But ‘high risk vendors’ like Huawei are banned from core of 5G networks and limited to 35% cap in other areas, says government. Advertise on IT Security News. Read the complete article: The big 5G decision: Huawei gets role…
Category: Latest topics for ZDNet in Security
CEOs are deleting their social media accounts to protect against hackers
PwC report finds that cyber attacks are the biggest worry for business – to such an extent some CEOs are deleting social media accounts to help personally avoid falling victim to criminals. Advertise on IT Security News. Read the…
The big 5G decision: Huawei allowed limited role in UK network projects
But ‘high risk vendors’ like Huawei are banned from core of 5G networks and limited to 35% cap in other areas, says government. Advertise on IT Security News. Read the complete article: The big 5G decision: Huawei allowed limited…
Zoom fixes security flaw that could have let hackers join video conference calls
Vulnerability in Zoom discovered by researchers could have allowed attackers access to meetings – and an easy means of corporate espionage. Advertise on IT Security News. Read the complete article: Zoom fixes security flaw that could have let hackers…
LoRaWAN networks are spreading but security researchers say beware
IOActive security researchers say LoRaWAN networks are vulnerable to cyber-attacks despite boastful claims about the protocol’s security features. Advertise on IT Security News. Read the complete article: LoRaWAN networks are spreading but security researchers say beware
Ring app for Android full to the brim with third-party trackers: report
The EFF claims that the app is sending out vast amounts of customer PII. Advertise on IT Security News. Read the complete article: Ring app for Android full to the brim with third-party trackers: report
Practice Fusion to pay $145m for accepting pharma kickbacks in opioid prescription scam
Software was used to boost opioid prescriptions on behalf of pharmaceutical companies in a scheme deemed “abhorrent.” Advertise on IT Security News. Read the complete article: Practice Fusion to pay $145m for accepting pharma kickbacks in opioid prescription scam
The average ransom demand for a REvil ransomware infection is a whopping $260,000
Security researchers sinkhole the REvil ransomware servers and gain an insight into the operation of today’s biggest ransomware gang. Advertise on IT Security News. Read the complete article: The average ransom demand for a REvil ransomware infection is a…
AI and disinformation join nukes in the race for armageddon
Huawei’s Ren Zhengfei downplays China’s supposed lead in AI, but others talk up fears of a disinformation war — including the Bulletin of the Atomic Scientists and their Doomsday Clock. Advertise on IT Security News. Read the complete article:…
AFP and NSW Police used Australia’s encryption laws seven times in 2018-19
Seven Technical Assistance Requests made with no Technical Assistance Notices or Technical Capability Notices issued. Advertise on IT Security News. Read the complete article: AFP and NSW Police used Australia’s encryption laws seven times in 2018-19
India partially lifts internet block in Kashmir
Social media is still not accessible in the territory, however. Advertise on IT Security News. Read the complete article: India partially lifts internet block in Kashmir
DEF CON China conference put on hold due to coronavirus outbreak
DEF CON team is hoping that the 2019-nCoV outbreak will improve and they can go on as planned, or reschedule. Advertise on IT Security News. Read the complete article: DEF CON China conference put on hold due to coronavirus…
Hackers hijack social media accounts for the NFL and 15 teams
UPDATED: OurMine crew hijacks social media accounts for the NFL, the 49ers, Cardinals, Bears, Bills, Broncos, Browns, Bucs, Cowboys, Colts, Chiefs, Eagles, Giants, Packers, Texans, and Vikings. Advertise on IT Security News. Read the complete article: Hackers hijack social…
Hackers hijack Twitter accounts for Chicago Bears and Green Bay Packers
OurMine hacking crew returns after two years of inactivity. Advertise on IT Security News. Read the complete article: Hackers hijack Twitter accounts for Chicago Bears and Green Bay Packers
Survey: What’s your cybersecurity strategy?
Take this quick, multiple choice survey and tell us about your company’s cybersecurity strategies for the upcoming year. Advertise on IT Security News. Read the complete article: Survey: What’s your cybersecurity strategy?
