Newer posts are loading.
You are at the newest post.
Click here to check if anything new just came in.

October 10 2017


✌ October Patch Tuesday: 28 Critical Microsoft Vulnerabilities

Today Microsoft released patches covering 62 vulnerabilities as part of August’s Patch Tuesday update, with 30 of them affecting Windows. Patches covering 28 of these vulnerabilities are labeled as Critical, and 33 can result in Remote Code Execution.


✌ Cybersecurity in the Workplace is Everyone’s Business

October is National Cybersecurity Awareness Month, an annual campaign to raise awareness about cybersecurity. Creating a culture of cybersecurity is critical for all organizations—large and small businesses, academic institutions, non-profits, and government agencies—and is a responsibility shared among all employees. The National Institute of Standards and Technology (NIST) has published resources including standards, guidelines, and best practices to help organizations of all sizes to strengthen cyber resilience.


✌ Accenture inadvertently exposes highly sensitive corporate, client data online

Corporate consulting giant Accenture left bucketloads of sensitive corporate and client data exposed online for anyone to access. Luckily for them, it seems that UpGuard director of cyber risk research Chris Vickery was the only one who stumbled upon it. Publicly accessible and downloadable data He discovered the four unsecured AWS S3 storage buckets on September 17, and notified the company the next day. Accenture moved to secure the storage servers the day after. “All … More →


✌ Morrisons sued by thousands over data leak

More than 5,000 current and former employees claim the supermarket failed to keep their data safe.


✌ Forgotten Office 365 accounts targeted by stealthy attack campaign | ZDNet

‘KnockKnock’ attackers hope to fly under the radar by hacking rarely-used, high-privilege accounts.


✌ Hacker study: Russia could get into U.S. voting machines

American voting machines are full of foreign-made hardware and software, including from China, and a top group of hackers and national security officials says that means they could have been infiltrated last year and into the future.


✌ Changes in Password Best Practices - Schneier on Security

NIST recently published their four-volume SP800-63-3 Digital Identity Guidelines. Among other things, they make three important suggestions when it comes to passwords:

Stop it with the annoying password complexity rules. They make passwords…


✌ How to Really Turn Off Wi-Fi and Bluetooth in iOS 11

While it may seem that you can turn off Bluetooth and Wi-Fi in the iOS 11 control center How to Use iOS 11’s Customizable Control Center on iPhone and iPad How to Use iOS 11’s Customizable Control Center on iPhone and iPad Wondering how to disable AirDrop, enable Night Shift, or change AirPlay output for the song you’re listening to? We’ll show you how. Read More  simply by toggling the feature off, that’s not exactly the case. If you open up the Control Center and toggle off Wi-Fi, what actually happens? You’re disconnected from your current network and your phone doesn’t search for…Read the full article: How to Really Turn Off Wi-Fi and Bluetooth in iOS 11


✌ The World’s Biggest Military Contractors Don’t Encrypt Their Websites

America’s largest defense contractors still don’t use HTTPS on their main websites.


✌ Elon Musk: Google's AI camera doesn't even pretend to be innocent

Commentary: Google’s controversial AI-based Clips camera doesn’t seem to impress Tesla’s CEO.

October 09 2017


✌ After selling his site for millions, founder hacked it for a second payday

Rigzone founder sentenced for data duplication scheme


✌ ​Cyber security as big a challenge as counter-terrorism, says spy chief | ZDNet

Online security now as big a job as surveillance and counter-terrorism says GCHQ boss.


✌ Here are three working theories on Kaspersky's role in latest NSA data theft

A bombshell news report on Kaspersky’s alleged involvement in the theft of NSA data leaves one crucial question unanswered.


✌ Disqus Demonstrates How to Do Breach Disclosure Right

We all jumped on “the Equifax dumpster fire bandwagon” recently and pointed to all the things that went fundamentally wrong with their disclosure process. But it’s equally important that we acknowledge exemplary handling of data breaches when they occur because that’s behaviour that should be encouraged. Last week,


✌ Computer virus hits US Predator and Reaper drone fleet

A computer virus has infected the cockpits of America’s Predator and Reaper …

October 08 2017


✌ Equifax Breach Fallout: Your Salary History

In May, KrebsOnSecurity broke a story about lax security at a payroll division of big-three credit bureau Equifax that let identity thieves access personal and financial data on an unknown number of Americans. Incredibly, this same division makes it simple to access detailed salary and employment history on a large portion of Americans using little more than someone’s Social Security number and date of birth – both data elements that were stolen in the recent breach at Equifax.

October 07 2017


✌ Microsoft silently fixes security holes in Windows 10 – dumps Win 7, 8 out in the cold

Versions in use by millions lag behind latest OS, leaving systems vulnerable to attack


✌ Disqus reveals its comments tool was hacked

The company is sending out password reset emails to users whose passwords were exposed.

Older posts are this way If this message doesn't go away, click anywhere on the page to continue loading posts.
Could not load more posts
Maybe Soup is currently being updated? I'll try again automatically in a few seconds...
Just a second, loading more posts...
You've reached the end.

Don't be the product, buy the product!