http://www.net-security.org Help Net Security en-us Copyright since 1998 by HNS staff Sun, 9 Aug 2015 03:30:02 -0500 http://feedproxy.google.com/~r/HelpNetSecurity/~3/yVSPiFHX-RM/secworld.php A critical Firefox vulnerability has been spotted being exploited in the wild. The bug, reported by security researcher Cody Crews, allows attackers to violate Firefox' same origin policy and injec... Fri, 7 Aug 2015 06:56:13 -0500 http://www.net-security.org/secworld.php?id=18736 http://feedproxy.google.com/~r/HelpNetSecurity/~3/boJGCTKLjP0/secworld.php The Electronic Frontier Foundation has finally released version 1.0 of Privacy Badger, a browser extension that blocks some of the sneakiest trackers that try to spy on your Web browsing habits. Mo... Fri, 7 Aug 2015 06:18:22 -0500 http://www.net-security.org/secworld.php?id=18735 http://feedproxy.google.com/~r/HelpNetSecurity/~3/aPDJM7PPlVs/secworld.php Pentagon's Joint Staff unclassified email system, used by 4,000 military and civilian personnel, has been compromised by attackers, and it has been taken offline until the threat is dealt with. Acc... Fri, 7 Aug 2015 05:12:27 -0500 http://www.net-security.org/secworld.php?id=18734 http://feedproxy.google.com/~r/HelpNetSecurity/~3/5bYYfndJK74/secworld.php Physically tampering with gasoline tanks is dangerous enough, given how volatile gas can be. Altering a fuel gauge can cause a tank to overflow, and a simple spark can set everything ablaze. But imagi... Fri, 7 Aug 2015 03:31:53 -0500 http://www.net-security.org/secworld.php?id=18733 http://feedproxy.google.com/~r/HelpNetSecurity/~3/m3Zsoy5N3s8/secworld.php Secunia has taken an early peek at the trend in vulnerabilities for 2015, and has presented the results at Black Hat USA 2015. Seven months into the year, the number of detected zero-day vulnerabiliti... Fri, 7 Aug 2015 03:17:14 -0500 http://www.net-security.org/secworld.php?id=18732 http://feedproxy.google.com/~r/HelpNetSecurity/~3/_OqKhDuDbNo/secworld.php According to a survey conducted by Kaspersky Lab in conjunction with B2B International, around half of the consumers surveyed also use their devices for work. However, only one in 10 is seriously conc... Fri, 7 Aug 2015 02:44:49 -0500 http://www.net-security.org/secworld.php?id=18731 http://feedproxy.google.com/~r/HelpNetSecurity/~3/CDQvdkb1HOg/article.php The way we interact with service providers – whether travel organisations, music suppliers or retailers – has changed to be almost unrecognisable from five years’ ago. From Uber to Spotify to Airbnb, ... Fri, 7 Aug 2015 02:05:46 -0500 http://www.net-security.org/article.php?id=2348 http://feedproxy.google.com/~r/HelpNetSecurity/~3/gk5_cw-AR_4/secworld.php Check Point's mobile security research team discovered a vulnerability in Android that affects phones, tablets and devices made by major manufacturers including LG, Samsung, HTC and ZTE. The team disc... Thu, 6 Aug 2015 14:12:18 -0500 http://www.net-security.org/secworld.php?id=18730 http://feedproxy.google.com/~r/HelpNetSecurity/~3/crAH2B3WlAs/secworld.php The Black Hat USA 2015 conference is underway at the Mandalay Bay Convention Center in Las Vegas. Take a peek at the happenings in the Business Hall. Featured vendors and people: BalaBit, CrowdStri... Thu, 6 Aug 2015 11:17:50 -0500 http://www.net-security.org/secworld.php?id=18729 http://feedproxy.google.com/~r/HelpNetSecurity/~3/Rexweg2Xh2M/secworld.php Cyber crooks and cyber spies are often two distinct categories of attackers, but not always. Years-long research by the FBI, Fox-IT and Crowdstrike revealed that, at least in one situation, hackers