Deal sees China committing to stopping the forced transfers, intellectual property theft, counterfeiting, and piracy of US technology. Advertise on IT Security News. Read the complete article: US and China officially sign phase one of trade deal
Category: Latest topics for ZDNet in Security
Google removes WhatsGap from app store
The search engine giant claims the ‘sensitive content’ on WhatsGap violated the company’s content policy. Advertise on IT Security News. Read the complete article: Google removes WhatsGap from app store
Chinese man arrested after making $1.6 million from selling VPN services
Chinese authorities continue their crackdown against unauthorized VPN services with what appears to be their biggest catch so far. Advertise on IT Security News. Read the complete article: Chinese man arrested after making $1.6 million from selling VPN services
More than 600 million users installed Android ‘fleeceware’ apps from the Play Store
A new set of 25 Android apps caught illegally charging users at the end of a trial period. Advertise on IT Security News. Read the complete article: More than 600 million users installed Android ‘fleeceware’ apps from the Play…
Facebook to notify users of third-party app logins
Facebook rolls out improved security notifications for logins with Facebook accounts on third-party apps and websites. Advertise on IT Security News. Read the complete article: Facebook to notify users of third-party app logins
Oracle launches internet routing 3D visualization tool
With its new, free tool, Oracle’s Internet Intelligence group aims to create a more accurate way to assess routing leaks. Advertise on IT Security News. Read the complete article: Oracle launches internet routing 3D visualization tool
Wind River acquires Star Lab to improve its Linux security
The well-known embedded Linux company Wind River is beefing up its security as its devices face an increasingly networked world. Advertise on IT Security News. Read the complete article: Wind River acquires Star Lab to improve its Linux security
Critical Cisco DCNM flaws: Patch right now as PoC exploits are released
The need to patch Cisco Data Center Network Manager for Nexus switches becomes even more urgent. Advertise on IT Security News. Read the complete article: Critical Cisco DCNM flaws: Patch right now as PoC exploits are released
P&N Bank discloses data breach, customer account information, balances exposed
The Australian bank says a cyberattack took place during a server upgrade. Advertise on IT Security News. Read the complete article: P&N Bank discloses data breach, customer account information, balances exposed
Middle East tech’s biggest trends in 2019? Startups, 5G – and internet shutdowns
It was the year of unicorn sales, the launch of 5G, and enthusiasm for e-commerce, amid government crackdowns. Advertise on IT Security News. Read the complete article: Middle East tech’s biggest trends in 2019? Startups, 5G – and internet…
You can now use an iPhone as a security key for Google accounts
All iPhones running iOS 10 or later can now be used as hardware security keys for Google accounts. Advertise on IT Security News. Read the complete article: You can now use an iPhone as a security key for Google…
The dark side of IoT, AI and quantum computing: Hacking, data breaches and existential threat
World Economic Forum report once again lists cyber attacks as one of the top threats facing the world in 2020 – alongside climate change, extreme weather and natural disasters. Advertise on IT Security News. Read the complete article: The…
Critical bugs in WordPress plugins InfiniteWP, WP Time Capsule expose 320,000 websites to attack
If you use these plugins you should update immediately as firewall protection will not work. Advertise on IT Security News. Read the complete article: Critical bugs in WordPress plugins InfiniteWP, WP Time Capsule expose 320,000 websites to attack
Adobe’s first 2020 security patch update fixes code execution vulnerabilities
This month’s security round is small but resolves some important bugs. Advertise on IT Security News. Read the complete article: Adobe’s first 2020 security patch update fixes code execution vulnerabilities
Study says Grindr, OkCupid, and Tinder breach GDPR
The researchers behind the study have also filed a complaint asking for Norwegian regulators to start an investigation against the dating service. Advertise on IT Security News. Read the complete article: Study says Grindr, OkCupid, and Tinder breach GDPR
Trump calls on Apple to unlock alleged shooter’s phone for FBI
After all the help Apple gets from the Trump White House on trade, the US President has called on Cupertino to unlock the phone, presumably as some form of quid pro quo. Advertise on IT Security News. Read the…
Microsoft January 2020 Patch Tuesday fixes 49 security bugs
Today’s patches also fix a major vulnerability in Windows’ cryptographic library. Advertise on IT Security News. Read the complete article: Microsoft January 2020 Patch Tuesday fixes 49 security bugs
Securing Kubernetes: Bug bounty program announced
