, asked the FTC to investigate the privacy policies and practices of smart TV manufacturers.

07/15/18

Hackers steal $23.5M in cryptocurrency from 'decentralized' crypto exchange Bancor

Hackers steal $23.5M in cryptocurrency from 'decentralized' crypto exchange Bancor

Attackers used a compromised wallet to steal three different cryptocurrencies: $12.5 million of ether, $1 million of Pundi X, and $10 million of Bancor Network Tokens.

07/11/18

Microsoft-related bug reports up 121%, virtualization software bugs up 275%

Microsoft-related bug reports up 121%, virtualization software bugs up 275%

The Zero Day Initiative saw a 33% increase in the number of bugs reported so far in 2018, which may shatter 2017's 'busiest year ever' record.

07/10/18

Thieves hack Marathon gas station, steal $1,800 of gas

Thieves hack Marathon gas station, steal $1,800 of gas

Hackers used a 'remote device' to steal 600 gallons of gas, valued at $1,800, from a prepaid Marathon gas pump in Detroit.

07/09/18

Polar fitness app exposed personal information of soldiers and spies

Polar fitness app exposed personal information of soldiers and spies

Reporters used the Polar fitness app's Explore API to determine GPS location data of sensitive locations, as well as names and addresses of soldiers and spies.

07/08/18

Celebrate increased privacy: Supreme Court rules against warrantless location tracking

Celebrate increased privacy: Supreme Court rules against warrantless location tracking

Celebrate your Fourth Amendment rights, the Supreme Court’s ruling against warrantless location tracking, and the impact that may have on technologies in the future.

07/04/18

Quantum random number generator set to transform internet security

Quantum random number generator set to transform internet security

The world’s first practical quantum random number generator (QRNG) will reportedly overcome weaknesses of current encryption, revolutionizing internet security.

07/03/18

NSA deleting millions of phone call and text records over privacy violations

NSA deleting millions of phone call and text records over privacy violations

The NSA blames 'technical irregularities' in the call record data it received from telecoms for the mass purge of over 685 million phone and text message records.

07/02/18

Privacy breach: Home security camera footage sent to wrong person

Privacy breach: Home security camera footage sent to wrong person

Home security video from a Swann smart camera was sent to the wrong customer, enabling the person to see and hear activity of a different family.

07/01/18

Load More