Top

Category: Security


Networking Security, Security

DHS mandates new security standards for federal networks

October 17, 2017

Via: FCW

The Department of Homeland Security is requiring agencies to use new email and web security guidelines that address man-in-the-middle attacks. A binding operational directive from DHS gives federal agencies 90 days to implement a pair of tools, Domain-based Message Authentication […]


Operations Security, Security

Severe flaw in WPA2 protocol leaves Wi-Fi traffic open to eavesdropping

October 16, 2017

Via: ArsTechnica

An air of unease set into the security circles on Sunday as they prepared for the disclosure of high-severity vulnerabilities in the Wi-Fi Protected Access II protocol that make it possible for attackers to eavesdrop Wi-Fi traffic passing between computers […]


Attacks & Breaches, Security

Millions of high-security crypto keys crippled by newly discovered flaw

October 16, 2017

Via: ArsTechnica

A crippling flaw in a widely used code library has fatally undermined the security of millions of encryption keys used in some of the highest-stakes settings, including national identity cards, software- and application-signing, and trusted platform modules protecting government and […]


Attacks & Breaches, Security

Senator wants Kaspersky out of U.S. voting systems

October 16, 2017

Via: FCW

A U.S. senator has linked two of the hottest tech policy stories around – efforts by U.S. agencies to blacklist cybersecurity vendor Kaspersky Lab and concerns about the vulnerability of voting systems used by cities and states. Sen. Amy Klochubar […]


Attacks & Breaches, Security

Equifax rival TransUnion also sends site visitors to malicious pages

October 13, 2017

Via: ArsTechnica

Equifax isn’t the only credit-reporting behemoth with a website redirecting visitors to fake Adobe Flash updates. A security researcher from AV provider Malwarebytes said transunioncentroamerica.com, a TransUnion site serving people in Central America, is also sending visitors to the fraudulent […]


Attacks & Breaches, Security

Was Equifax Hacked Again?

October 12, 2017

Via: Fortune

While Equifax continues to deal with the fallout of the massive data breach it announced in September, a security expert is raising fears that the consumer credit rating agency might have another security problem on its hands. Independent security analyst […]


Networking Security, Security

House bill looks to secure IoT ecosystem

October 11, 2017

Via: FCW

Rep. Robin Kelly (D-Ill.), the ranking member of the IT Subcommittee of the House Oversight and Government Reform Committee, is looking to help improve the security and oversight of the emerging internet-of-things ecosystem. A discussion draft of Kelly’s Internet of […]


Networking Security, Security

Ransomware is now big business on the dark web and malware developers are cashing in

October 11, 2017

Via: ZDnet

The total value of ransomware sales on dark web market places has rocketed from $250,000 to over $6m in just a year as demand for the file-encrypting malware grows. Ransomware has hardly been away from the public eye this year, […]


Attacks & Breaches, Security

A Surprise in the Equifax Breach: Victims Likely to Get Paid

October 10, 2017

Via: Fortune

When hackers steal consumer data from a major company, the fallout is depressingly familiar: The corporation comes to a settlement with class action lawyers, who get paid nicely, while most of the victims of the breach get credit monitoring or […]


Operations Security, Security

Audit chides FDIC for sloppy breach protocols

October 9, 2017

Via: FCW

An Inspector General’s audit found that the Federal Deposit Insurance Corporation’s protocols for responding to a data breach aren’t being followed, even as the agency has faced dozens of security incidents in the past two years. The audit stemmed from […]