Want to help lock down Kubernetes and make some money while you’re at it? The Cloud Native Computing Foundation has a new bug bounty program for you. Advertise on IT Security News. Read the complete article: Securing Kubernetes: Bug…
Microsoft fixes Windows crypto bug reported by the NSA
Fixes were released today part of the Microsoft’s January 2020 Patch Tuesday. Advertise on IT Security News. Read the complete article: Microsoft fixes Windows crypto bug reported by the NSA
Ransomware, phishing and cyber attacks scare business chiefs the most
Forget fire and flood, the top business risk is now a cyber disaster, according to survey of execs. Advertise on IT Security News. Read the complete article: Ransomware, phishing and cyber attacks scare business chiefs the most
Google to phase out user-agent strings in Chrome
Chrome will move to a new technology called Client Hints, part of the newer Privacy Sandbox project. Advertise on IT Security News. Read the complete article: Google to phase out user-agent strings in Chrome
Learning the lessons of the Dixons Carphone breach
The retailer’s data breach saw it hit with a £500,000 fine, but what lessons can other companies learn? Advertise on IT Security News. Read the complete article: Learning the lessons of the Dixons Carphone breach
Windows 7 end of life: Security risks and what you should do next
Microsoft Windows 7 will no longer receive security patches – and cyber criminals will be looking to exploit it to target businesses that still haven’t upgraded to Windows 7. Getting your security strategy right is vital. Advertise on IT…
Russia responsible for hacking gas firm tied to Trump impeachment: report
The cyberattack bears similar hallmarks to the 2016 DNC hack. Advertise on IT Security News. Read the complete article: Russia responsible for hacking gas firm tied to Trump impeachment: report
Apple’s not helping with shooter’s locked iPhones, says US DoJ – not true, says Apple
Apple says it has provided gigabytes of data to the FBI but refuses to offer a backdoor. Advertise on IT Security News. Read the complete article: Apple’s not helping with shooter’s locked iPhones, says US DoJ – not true,…
49 million user records from US data broker LimeLeads put up for sale online
Data from an exposed LimeLeads Elasticsearch server ends up on a hacking forum. Advertise on IT Security News. Read the complete article: 49 million user records from US data broker LimeLeads put up for sale online
This Trojan hijacks your smartphone to send offensive text messages
The feature is certainly one way to advertise a malware infection. Advertise on IT Security News. Read the complete article: This Trojan hijacks your smartphone to send offensive text messages
India’s imminent regulation will give financial data ownership to the individual
India will soon have a means for individuals to own their data. Here’s an explainer of the directions as they sit drafted by the Reserve Bank of India. Advertise on IT Security News. Read the complete article: India’s imminent…
As Windows 7 supports ends, these are your four options
If your business is still running on Windows 7, it’s time to get serious about how you’re going to handle the January 14, 2020 end of support. Here are your four options. Advertise on IT Security News. Read the…
Microsoft spots malicious npm package stealing data from UNIX systems
Malicious JavaScript package was only active on the npm repository for two weeks. Advertise on IT Security News. Read the complete article: Microsoft spots malicious npm package stealing data from UNIX systems
Report: Chinese hacking group APT40 hides behind network of front companies
A group of anonymous security analysts have tracked down 13 front companies operating in the island of Hainan through which they say the Chinese state has been recruiting hackers. Advertise on IT Security News. Read the complete article: Report:…
Phishing attacks: Watch out for these telltale signs that you’ve been sent to a phoney website
Sometimes some of the simplest techniques can trick people into falling victim to hackers – but here’s a few things to watch out for. Advertise on IT Security News. Read the complete article: Phishing attacks: Watch out for these…
Texas school district falls for email scam, hands over $2.3 million
There are “strong” leads but no real indication of who is responsible. Advertise on IT Security News. Read the complete article: Texas school district falls for email scam, hands over $2.3 million
Two weeks after ransomware attack, Travelex says some systems are now back online
After New Year’s Eve Sodinokibi ransomware incident, company is still working to restore systems but said it’s making “good progress” on recovery. Advertise on IT Security News. Read the complete article: Two weeks after ransomware attack, Travelex says some…
‘Rosegold’ National Lottery hacker steals £5, lands prison sentence
The Sentry MBA brute-force account cracking tool was used to compromise user accounts. Advertise on IT Security News. Read the complete article: ‘Rosegold’ National Lottery hacker steals £5, lands prison sentence
US troops deploying to the Middle East told to leave personal devices at home