wh... Thu, 6 Aug 2015 10:43:54 -0500 http://www.net-security.org/secworld.php?id=18728 http://feedproxy.google.com/~r/HelpNetSecurity/~3/VrHgFoos50M/secworld.php There's no doubt about it: the batch of stolen information leaked in the wake of the Hacking Team breach was a boon for exploit kit developers. Not only did it contain a number of exploits for prev... Thu, 6 Aug 2015 08:11:08 -0500 http://www.net-security.org/secworld.php?id=18727 http://feedproxy.google.com/~r/HelpNetSecurity/~3/JQdU5m9C7Zg/secworld.php August 5, 2015, is the date that (hopefully) marks the beginning of one of the biggest positive changes in the Android ecosystem. Adrian Ludwig, Google's lead engineer for Android Security, has ann... Thu, 6 Aug 2015 06:32:37 -0500 http://www.net-security.org/secworld.php?id=18726 http://feedproxy.google.com/~r/HelpNetSecurity/~3/S1apR8v_w9Y/secworld.php Yesterday at Black Hat USA 2015, researchers from UK-based Context Information Security demonstrated how Windows Update can be abused for internal attacks on corporate networks by exploiting insecurel... Thu, 6 Aug 2015 04:17:55 -0500 http://www.net-security.org/secworld.php?id=18725 http://feedproxy.google.com/~r/HelpNetSecurity/~3/35l5rr0T7fU/secworld.php Microsoft is continually tweaking its Bug Bounty programs, and the latest step in this evolution has been announced on Wednesday at Black Hat USA 2015. "We are raising the Bounty for Defense maximu... Thu, 6 Aug 2015 04:03:11 -0500 http://www.net-security.org/secworld.php?id=18724 http://feedproxy.google.com/~r/HelpNetSecurity/~3/0nyEIIZb8eE/secworld.php InfoGPS Networks revealed at Black Hat USA 2015 software able to identify, classify, and track sensitive data in real-time across the organization. “Cybersecurity software has traditionally been ... Thu, 6 Aug 2015 03:16:26 -0500 http://www.net-security.org/secworld.php?id=18723 http://feedproxy.google.com/~r/HelpNetSecurity/~3/bKBYfKMKghA/secworld.php The Black Hat USA 2015 conference is underway at the Mandalay Bay Convention Center in Las Vegas, and the "business" part of the conference is bustling. Featured vendors and people: Qualys, Jeff M... Thu, 6 Aug 2015 02:36:33 -0500 http://www.net-security.org/secworld.php?id=18722 http://feedproxy.google.com/~r/HelpNetSecurity/~3/tk9UABHKQMY/secworld.php More than 500 players have registered for an exciting global online hacker challenge taking place this week during Black Hat USA 2015 and DEF CON. Organized by BalaBit, best known for its syslog-ng... Thu, 6 Aug 2015 02:05:06 -0500 http://www.net-security.org/secworld.php?id=18721 http://feedproxy.google.com/~r/HelpNetSecurity/~3/hj4gtUXeLQo/secworld.php The National Institute of Standards and Technology (NIST) has released the final version of its "Secure Hash Algorithm-3" standard, a next-generation tool for securing the integrity of electronic info... Thu, 6 Aug 2015 01:57:47 -0500 http://www.net-security.org/secworld.php?id=18720 http://feedproxy.google.com/~r/HelpNetSecurity/~3/wvw5b888Aik/secworld.php A new type of attack, “Man in the Cloud” (MITC), can quietly coopt common file synchronization services, such as Google Drive and Dropbox, to turn them into devastating attack tools, Imperva has revea... Wed, 5 Aug 2015 10:24:50 -0500 http://www.net-security.org/secworld.php?id=18719 http://feedproxy.google.com/~r/HelpNetSecurity/~3/Rjjt1d5M8hY/secworld.php At Black Hat USA 2015, Qualys announced the availability of Qualys AssetView, a free cloud-based asset inventory service that enables companies to search for information on any IT asset where an agent... Wed, 5 Aug 2015 08:39:32 -0500 