Cyber defense game brings together security experts, special forces and more as military prepares for warfare 2.0
The Crossed Swords exercise got security professionals across the world to leverage cyber attacks to protect national interests. Advertise on IT Security News. Read the complete article: Cyber defense game brings together security experts, special forces and more as…
Scam, spam and phishing texts: How to spot SMS fraud and stay safe
Scammy, spammy texts have come to your phone. Here’s how to avoid getting ripped off by scam artists who’ve added social engineering to their toolbox. Advertise on IT Security News. Read the complete article: Scam, spam and phishing texts:…
IoT security: Your smart devices must have these three features to be secure
Proposed laws from the UK for Internet of Things security and suggests vendors will need to follow new rules to be considered secure. Advertise on IT Security News. Read the complete article: IoT security: Your smart devices must have…
Fortinet removes SSH and database backdoors from its SIEM product
Patches have been released for CVE-2019-17659 and CVE-2019-16153. Advertise on IT Security News. Read the complete article: Fortinet removes SSH and database backdoors from its SIEM product
Cybersecurity: A guide for parents to keep kids safe online
Cybersecurity, cyberbullying, and mobile devices can be a minefield — so here is a guide to take the stress out of cyberspace for parents. Advertise on IT Security News. Read the complete article: Cybersecurity: A guide for parents to…
The US Army uses facial recognition to train AI. Now, it needs to protect it
As facial recognition use ramps up despite its controversy, the technology is being applied in the military realm. Advertise on IT Security News. Read the complete article: The US Army uses facial recognition to train AI. Now, it needs…
Magecart gang arrested in Indonesia
First-ever arrest of a Magecart hacker gang. Advertise on IT Security News. Read the complete article: Magecart gang arrested in Indonesia
The Chrome Web Store is currently facing a wave of fraudulent transactions
Google temporarily suspends publishing and updating of paid Chrome extensions following a spike in fraudulent transactions. Advertise on IT Security News. Read the complete article: The Chrome Web Store is currently facing a wave of fraudulent transactions
Mozilla has banned nearly 200 malicious Firefox add-ons over the last two weeks
Mozilla’s security staff is cracking down on malicious Firefox add-ons. Advertise on IT Security News. Read the complete article: Mozilla has banned nearly 200 malicious Firefox add-ons over the last two weeks
Trend Micro antivirus zero-day used in Mitsubishi Electric hack
Hackers exploited a Trend Micro OfficeScan zero-day to plant malicious files on Mitsubishi Electric servers. Advertise on IT Security News. Read the complete article: Trend Micro antivirus zero-day used in Mitsubishi Electric hack
Class-action lawsuit filed against controversial Clearview AI startup
Plaintiffs claim New York startup broke Illinois privacy laws regarding the use of residents’ biometrics data. Advertise on IT Security News. Read the complete article: Class-action lawsuit filed against controversial Clearview AI startup
Hackers target unpatched Citrix servers to deploy ransomware
REvil ransomware gang has been spotted abusing Citrix bug to infect victims. Advertise on IT Security News. Read the complete article: Hackers target unpatched Citrix servers to deploy ransomware
Privacy worries cited as possible reason for DNA test firm 23andMe’s sales downturn
It may be no surprise considering US law enforcement was recently granted permission to plunder DNA databases. Advertise on IT Security News. Read the complete article: Privacy worries cited as possible reason for DNA test firm 23andMe’s sales downturn
Police are about to deploy ‘privacy destroying’ facial recognition cameras across London
The capital’s Metropolitan Police say the technology will help fight crime – but critics warn that the scheme amounts to oppressive surveillance. Advertise on IT Security News. Read the complete article: Police are about to deploy ‘privacy destroying’ facial…
The Doomsday Clock just moved closer to midnight again. Tech is getting some of the blame.
