Half of anti-malware products fail to recognize notable threats

Most popular, well-established cybersecurity solutions do not protect their users from all notable threats, according to new analysis from SE Labs. The security firm tested 14 of the world’s most popular cybersecurity solutions and, while products from Microsoft and Kaspersky Read More …

Re­VoL­TE attack can decrypt 4G (LTE) calls to eavesdrop on conversations

A team of academics has detailed this week a vulnerability in the Voice over LTE (VoLTE) protocol that can be used to break the encryption on 4G voice calls. Named ReVoLTE, researchers say this attack is possible because mobile operators Read More …

Twitter Could Face $250M FTC Fine Over Improper Data Use

Twitter may be facing a Federal Trade Commission (FTC) fine of up to $250 million, after the social media giant last year revealed the improper use of users’ email addresses and phone numbers. In October 2019, Twitter acknowledged that user Read More …

Maritime cyber attacks increase by 900% in three years

Cyber attacks on the maritime industry’s operational technology (OT) systems have increased by 900% over the last three years with the number of reported incidents set to reach record volumes by year end. Addressing port and terminal operators during an Read More …

CISA says 62,000 QNAP NAS devices have been infected with the QSnatch malware

Cyber-security agencies from the UK and the US have published today a joint security alert about QSnatch, a strain of malware that has been infecting network-attached storage (NAS) devices from Taiwanese device maker QNAP. In alerts [1, 2] by the United Read More …

Second Catalan politician says phone was targeted by spyware

A second prominent member of Catalan’s pro-independence movement has revealed he was warned that his mobile phone was targeted using spyware. The development is likely to bolster calls for an investigation into the possible use of hacking technology by Spanish Read More …

Infrastructure as Code: Security Risks and How to Avoid Them

The ever-increasing demands on IT infrastructures and the rise of continuous integration and continuous deployment (CI/CD) pipelines have pushed the need for consistent and scalable automation. This is where infrastructure as code (IaC) comes into play. IaC is the provisioning, configuring, Read More …