Hacking

Oracle earlier this week announced its decision to scrap its Java browser plug-in. The plug-in, which has been a frequent target of hackers, won't be included in the next version of the kit for Java developers, JDK 9, which is expected to ship in September. Oracle's action was motivated by browser m...

SPOTLIGHT ON SECURITY

FDA Guidelines Target IoT Medical Device Security

The U.S. Food and Drug Administration last week took a step toward addressing the threat the Internet of Things poses to patients and their data by releasing some proposed guidelines for managing cybersecurity in medical devices. "A growing number of medical devices are designed to be networked to f...

SPOTLIGHT ON SECURITY

GM Bug Program Gets Mixed Notices

Two white-hat hackers, Charlie Miller and Chris Valasek, made headlines last year when they demonstrated how they could hijack the control systems of a moving motor vehicle over the Internet. The move got the attention of the auto industry, and last week General Motors put in place a program to enco...

Ukrainian officials earlier this week said they had launched a probe into the source of a cyberattack that targeted a Kiev Airport. The attack may be related to the BlackEnergy malware attacks that recently targeted Ukrainian infrastructure facilities, apparently from Russia. CERT-UA on Monday warne...

LastPass has boosted security for its users after a security researcher alerted the company of a phishing attack he devised to steal users' login and two-factor authentication credentials. Sean Cassidy, CTO of Praesidio, demonstrated the phishing attack, which he calls "LostPass," last week at Shmoo...

SPOTLIGHT ON SECURITY

Privacy as a Service Advocates Promise Better Data Protection

There's been a lot of wailing and gnashing of teeth about the Sisyphean task of protecting privacy in the Digital Age, but that hasn't stopped innovators from searching for ways to preserve it. One of the latest ideas to emerge in the field is Privacy as a Service. As with many emerging technologies...

Security researchers at SentinelOne on Wednesday revealed a vulnerability they discovered in the Blackphone. The flaw -- an obscure socket -- lets an attacker take over and control communications on the Blackphone, a highly secure Android smartphone Silent Circle developed and marketed in reaction t...

SPOTLIGHT ON SECURITY

Iranian Cyberattack on American Dam Viewed As Rarity

Just days before Christmas, a rare event occurred: the report of a successful intrusion into America's infrastructure by overseas hackers. Although the event -- penetration of the control system of a dam 20 miles from New York City -- was more than two years old, it just made it into the public ligh...

SPOTLIGHT ON SECURITY

Security Execs Sweat Insider Threats

Insider threats are becoming increasingly worrisome to corporate security executives. That is one of the findings in a survey of C-level businesspeople Nuix released last week. "The insider threat seems to be a bigger concern this year than it was in previous years," said Nuix's Keith Lowry. "People...

People like to see gifts from their wish lists under the Christmas tree, and security pros are no exception. Here are things some cyberwarriors would like old St. Nick to deliver to them. The wish at the top of Ryan Kalember's Christmas list would be a tough one for Santa to fulfill, said the senior...

The idea of a "Cyber Geneva Convention" has gained steam in the last five years. Based on the original Geneva Convention, which dates back to 1864, it would ensure that certain types of attacks, as well as specific targets, would remain off-limits in a cyberwar. The concept of rules dictating what s...

As 2016 approaches, it's time to get the crystal ball out and predict next year's cybersecurity trends. Here are some predictions from security pros TechNewsWorld interviewed. Fantasy sports sites like DraftKings and FanDuel in 2015 caught the attention of states' attorneys general, who wanted to tr...

FBI Director James Comey on Wednesday told members of a U.S. Senate committee that high-tech companies may need to adopt a new business model regarding encryption in order to get on the same page with law enforcement. "Encryption is getting in the way of our ability to have court orders effective to...

Technewsworld Channels