http://www.net-security.org/secworld.php?id=18718 http://feedproxy.google.com/~r/HelpNetSecurity/~3/sZVXOD4Ewzs/secworld.php Phishing attacks have increased by 38 percent overall in Q2 2015, and the growth has been spurred partly by the ever-growing number and sophisticated types of phishing attacks specifically designed to... Wed, 5 Aug 2015 07:34:54 -0500 http://www.net-security.org/secworld.php?id=18717 http://feedproxy.google.com/~r/HelpNetSecurity/~3/b1US1xqvPKs/secworld.php CDNetworks, the global content delivery network (CDN), will showcase Cloud Security 2.0 this week at Black Hat USA 2015, Booth IP29. Cloud Security 2.0 includes intelligent, next generation behav... Wed, 5 Aug 2015 07:07:06 -0500 http://www.net-security.org/secworld.php?id=18716 http://feedproxy.google.com/~r/HelpNetSecurity/~3/ZXITjiRyK04/secworld.php It's time to update your self-hosted versions of WordPress again. WordPress 4.2.4, released on Tuesday, fixes four bugs and several security issues: Three cross-site scripting vulnerabilities An SQ... Wed, 5 Aug 2015 06:47:08 -0500 http://www.net-security.org/secworld.php?id=18715 http://feedproxy.google.com/~r/HelpNetSecurity/~3/CeqtxqDOgeU/secworld.php So, you have decided to switch to Windows 10, but you heard that the new OS is a veritable vacuum for user data, which it sends back to Microsoft. Fear not! While most of the capabilities and permi... Wed, 5 Aug 2015 05:53:04 -0500 http://www.net-security.org/secworld.php?id=18714 http://feedproxy.google.com/~r/HelpNetSecurity/~3/7Msxx5HAlCU/secworld.php Personal cloud is growing in importance as it shapes how employees operate across their digital lives, according to Gartner. End-user computing (EUC) and digital workplace managers responsible for... Wed, 5 Aug 2015 03:44:26 -0500 http://www.net-security.org/secworld.php?id=18713 http://feedproxy.google.com/~r/HelpNetSecurity/~3/44Q5Tr4mT4Y/secworld.php At Black Hat USA 2015, Appthority released their second Q2 2015 Enterprise Mobile Threat Report, for which their researchers analyzed security and risky behaviors in three million apps and assessed ho... Wed, 5 Aug 2015 01:55:48 -0500 http://www.net-security.org/secworld.php?id=18712 http://feedproxy.google.com/~r/HelpNetSecurity/~3/fdvg_VDAMJs/secworld.php Today at Black Hat USA 2015, Akana released the findings of a survey of over 250 security practitioners, including CSOs, CISOs, and security architects. Aimed at quantifying the maturity of API s... Wed, 5 Aug 2015 01:54:20 -0500 http://www.net-security.org/secworld.php?id=18711 http://feedproxy.google.com/~r/HelpNetSecurity/~3/MMtJMRnGDPA/secworld.php The Electronic Frontier Foundation (EFF), privacy company Disconnect and a coalition of Internet companies have announced a stronger “Do Not Track” (DNT) setting for Web browsing—a new policy standard... Wed, 5 Aug 2015 01:51:55 -0500 http://www.net-security.org/secworld.php?id=18710 http://feedproxy.google.com/~r/HelpNetSecurity/~3/x8-bvM4VRc4/secworld.php Alert Logic revealed at the Black Hat USA 2015 conference Alert Logic Cloud Insight, a cloud-native vulnerability and configuration management solution designed for customers running on Amazon Web Ser... Wed, 5 Aug 2015 01:50:08 -0500 http://www.net-security.org/secworld.php?id=18709 http://feedproxy.google.com/~r/HelpNetSecurity/~3/RcBhtH95NcE/secworld.php A number of APT actors believed to be of Chinese origin are using a commercial VPN service to anonymize and obfuscate their attack activity. Dubbed Terracotta, the VPN service is marketed mostly to... Tue, 4 Aug 2015 11:34:59 -0500 http://www.net-security.org/secworld.php?id=18708