Information warfare, deep fakes and AI are all adding to the risk of catastrophe, scientists warn. Advertise on IT Security News. Read the complete article: The Doomsday Clock just moved closer to midnight again. Tech is getting some of…
This simple malware still plagues one in 10 Mac users
This threat might be relatively basic, but it is still a headache for many Mac users. Advertise on IT Security News. Read the complete article: This simple malware still plagues one in 10 Mac users
Citrix releases new patches to plug critical server vulnerability
Additional versions of Citrix ADC and Citrix Gateway can now be protected against the severe security issue. Advertise on IT Security News. Read the complete article: Citrix releases new patches to plug critical server vulnerability
Owner of stolen data marketplace Cardplanet pleads guilty
The trading post was a hotbed of stolen US credit card information. Advertise on IT Security News. Read the complete article: Owner of stolen data marketplace Cardplanet pleads guilty
Owner of Dark Web stolen data marketplace Cardplanet pleads guilty
The trading post was a hotbed of stolen US credit card information. Advertise on IT Security News. Read the complete article: Owner of Dark Web stolen data marketplace Cardplanet pleads guilty
Singapore orders Malaysia site blocked under online falsehoods law
Operated by Malaysia-based Lawyers for Liberty, the website appears to have been blocked in Singapore following a blocking order issued after the human rights group failed to comply with a previous correction directive. The group plans to sue the Singapore…
Sonos CEO apologises but will not provide software updates for legacy products
At the same time, he pledged to provide bug fixes and security patches for ‘as long as possible’. Advertise on IT Security News. Read the complete article: Sonos CEO apologises but will not provide software updates for legacy products
New York state wants to ban government agencies from paying ransomware demands
Another NY Senate bill would create a cyber security enhancement fund and restricting the use of taxpayer moneys in paying ransoms Advertise on IT Security News. Read the complete article: New York state wants to ban government agencies from…
MDhex vulnerabilities impact GE patient vital signs monitoring devices
GE Healthcare plans to release patches in Q2 2020. Advertise on IT Security News. Read the complete article: MDhex vulnerabilities impact GE patient vital signs monitoring devices
Ransomware attacks are causing more downtime than ever before
The average number of days it takes for organisations infected with ransomware to restore networks is now up to over 16 days. Advertise on IT Security News. Read the complete article: Ransomware attacks are causing more downtime than ever…
Someone is uninstalling the Phorpiex malware from infected PCs and telling users to install an antivirus
Malware analysts believe someone has hijacked the Phorpiex botnet from its creator and is sabotaging its operations by alerting users they’ve been infected. Advertise on IT Security News. Read the complete article: Someone is uninstalling the Phorpiex malware from…
Citrix: These are new patches for your vulnerable servers
Citrix has released a fresh set of patches for ADC and NetScaler bug, with more patches due out tomorrow. Advertise on IT Security News. Read the complete article: Citrix: These are new patches for your vulnerable servers
The almost-secret hidden iPhone switch that blocks spam text messages and notifications
You are 60 seconds away from removing one of your phone’s most annoying annoyances. Advertise on IT Security News. Read the complete article: The almost-secret hidden iPhone switch that blocks spam text messages and notifications
Google to Apple: Safari’s privacy feature actually opens iPhone users to tracking
Google and Apple go to battle over how browsers protect users from third-party tracking. Advertise on IT Security News. Read the complete article: Google to Apple: Safari’s privacy feature actually opens iPhone users to tracking
Suspected Iranian hacking campaign targets European energy companies
Researchers at Recorded Future have linked trojan malware intrusions and espionage to a state-backed hacking operation working out of Iran. Advertise on IT Security News. Read the complete article: Suspected Iranian hacking campaign targets European energy companies
Cisco: Patch this critical firewall bug in Firepower Management Center
Customers on old versions of Firepower Management Center will need to upgrade and then patch. Advertise on IT Security News. Read the complete article: Cisco: Patch this critical firewall bug in Firepower Management Center
Singapore inks digital trade partnership with global group, firms
Country signs agreement with International Chamber of Commerce and 17 multinational companies including Mastercard, Tokio Marine, and Standard Chartered Bank, to fuel the adoption of digital technologies in trade and commerce. Advertise on IT Security News. Read the complete…
A timeline of events surrounding the Bezos phone hack
Bezos hack connected to Khashoggi murder and the Washington Post’s subsequent media coverage. Advertise on IT Security News. Read the complete article: A timeline of events surrounding the Bezos phone hack