US military officials fear operational security (OpSec) failures in handling personal devices might put soldiers in danger. Advertise on IT Security News. Read the complete article: US troops deploying to the Middle East told to leave personal devices at…
India ordered to review suspension of internet services in Kashmir
The Supreme Court of India found the indefinite suspension was ‘impermissible’. Advertise on IT Security News. Read the complete article: India ordered to review suspension of internet services in Kashmir
Academic research finds five US telcos vulnerable to SIM swapping attacks
Researchers find that 17 of 140 major online services are vulnerable to SIM swapping attacks. Advertise on IT Security News. Read the complete article: Academic research finds five US telcos vulnerable to SIM swapping attacks
Proof-of-concept code published for Citrix bug as attacks intensify
Two Citrix bug (CVE-2019-19781) exploits have been published on GitHub yesterday, making future attacks trivial for most hackers. Advertise on IT Security News. Read the complete article: Proof-of-concept code published for Citrix bug as attacks intensify
Hundreds of millions of cable modems are vulnerable to new Cable Haunt vulnerability
Cable modems using Broadcom chips are vulnerable to a new vulnerability named Cable Haunt, researchers say. Advertise on IT Security News. Read the complete article: Hundreds of millions of cable modems are vulnerable to new Cable Haunt vulnerability
TrickBot hackers create new stealthy backdoor for high-value targets
PowerTrick is reserved for the most lucrative targets on the gang’s hit list. Advertise on IT Security News. Read the complete article: TrickBot hackers create new stealthy backdoor for high-value targets
Here’s what will happen to your Windows 7 PC on January 15, 2020
Microsoft is ready to push a full-screen warning to Windows 7 users who are still running the OS after January 14. The nag-screen payload is part of the December 10 Patch Tuesday monthly rollup. Advertise on IT Security News.…
Google to Windows 7 users: Chrome support will run until at least July 2021
Google offers extended Chrome support for Windows 7 to cater to businesses that haven’t finished migrating. Advertise on IT Security News. Read the complete article: Google to Windows 7 users: Chrome support will run until at least July 2021
Man jailed for using data breach info leaks to claim over $12 million in IRS tax refunds
Information leaked due to data breaches was used to file fraudulent tax returns. Advertise on IT Security News. Read the complete article: Man jailed for using data breach info leaks to claim over $12 million in IRS tax refunds
Cybersecurity acquisitions run rampant this week: Who has bought what?
As a new year unfolds, so do portfolio changes and acquisition deals in the cybersecurity sector. Advertise on IT Security News. Read the complete article: Cybersecurity acquisitions run rampant this week: Who has bought what?
Google details its three-year fight against the Bread (Joker) malware operation
Google says it removed more than 1,700 Android apps infected with Bread (Joker) malware since 2017. Advertise on IT Security News. Read the complete article: Google details its three-year fight against the Bread (Joker) malware operation
Facebook says no to blocking political ads
Instead, users can now limit the number of political ads they see on their Facebook and Instagram feeds. Advertise on IT Security News. Read the complete article: Facebook says no to blocking political ads
Senator unveils bill to stop the US from sharing intel with countries using Huawei 5G
The legislation comes just as the UK is set to decide whether to upgrade its telecom network with Huawei. Advertise on IT Security News. Read the complete article: Senator unveils bill to stop the US from sharing intel with…
50+ orgs ask Google to take a stance against Android bloatware
Privacy organizations ask Google to introduce new OEM rules for Android bloatware. Advertise on IT Security News. Read the complete article: 50+ orgs ask Google to take a stance against Android bloatware
Resolving or revolving? Make 2020 the year for Zero Trust
It’s a new decade. Time for a change. Are you ready to stop “revolving” and start “resolving”? Advertise on IT Security News. Read the complete article: Resolving or revolving? Make 2020 the year for Zero Trust
Dixons Carphone hit with £500,000 fine after data breach affecting 14 million people
Investigation found malware installed on over 5,000 PoS terminals. Advertise on IT Security News. Read the complete article: Dixons Carphone hit with £500,000 fine after data breach affecting 14 million people
Unremovable malware found preinstalled on low-end smartphone sold in the US
Malwarebytes said it found malware pre-installed on Unimax U673c handsets, sold by Assurance Wireless (Virgin Mobile) in the US. Advertise on IT Security News. Read the complete article: Unremovable malware found preinstalled on low-end smartphone sold in the US
These hacking groups are eyeing power grids, says security company
Cybersecurity company warns that hackers are investigating industrial control systems associated with power infrastructure. Advertise on IT Security News. Read the complete article: These hacking groups are eyeing power grids, says security company
