News


  • Pentagon discloses card breach

    October 13, 2018

    Pentagon official said on Friday that the Department of Defense had suffered a security breach thanks to a third-party contractor. An investigation is still underway, so the exact details haven’t been made public, but according to an Associated Press report, a DOD official said that roughly 30,000 DOD military and civilian personnel are believed to be affected. ...

  • Hungary increases its scientific cooperation with NATO

    October 12, 2018

    Scientists and other experts from NATO and Hungary discussed future projects of cooperation at the NATO Science for Peace and Security (SPS) Programme Information Day held in Budapest on 11 October 2018. ungary is currently leading an SPS project in the area of chemical, biological, radiological and nuclear (CBRN) defence. The multi-year initiative aims to develop ...

  • Facebook mass hack last month was so totally overblown – only 30 million people affected

    October 12, 2018

    Facebook users can relax and get back to interacting with quality content and authentic individuals on the social network. Last month’s deliberate theft of private account records from the internet giant, initially believed to affect 50 million or maybe 90 million accounts, turns out to be nowhere near that bad. Cough. On Friday, the data-harvesting biz said a mere 30 ...

  • Facebook Bans More Than 800 Accounts in Disinformation Purge

    October 12, 2018

    The move comes a month before the November midterm elections – and at a time when all eyes are on Facebook to see how it protects against disinformation. Facebook on Thursday announced it has removed hundreds of pages and accounts as the company cracks down on spam. The move comes at a time when Facebook is ...

  • DASA new competition: Behavioural Analytics

    October 11, 2018

    The Defence and Security Accelerator is seeking proposals that can help UK Defence and Security to develop capability in ‘Behavioural Analytics’. This Defence and Security Accelerator (DASA) competition is seeking proposals that can help UK Defence and Security to develop capability in ‘Behavioural Analytics’. We are looking for scientific and technological solutions that can provide context-specific ...

  • New Drupalgeddon Attacks Enlist Shellbot to Open Backdoors

    October 11, 2018

    Drupalgeddon 2.0 vulnerability is being exploited again by attackers using a time-honored technique of Shellbot, or PerlBot. Researchers are warning of a new wave of cyberattacks targeting unpatched Drupal websites that are vulnerable to Drupalgeddon 2.0. What’s unique about this latest series of attacks is that adversaries are using PowerBot malware, an IRC-controlled bot also called ...

  • Innovative Phishing Tactic Makes Inroads Using Azure Blob

    October 10, 2018

    A brand-new approach to harvesting credentials hinges on users’ lack of cloud savvy. A fresh tactic for phishing Office 365 users employs credential-harvesting forms hosted on Azure Blob storage – signed with legitimate Microsoft SSL certificates to lend an air of legitimacy. Azure Blob Storage is a cloud storage solution for hosting unstructured data such as images, ...

  • Microsoft Set To Win Secret Clearance Ahead Of Pentagon Cloud Bid

    October 10, 2018

    Microsoft is battling Amazon’s AWS for the multi-billion-pound deal, after Google pulled out due to ethical concerns Microsoft said this week it is set to receive the US government’s top security clearance early next year, as it prepares to bid for a Pentagon cloud contract worth up to $10 billion (£7.7bn). The announcement follows on from the company’s ...

  • Gallmaker: New Attack Group Eschews Malware to Live off the Land

    October 10, 2018

    A new attack group is targeting government, military, and defense sectors in what appears to be a classic espionage campaign. Symantec researchers have uncovered a previously unknown attack group that is targeting government and military targets, including several overseas embassies of an Eastern European country, and military and defense targets in the Middle East. This group ...

  • Over nine million cameras and DVRs open to APTs, botnet herders, and voyeurs

    October 9, 2018

    Millions of security cameras, DVRs, and NVRs contain vulnerabilities that can allow a remote attacker to take over devices with little effort, security researchers have revealed today. All vulnerable devices have been manufactured by Hangzhou Xiongmai Technology Co., Ltd.(Xiongmai hereinafter), a Chinese company based in the city of Hangzhou. But end users won’t be able to tell that ...

