Category: Computer Security

CVE-2016-8459

NVD is the U.S. government repository of standards based vulnerability management data. This data enables automation of vulnerability management, security measurement, and compliance .

Valley College hacking presents lessons for many

Extortion is an old crime with a fresh new look thanks to international cyber-criminals. They’ve made a billion-dollar enterprise out of kidnapping valuable data by encrypting it, and then demanding a ransom in exchange for a digital key that restores the computer files to normal.

Los Angeles college reportedly pays hackers $28G ransom

A Los Angeles college reportedly paid hackers a $28,000 ransom after a cyberattack kept students and faculty locked out of their accounts. The Valley Star , the Los Angeles Valley College school newspaper, reported Friday that hackers locked students and staff out of files, emails and messaging systems and threatened to delete everything if the ransom wasn’t paid within a week.

Trump’s has an opportunity to help protect internet freedom – here’s how he can do it.

The rise of cybersovereignty – or, as it might be more accurately called, cyberfascism – has ushered in a global wave of censorship, surveillance, monitoring, and filtering that could directly hamper, or even reverse, the spread of a free and open internet. Couple that with Russian interference into not only the US election but potentially others around the world , and digital warfare puts core freedoms at risk globally.

Russian hackers could go after Congress next a ” and not just to read their email

Members of the Senate Intelligence Committee on Tuesday took turns questioning top intelligence officials, who say investigative agencies found compelling evidence of Russian cyber-hacking throughout the 2016 election cycle. Senate Intelligence Committee member Sen. Marco Rubio, R-Fla., during the committee’s hearing Tuesday, Jan. 10, 2017, on Russian intelligence activities.

Corporate Financial Data Theft and Customer Information Breaches: Top …

Financial and customer information, brand reputation, intellectual property, and employee information were also listed as critical assets to protect against security breaches. New business priorities and technologies also create challenges for IT and security teams, with 65% of respondents indicating that public clouds have the biggest security implications.i 1 2i 1 2 also found that security transformation impacts both the technology choices enterprises make to ward off cyber thieves and the way companies organize internal stakeholders, assess risk, and prioritize future investments.

Chrome, Safari, Opera form autofill can be easily tricked into leaking sensitive data

Your browser or password manager’s form autofill feature can be a big time saver, automatically entering data like your name, address, and phone number on those lengthy sign up or check out screens. But as Finnish web developer and hacker Viljami Kuosmanen points out , you might be inadvertently giving away more information than you are willing to share with a particular website.

Cyber Investing Summit 2017 Keynote Speaker Announced

Anti-Virus Pioneer John McAfee to Deliver Cyber Investing Summit Keynote Address May 23, 2017 at the New York Stock Exchange Few people understand the opportunities and challenges of building a successful cyber company from the ground up better than John McAfee John McAfee, CEO of MGT Capital Investments and founder of the global computer security software company McAfee, Inc, will deliver the keynote speech at the 2017 Cyber Investing Summit being held Tuesday, May 23rd at the New York Stock Exchange. The Cyber Investing Summit is an all-day conference focused on the investment opportunities and strategies in the cyber security industry.

FDA Advice on Hacking Threat to Cardiac Device

The U.S. Food and Drug Administration has issued new advice about how to safeguard implantable cardiac devices against hackers. A wireless transmitter used to transmit data from cardiac devices to medical providers, the Merlin@home Transmitter made by St. Jude Medical was found to be vulnerable to online hacking, the FDA said.

US warns of unusual cybersecurity flaw in heart devices

This Wednesday, July 22, 2015, file photo shows St. Jude Medical corporate headquarters, in Little Canada, Minn., just north of St. Paul. The Homeland Security Department is warning the public about an unusual cybersecurity flaw for one manufacturer’s implantable heart devices that could allow hackers to remotely take control of a person’s defibrillator or pacemaker.

US warns of unusual cybersecurity flaw in heart devices

The Homeland Security Department warned Tuesday about an unusual cybersecurity flaw for one manufacturer’s implantable heart devices that it said could allow hackers to remotely take control of a person’s defibrillator or pacemaker. Information on the security flaw, identified by researchers at MedSec Holdings in reports months ago, was only formally made public after the manufacturer, St. Jude Medical, made a software repair available Monday.

US Intel: Russia hacked Republican groups during election

Democratic groups and figures weren’t the only ones targeted in Russia’s suspected campaign to influence last year’s U.S. election. Russian cyberspies also targeted computers from state-level Republican groups and stole information from local voter registration records, FBI director James Comey said.

Hacker publishes 1.5M users’ information after esports site refuses ransom demand

Personal information for more than 1.5 million accounts maintained by the E-Sports Entertainment Association was stolen and published online after the company refused the cyber-ransom demands of hackers, the ESEA confirmed yesterday . ESEA has been updating its community in a timeline of events dating back to Dec. 27, and recommends that users change passwords and security questions in all other accounts where they used the same credentials.