Hackers probe Citrix servers for weakness to remote code execution vulnerability
At least 80,000 organizations could be at risk. Advertise on IT Security News. Read the complete article: Hackers probe Citrix servers for weakness to remote code execution vulnerability
This cryptocurrency-stealing malware just got a significant upgrade and new tactics
The malware, linked to North Korean hackers, is after your bitcoin wallet. Advertise on IT Security News. Read the complete article: This cryptocurrency-stealing malware just got a significant upgrade and new tactics
Travelex customers left in cashless limbo, ICO not formally alerted to data theft claims
The ransomware attack has infuriated stranded customers and the ICO has still not seen an official data breach report. Advertise on IT Security News. Read the complete article: Travelex customers left in cashless limbo, ICO not formally alerted to…
Amazon: We fired four Ring employees for improperly accessing users’ video data
Amazon-owned Ring responds to questions by lawmakers over security and data-handling practices. Advertise on IT Security News. Read the complete article: Amazon: We fired four Ring employees for improperly accessing users’ video data
City of Las Vegas said it successfully avoided devastating cyber-attack
Security breach took place on January 8, but the city said it detected the intrusion in time to prevent any damage. Advertise on IT Security News. Read the complete article: City of Las Vegas said it successfully avoided devastating…
Singapore online falsehoods law to face first court appeal
Paving the first time the country’s online falsehoods law will be argued in court, the Singapore Democratic Party says it has filed an appeal after Manpower Minister Josephine Teo rejected the opposition party’s application to retract correction directions issued against…
New Iranian data wiper malware hits Bapco, Bahrain’s national oil company
Saudi Arabia’s cyber-security agency spots new Dustman data-wiping malware. Advertise on IT Security News. Read the complete article: New Iranian data wiper malware hits Bapco, Bahrain’s national oil company
US government proposes a ‘light-touch’ to developing AI regulation
It has released 10 AI principles, ranging from building public trust in AI to ensuring that federal agencies do not ‘hamper’ AI innovation. Advertise on IT Security News. Read the complete article: US government proposes a ‘light-touch’ to developing…
Rockwell Automation acquires Avnet to grow cybersecurity portfolio
The company believes the move will help it achieve its double digit growth goals. Advertise on IT Security News. Read the complete article: Rockwell Automation acquires Avnet to grow cybersecurity portfolio
Operation Goldfish Alpha reduces cryptojacking across Southeast Asia by 78%
Interpol and CERT teams from 10 Southeast Asian countries crack down on hacked MikroTik routers. Advertise on IT Security News. Read the complete article: Operation Goldfish Alpha reduces cryptojacking across Southeast Asia by 78%
Mozilla patches Firefox zero-day reported by Qihoo 360
Chinese security firm claims there’s also an accompanying Internet Explorer zero-day. Advertise on IT Security News. Read the complete article: Mozilla patches Firefox zero-day reported by Qihoo 360
Telegram opens lid on TON project amid SEC spat: ‘Grams won’t help you get rich’
No cryptocurrency wallet will be integrated with Telegram Messenger either — at least, not yet. Advertise on IT Security News. Read the complete article: Telegram opens lid on TON project amid SEC spat: ‘Grams won’t help you get rich’
Firefox 72 rolls out: No more notification popups, fingerprinting blocked by default
Firefox 72 brings more privacy protection enhancements and addresses annoying notification request popups. Advertise on IT Security News. Read the complete article: Firefox 72 rolls out: No more notification popups, fingerprinting blocked by default
ATM skimmer sentenced for fleecing $400,000 out of US banks
ATM users had their cards read and bank accounts pillaged. Advertise on IT Security News. Read the complete article: ATM skimmer sentenced for fleecing $400,000 out of US banks
Naive IoT botnet wastes its time mining cryptocurrency
Operators of LiquorBot botnet waste their time trying to mine Monero on hacked SOHO routers. Advertise on IT Security News. Read the complete article: Naive IoT botnet wastes its time mining cryptocurrency
TikTok fixes security flaws that could have let hackers manipulate accounts, access personal data
Researchers at Check Point uncovered ‘multiple’ security loopholes in one of the world’s most popular mobile apps. Advertise on IT Security News. Read the complete article: TikTok fixes security flaws that could have let hackers manipulate accounts, access personal…
Singapore must look beyond online falsehood laws as elections loom
Country’s government is missing the point with its use of correction directives, when it should be looking more closely at how the legislation can be used to address bigger security threats as it prepares for its first elections since the…