Coalition acquires IoT search engine BinaryEdge
US cyber-insurer Coalition buys BinaryEdge for undisclosed sum to boost its cyber insurance policy offering. Advertise on IT Security News. Read the complete article: Coalition acquires IoT search engine BinaryEdge
Microsoft discloses security breach of customer support database
Five servers storing customer support analytics were accidentally exposed online in December 2019. Advertise on IT Security News. Read the complete article: Microsoft discloses security breach of customer support database
Ransomware, snooping and attempted shutdowns: The state of this honeypot shows what hackers do to systems left unprotected online
Researchers set up a honeypot to monitor what cyber criminals are doing when they target industrial environments – and found that hackers are going after factories in large numbers. Advertise on IT Security News. Read the complete article: Ransomware,…
Data leak strikes US cannabis users, sensitive information exposed
A database backing point-of-sale systems used in medical and recreational marijuana dispensaries has been compromised. Advertise on IT Security News. Read the complete article: Data leak strikes US cannabis users, sensitive information exposed
ProtonVPN apps handed to open source community in transparency push
The code backing ProtonVPN apps on all platforms can now be examined at leisure. Advertise on IT Security News. Read the complete article: ProtonVPN apps handed to open source community in transparency push
In enterprise attack wave, NetWire Trojan now buries itself in disk image files
Enterprise companies are being targeted by a business email scam harnessing the Trojan. Advertise on IT Security News. Read the complete article: In enterprise attack wave, NetWire Trojan now buries itself in disk image files
German government to pay €800,000 in Windows 7 ESU fees this year
The sum represents ESU fees for over 33,000 government workstations that are still running Windows 7, allowing German government systems to receive security updates for one more year. Advertise on IT Security News. Read the complete article: German government…
FireEye scoops up cloud security startup Cloudvisory
The acquisition is expected to expand FireEye Helix’s cloud security capabilities. Advertise on IT Security News. Read the complete article: FireEye scoops up cloud security startup Cloudvisory
Biometric ID a worry but still acceptable to Australians: AIC
Australians are concerned about the risks of biometric identification, but still find its use acceptable in a wide range of scenarios. Advertise on IT Security News. Read the complete article: Biometric ID a worry but still acceptable to Australians:…
Journalist Glenn Greenwald charged with hacking by Brazil prosecutors
Without being investigated, the Pulitzer Prize winner is being accused of cybercrimes associated with breaking into government officials’ phones Advertise on IT Security News. Read the complete article: Journalist Glenn Greenwald charged with hacking by Brazil prosecutors
Microsoft discovers new sLoad 2.0 (Starslord) malware
sLoad malware gangs makes a comeback after having operations exposed last month. Advertise on IT Security News. Read the complete article: Microsoft discovers new sLoad 2.0 (Starslord) malware
Brain-hacking is the next big nightmare, so we’ll need anti-virus for the mind
With big tech and governments working hand-in-hand, said the author, democracy is facing an unprecedented threat. Advertise on IT Security News. Read the complete article: Brain-hacking is the next big nightmare, so we’ll need anti-virus for the mind
Singapore, New Zealand, and Chile inch towards digital economy pact
Having wrapped up negotiations for the Digital Economy Partnership Agreement, which encompasses various components including digital identities, artificial intelligence, and digital trade, the three nations will now work to formally sign the agreement into force. Advertise on IT Security…
US Cyber Command was not prepared to handle the amount of data it hacked from ISIS
Operation Glowing Symphony was a success, but Cyber Command operators were not prepared for the amount of data they found in hacked ISIS accounts and servers. Advertise on IT Security News. Read the complete article: US Cyber Command was…
FTCODE ransomware is now armed with browser, email password stealing features
Encrypting your PC isn’t enough — hackers want your email passwords, too. Advertise on IT Security News. Read the complete article: FTCODE ransomware is now armed with browser, email password stealing features
Did you really ‘like’ that? How Chameleon attacks spring in Facebook, Twitter, LinkedIn
Social networks impacted seem to disagree on the scope of the attack. Advertise on IT Security News. Read the complete article: Did you really ‘like’ that? How Chameleon attacks spring in Facebook, Twitter, LinkedIn
This prolific phishing campaign just added a new name to its list of targets
Crime-as-a-service offering extends its reach, so be careful about what you click on. Advertise on IT Security News. Read the complete article: This prolific phishing campaign just added a new name to its list of targets
14% of Android app privacy policies contain contradictions about data collection