  • Microsoft Patches Zero-Day Under Active Attack by APT

    October 9, 2018

    A zero-day vulnerability tied to the Window’s Win32k component is under active attack, warns Microsoft. Microsoft has issued a patch for a zero-day bug being actively exploited in the wild, as part of its Patch Tuesday security bulletin. The vulnerability is an elevation-of-privilege flaw, rated important, affecting the Windows Win32k component. The zero-day (CVE-2018-8453), found by Kaspersky ...

  • Heathrow Fined £120,000 Over Lost USB Stick

    October 9, 2018

    The unencrypted stick, containing personal data on staff, was found by a member of the public before being handed in to a national newspaper Heathrow Airport said it has begun a company-wide data security training programme after the Information Commissioner’s Office (ICO) fined it £120,000 over an embarrassing data breach last year. The ICO said an unencrypted ...

  • Adobe Releases Security Patch Updates for 11 Vulnerabilities

    October 9, 2018

    Adobe has released its monthly security updates to address a total of 11 vulnerabilities in Adobe Digital Editions, Framemaker, and Technical Communications Suite, of which four are rated critical and rest 7 are important in severity. Adobe has also released updated versions for Flash Player, but surprisingly this month the software received no security patch update. Also, none of the ...

  • Weapon Systems Cybersecurity: DOD Just Beginning to Grapple with Scale of Vulnerabilities

    October 9, 2018

    In recent cybersecurity tests of major weapon systems DOD is developing, testers playing the role of adversary were able to take control of systems relatively easily and operate largely undetected. DOD’s weapons are more computerized and networked than ever before, so it’s no surprise that there are more opportunities for attacks. Yet until relatively recently, DOD ...

  • Google+ is Shutting Down After a Vulnerability Exposed 500,000 Users’ Data

    October 8, 2018

    Google is going to shut down its social media network Google+ after the company suffered a massive data breach that exposed the private data of hundreds of thousands of Google Plus users to third-party developers. According to the tech giant, a security vulnerability in one of Google+’s People APIs allowed third-party developers to access data for ...

  • DHS and GCHQ join Amazon and Apple in denying Bloomberg chip hack story

    October 8, 2018

    Both US and UK intelligence officials have put out statements over the weekend in support of Amazon, Apple, and Supermicro in regards to recent allegations made by Bloomberg in an article published last week. On Thursday, Bloomberg reporters claimed that Chinese intelligence had secretly implanted spy chips inside motherboards used for Supermicro servers that eventually made ...

  • PoC Attack Escalates MikroTik Router Bug to ‘As Bad As It Gets’

    October 7, 2018

    A new hacking technique used against vulnerable MikroTik routers gives attackers the ability to execute remote code on affected devices. The technique is yet another security blow against the MikroTik router family. Previous hacks have left the routers open to device failures, cyptojacking and network eavesdropping. The hacking technique, found by Tenable Research and outlined on ...

  • Microsoft Has Pulled the Windows 10 October 2018 Update

    October 6, 2018

    The users recently discovered a critical bug in Windows 10 October 2018 Update (version 1809) that causes an unexpected removal of files such as documents and pictures during the upgrade process. There’s a growing number of users reporting the same problem and Microsoft has finally paused the rollout of Windows 10 October 2018 Update. Today, Microsoft announced in a support document that ...

  • California’s IoT Cybersecurity Law Sets Standards for Device Manufacturers

    October 5, 2018

    California’s cybersecurity law for the internet of things (IoT) is now official. It was approved by California Governor Jerry Brown last week, more than a year after it was introduced as SB 327 in February 2018. It bears the distinction as the first IoT-related law enacted in the U.S., and now sets security standards for the manufacturing of connected ...

  • Saudi Dissident Spyware Attack Belies Bigger Threat

    October 5, 2018

    This week, news broke that a well-known Saudi dissident has been targeted by the notorious Pegasus spyware – after he gained permanent citizen status in Canada. While this fits into pattern of ongoing attacks on “civil society” members (i.e., journalists, social justice activists, dissidents and human rights organizations), the larger pool of threats against this ...