Signal app will support ‘view-once’ images and videos
Support for ephemeral multimedia messages to arrive in Signal within weeks. Advertise on IT Security News. Read the complete article: Signal app will support ‘view-once’ images and videos
Google Project Zero shifts to full 90-day disclosures to improve patch uptake
Vendors to have 90 days to get patches right, under changes to Google Project Zero’s disclosure policy. Advertise on IT Security News. Read the complete article: Google Project Zero shifts to full 90-day disclosures to improve patch uptake
CES 2020: Google Assistant adds new privacy and scheduling features
Users can delete a record of a command by saying, ‘Hey Google, that wasn’t for you’. Advertise on IT Security News. Read the complete article: CES 2020: Google Assistant adds new privacy and scheduling features
Broadcom sells Symantec’s Cyber Security Services business to Accenture
It is selling off the security services business after acquiring it in August. Advertise on IT Security News. Read the complete article: Broadcom sells Symantec’s Cyber Security Services business to Accenture
Google Chrome to hide notification spam starting February 2020
Chrome 80, scheduled for release in February 2020, will block notification popups by default. Advertise on IT Security News. Read the complete article: Google Chrome to hide notification spam starting February 2020
FBI asks Apple to help unlock iPhones belonging to alleged Pensacola shooter
The FBI has court permission to access data on the iPhones, but both are password protected. Advertise on IT Security News. Read the complete article: FBI asks Apple to help unlock iPhones belonging to alleged Pensacola shooter
Travelex faces ransom demands following NYE malware attack
The currency exchange has been issued a deadline to pay up by those responsible. Advertise on IT Security News. Read the complete article: Travelex faces ransom demands following NYE malware attack
UK man sentenced to prison for hacking and spying on victims through their webcams
UK police say suspect recorded victims during intimate moments using malware named Imminent Monitor RAT. Advertise on IT Security News. Read the complete article: UK man sentenced to prison for hacking and spying on victims through their webcams
YouTube rolls out changes for COPPA compliance, expects ‘significant impact’ for creators
Content creators may be in for a bumpy ride. Advertise on IT Security News. Read the complete article: YouTube rolls out changes for COPPA compliance, expects ‘significant impact’ for creators
This password-stealing malware just got updated with new tactics to help it hide better
Predator the Thief provided updated again; make sure your systems are patched and staff are alert to the risks of phishing. Advertise on IT Security News. Read the complete article: This password-stealing malware just got updated with new tactics…
Insight Partners acquires enterprise security firm Armis in $1.1 billion deal
Insight Partners says the deal addresses a global enterprise endpoint security need. Advertise on IT Security News. Read the complete article: Insight Partners acquires enterprise security firm Armis in $1.1 billion deal
Hard-disk-wiping malware, phishing and espionage: How Iran’s cyber capabilities stack up
US warns that cyberattacks could be part of Iran’s plans as tensions rise. This is what Iran’s current offensive cyber abilities look like. Advertise on IT Security News. Read the complete article: Hard-disk-wiping malware, phishing and espionage: How Iran’s…
CES 2020: BlackBerry integrates Cylance with QNX to create new security framework for OEMs
BlackBerry said the new AI-based service is meant to protect connected cars from cyber threats. Advertise on IT Security News. Read the complete article: CES 2020: BlackBerry integrates Cylance with QNX to create new security framework for OEMs
Facebook: We’ll ban deepfakes but only if they break these rules
Some deepfake videos could remain on Facebook – they just might not be promoted through the News Feed. Advertise on IT Security News. Read the complete article: Facebook: We’ll ban deepfakes but only if they break these rules
Half of the websites using WebAssembly use it for malicious purposes
WebAssembly not that popular: Only 1,639 sites of the Top 1 Million use WebAssembly. Advertise on IT Security News. Read the complete article: Half of the websites using WebAssembly use it for malicious purposes
Only 9.27% of all npm developers use 2FA
Two-factor authentication not widely adopted on npm, the de-facto JavaScript package manager, and the largest package repository on the internet. Advertise on IT Security News. Read the complete article: Only 9.27% of all npm developers use 2FA
New Year, new gadgets? Five ways to keep your new devices safe from hackers, cyber attacks and malware
The National Cyber Security Centre has offered advice to people on how to keep their new smartphones, laptops and Internet of Things products secure. Advertise on IT Security News. Read the complete article: New Year, new gadgets? Five ways…
Windows 7: What is your company’s exit strategy?