An analysis of 11,430 Play Store apps found that 14.2% used a privacy policy with contradicting statements about user data collection practices. Advertise on IT Security News. Read the complete article: 14% of Android app privacy policies contain contradictions…
UK’s HMRC tax authority seeks tools to track down cryptocurrency criminals
The project bid could also indicate the desire to monitor the cryptocurrency assets of taxpayers. Advertise on IT Security News. Read the complete article: UK’s HMRC tax authority seeks tools to track down cryptocurrency criminals
Microsoft and Google just can’t agree on proposed ban on facial recognition
Microsoft’s top lawyer cautions Europe not to use a meat cleaver for regulating facial recognition. Advertise on IT Security News. Read the complete article: Microsoft and Google just can’t agree on proposed ban on facial recognition
Antivirus vendors push fixes for EFS ransomware attack method
Signature-based software may not be enough to protect Microsoft’s Windows EFS against evolving ransomware families. Advertise on IT Security News. Read the complete article: Antivirus vendors push fixes for EFS ransomware attack method
CyberCX floats government loans to help startups comply with open banking
Instead of resorting to ‘screen scraping’ or rule dilution, CyberCX said it would be preferable if government assisted smaller organisations in meeting the highest level of compliance instead. Advertise on IT Security News. Read the complete article: CyberCX floats…
Ubisoft sues operators of four DDoS-for-hire services
Ubisoft delivers on threats it made in September 2019 and goes after website selling DDoS services that were used to launch attacks against Rainbow Six Siege servers. Advertise on IT Security News. Read the complete article: Ubisoft sues operators…
GDPR: 160,000 data breaches reported already, so expect the big fines to follow
The number of breaches reported each day continues to rise – and the number of significant fines is soon to follow. Advertise on IT Security News. Read the complete article: GDPR: 160,000 data breaches reported already, so expect the…
This free ransomware decryption tool just got a handy update
Victims of Paradise ransomware can now retrieve even more encrypted files because researchers have updated a tool which is already denying cyber criminals ransom payments. Advertise on IT Security News. Read the complete article: This free ransomware decryption tool…
Money laundering: This startup thinks its tech can prevent another banking scandal
An Estonian startup says it can stop a repeat of the multi-billion Scandinavian bank money-laundering scandal. Advertise on IT Security News. Read the complete article: Money laundering: This startup thinks its tech can prevent another banking scandal
Mitsubishi Electric discloses security breach, China is main suspect
Mitsubishi Electric says hackers did not obtain sensitive information about defense contracts. Advertise on IT Security News. Read the complete article: Mitsubishi Electric discloses security breach, China is main suspect
Betting companies given access to UK gov’t information on millions of children
Reports suggest a government database was misused for age verification purposes. Advertise on IT Security News. Read the complete article: Betting companies given access to UK gov’t information on millions of children
Citrix rolls out patches for critical ADC vulnerability exploited in the wild
Citrix is racing to develop patches for software builds vulnerable to the severe bug. Advertise on IT Security News. Read the complete article: Citrix rolls out patches for critical ADC vulnerability exploited in the wild
LastPass is in the midst of a major outage
LastPass issue appears to impact users with accounts dating back to 2014 and earlier. Advertise on IT Security News. Read the complete article: LastPass is in the midst of a major outage
End-to-end encryption means Huawei bans are about availability, not interception
Former Prime Minister who brought in Australia’s anti-encyption laws says the technology can prevent potential tapping by telco equipment manufacturers. Advertise on IT Security News. Read the complete article: End-to-end encryption means Huawei bans are about availability, not interception
Hacker leaks passwords for more than 500,000 servers, routers, and IoT devices
The list was shared by the operator of a DDoS booter service. Advertise on IT Security News. Read the complete article: Hacker leaks passwords for more than 500,000 servers, routers, and IoT devices
Microsoft warns about Internet Explorer zero-day, but no patch yet
IE zero-day connected to last week’s Firefox zero-day. Advertise on IT Security News. Read the complete article: Microsoft warns about Internet Explorer zero-day, but no patch yet
Visa’s plan against Magecart attacks: Devalue and disrupt
Visa is actively going after Magecart groups, but also deploying new technologies to safeguard payment card data. Advertise on IT Security News. Read the complete article: Visa’s plan against Magecart attacks: Devalue and disrupt
Singapore public sector called out for recurring IT lapses
Country’s government agencies must resolve repeated lapses and plug weaknesses in IT controls, especially given the speed at which new IT systems are implemented, says government committee responsible for assessing how public funds are used. Advertise on IT Security…