St. Jude says it’s working to protect pacemakers from hackers :0

Nearly five months after ending up in the crosshairs of a short seller, St. Jude Medical said Monday it’s upgrading its cybersecurity to enhance the safety of its implantable heart devices. The updates come after the Food and Drug Administration found that St. Jude’s heart devices have “vulnerabilities” that could allow hackers to break into pacemakers, resulting in battery depletion or “inappropriate pacing or shocks.”

WikiLeaks: Russia hacking report was political document

In this Feb. 5, 2016 file photo, WikiLeaks founder Julian Assange speaks from the balcony of the Ecuadorean Embassy in London. Assange on Monday, Jan. 9, 2017, denounced last week’s U.S. intelligence report on Russian hacking, calling it a politically motivated “press release” that provided no evidence that Russian actors gave WikiLeaks hacked material.

Safari-get.com URL leads to new malware strain for macOS-based machines

For the past few weeks, people have been tricked into visiting a phony website embedded with malware that can freeze Macs, according to a report this week by the cybersecurity firm Malwarebytes. The new malware, which can be activated by visiting safari-get.com, can trigger two sets of actions depending on the version of the computers’ operating systems.

CNN anchor confronts Trump adviser on Russia: ‘How can you say…

CNN anchor Jake Tapper pressed President-elect Donald Trump’s top counselor over why his team hesitated to admit that they benefited from internal emails from the Democratic National Committee and Hillary Clinton’s campaign exposed by Russian hacking and leaking. In an interview on CNN on Sunday, Tapper asked Kellyanne Conway why she dismissed the hacking’s impact on the 2016 election.

Cyber attackers can make it impossible to call 911

It’s not often that any one of us needs to dial 911, but we know how important it is for it to work when one needs it. It is critical that 911 services always be available – both for the practicality of responding to emergencies, and to give people peace of mind.

Special C. tour begins 12 Jan. 2017

A reminder that, as Nigel Martyn announced on the BIB just over two months ago, the Special Consensus are preparing for their most ambitious Irish gig to date: they begin their 2017 tour in the Pavilion Theatre , DAon Laoghaire, on Thursday next week . Tickets are available from the venue box office and online from here .

Cyber experts report a chasing ghostsa after U.S. warning

After the U.S. government disclosed its first technical report publicly connected Russia’s intelligence services to U.S. hacking, the phones started ringing inside cybersecurity firm Rendition Infosec LLC. Worried customers were following the government’s advice, issued Dec. 29, and comparing digital logs recording incoming network traffic to their computers and finding matches to a list of hundreds of internet addresses the Homeland Security Department had identified as indicators of malicious Russian intelligence services cyber activity. “They thought they were compromised,” said Rendition founder, Jake Williams, who described a “frenzy” of computer security specialists scrubbing their systems for signs of the Russians.

British spies alerted America to Russia’s cyber attack on US election

GCHQ had prevented a breach of every Whitehall server in 2015, including the Home Office, Foreign Office and Ministry of Defence British spies alerted America to the Russian cyber attack after thwarting Moscow’s attempt to target the 2015 general election . A classified intelligence report on Russia’s influence over the race to the White House detailed how UK officials tipped off their US counterparts after the Democratic National Convention, according to the New York Times.

British spies alerted America to Russia’s cyber attack on US election

GCHQ had prevented a breach of every Whitehall server in 2015, including the Home Office, Foreign Office and Ministry of Defence British spies alerted America to the Russian cyber attack after thwarting Moscow’s attempt to target the 2015 general election . A classified intelligence report on Russia’s influence over the race to the White House detailed how UK officials tipped off their US counterparts after the Democratic National Convention, according to the New York Times.

British spies alerted America to Russia’s cyber attack on US election

GCHQ had prevented a breach of every Whitehall server in 2015, including the Home Office, Foreign Office and Ministry of Defence British spies alerted America to the Russian cyber attack after thwarting Moscow’s attempt to target the 2015 general election . A classified intelligence report on Russia’s influence over the race to the White House detailed how UK officials tipped off their US counterparts after the Democratic National Convention, according to the New York Times.

Cyber experts report ‘chasing ghosts’ after US warning

The first page of the Joint Analysis Report narrative by the Department of Homeland Security and federal Bureau of Investigation and released on Dec. 29, 2016, is photographed in Washington, Jan. 6, 2017. Computer security specialists say the technical details in the narrative that the U.S. said would show whether computers had been infiltrated by Russian intelligence services were poorly done and potentially dangerous.

U.S. spy chief ‘resolute’ on Russia cyber attack, differs with Trump

The top U.S. intelligence official said on Thursday he was “even more resolute” in his belief that Russia staged cyber attacks on Democrats during the 2016 election campaign, rebuking persistent skepticism from Republican President-elect Donald Trump about whether Moscow was involved. James Clapper, the director of national intelligence, said he had a very high level of confidence that Russia hacked Democratic Party and campaign staff email, and disseminated propaganda and fake news aimed at the Nov. 8 election.