If your business is still running on Windows 7, it’s time to get serious about how you’re going to handle the January 14, 2020 end of support. Here are your four options. Advertise on IT Security News. Read the…
Microsoft: RDP brute-force attacks last 2-3 days on average
Microsoft publishes insights into RDP brute-force attacks from months-long 45,000 PC study. Advertise on IT Security News. Read the complete article: Microsoft: RDP brute-force attacks last 2-3 days on average
UK government investigates possible cyberattack link to London Stock exchange outage
It was thought the incident was down to software issues. Now, officials are not so sure. Advertise on IT Security News. Read the complete article: UK government investigates possible cyberattack link to London Stock exchange outage
VPN warning: REvil ransomware targets unpatched Pulse Secure VPN servers
Researcher warns organizations to patch Pulse Secure VPN flaws now or risk ‘big game’ REvil ransomware attacks. Advertise on IT Security News. Read the complete article: VPN warning: REvil ransomware targets unpatched Pulse Secure VPN servers
Search engine for Japanese sex hotels announces security breach
The 2010s decade ends with a major security breach at a search engine for finding love hotels across Japan. Advertise on IT Security News. Read the complete article: Search engine for Japanese sex hotels announces security breach
DHS: Iran maintains a robust cyber program and can execute cyber-attacks against the US
US Department of Homeland Security issues terror alert about possible Iran-sponsored terrorist acts and cyber-attacks. Advertise on IT Security News. Read the complete article: DHS: Iran maintains a robust cyber program and can execute cyber-attacks against the US
Cabinet documents detail Howard government’s Telstra T2 sales plan
The sale of a 16% stake of the Australian telecommunications giant included a move to list on the New York Stock Exchange. Advertise on IT Security News. Read the complete article: Cabinet documents detail Howard government’s Telstra T2 sales…
These five tech trends will dominate 2020
Here’s a look at the technology trends that will most shape the enterprise market in 2020. Advertise on IT Security News. Read the complete article: These five tech trends will dominate 2020
School management software provider discloses severe security breach
Active Network discloses security incident that impacted school online stores built on the Blue Bear platform. Advertise on IT Security News. Read the complete article: School management software provider discloses severe security breach
How to stop your iPhone and apps from tracking you 24/7
Imagine if you were asked to carry around a device that pinpointed your location 24/7, pretty much anywhere on the planet? Chances are you already do. Advertise on IT Security News. Read the complete article: How to stop your…
DeathRansom evolves from joke to actual ransomware
A highly active ransomware strain once considered a joke is now capable of encrypting files using a solid encryption scheme. Advertise on IT Security News. Read the complete article: DeathRansom evolves from joke to actual ransomware
Company shuts down because of ransomware, leaves 300 without jobs just before holidays
Company tells employees to seek new employment after suspending all operations right before Christmas. Advertise on IT Security News. Read the complete article: Company shuts down because of ransomware, leaves 300 without jobs just before holidays
Cisco critical bugs: Nexus data center switch software needs patching now
Patch your Cisco Data Center Network Manager software now or uninstall it. Advertise on IT Security News. Read the complete article: Cisco critical bugs: Nexus data center switch software needs patching now