Microsoft: Application Inspector is now open source, so use it to test code security
Microsoft offers up the security tool it uses to probe untrusted third-party software components in its applications. Advertise on IT Security News. Read the complete article: Microsoft: Application Inspector is now open source, so use it to test code…
JhoneRAT exploits cloud services to attack Middle Eastern countries
Google Drive, Twitter, ImgBB and Google Forms are being abused in the name of data theft. Advertise on IT Security News. Read the complete article: JhoneRAT exploits cloud services to attack Middle Eastern countries
Travelex says some in-store systems are back up and running, 18 days after ransomware attack
Currency exchange company is gradually bringing systems back online, and said no customer data has been stolen in the attack. Advertise on IT Security News. Read the complete article: Travelex says some in-store systems are back up and running,…
WordPress plugin vulnerability can be exploited for total website takeover
The “easily exploitable” bug in WP Database Reset has serious consequences for webmasters. Advertise on IT Security News. Read the complete article: WordPress plugin vulnerability can be exploited for total website takeover
Microsoft opens up Rust-inspired Project Verona programming language on GitHub
Microsoft is developing a new programming language but it’s not giving up its work on Rust. Advertise on IT Security News. Read the complete article: Microsoft opens up Rust-inspired Project Verona programming language on GitHub
A hacker is patching Citrix servers to maintain exclusive access
FireEye believes this is a bad guy hoarding Citrix servers, rather than a good-guy vigilante looking out for organizations. Advertise on IT Security News. Read the complete article: A hacker is patching Citrix servers to maintain exclusive access
5G and Huawei: The UK’s decision is getting harder every day
The prime minister’s decision about Huawei will say much about the UK’s place in the world after Brexit. Advertise on IT Security News. Read the complete article: 5G and Huawei: The UK’s decision is getting harder every day
This giant botnet has just sprung back into life pushing a big phishing campaign
Researchers identify a new Emotet campaign that is distributing phishing emails – and malware – to targets across the globe. Advertise on IT Security News. Read the complete article: This giant botnet has just sprung back into life pushing…
The UK’s decision on 5G and Huawei is getting harder every day
The prime minister’s decision about Huawei will say much about the UK’s place in the world after Brexit. Advertise on IT Security News. Read the complete article: The UK’s decision on 5G and Huawei is getting harder every day
EU considers banning facial recognition technology in public spaces
A potential ban could last for five years to allow lawmakers to catch up. Advertise on IT Security News. Read the complete article: EU considers banning facial recognition technology in public spaces
FBI seizes WeLeakInfo, a website that sold access breached data
WeLeakInfo website sold access to more than 12 billion user records that leaked from breaches at other online services. Advertise on IT Security News. Read the complete article: FBI seizes WeLeakInfo, a website that sold access breached data
Equifax direct payments to members to end class action could top $500 million
Putting a bookend on one of the largest data breaches in history. Advertise on IT Security News. Read the complete article: Equifax direct payments to members to end class action could top $500 million
Cybersecurity firm McAfee names new CEO
Chris Young is stepping down as CEO of the cybersecurity company. Advertise on IT Security News. Read the complete article: Cybersecurity firm McAfee names new CEO
FBI: Nation-state actors have breached two US municipalities
The SharePoint CVE-2019-0604 vulnerability has been one of the most targeted security flaw Advertise on IT Security News. Read the complete article: FBI: Nation-state actors have breached two US municipalities
Using Google Authenticator? Here’s why you should get rid of it
Google Authenticator is the granddaddy of two-factor authentication apps, but it’s old and has some severe downsides. Advertise on IT Security News. Read the complete article: Using Google Authenticator? Here’s why you should get rid of it
Beware of this sneaky phishing technique now being used in more attacks
Security company researchers warn of a large increase in conversation-hijacking attacks. Here’s what they are and how to spot them. Advertise on IT Security News. Read the complete article: Beware of this sneaky phishing technique now being used in…
Oracle just released a whopping 334 security fixes in critical patch update
Oracle patches over 100 flaws that can be remotely exploited without credentials. Advertise on IT Security News. Read the complete article: Oracle just released a whopping 334 security fixes in critical patch update
Proof-of-concept exploits published for the Microsoft-NSA crypto bug
Two proof-of-concept exploits published for the CurveBall (CVE-2020-0601) vulnerability. Advertise on IT Security News. Read the complete article: Proof-of-concept exploits published for the Microsoft-NSA crypto bug