Viry a Červi

Threat actors leveraging social media for hacks and misinformation are growing more coordinated.

How about that antivirus now, huh?

DEF CON is cancelled. For real this time. DEF CON China, that is.…

The Amazon-owned video doorbell uses third-party trackers to serve up rich data to marketers without meaningfully notifying users.

Here are 5 things you can start doing today for your own and for everyone else's online good!

Tohle chodilo SMSkou a tvářilo se jako zpráva z Lidlu o údajné výhře. Ve skutečnosti šlo o pokus útočníků, jak od obětí získat citlivé informace.

Proti těmto útokům je nejlepší používat zdravý rozum. Stačí se zamyslet a položit si pár otázek a nebo se prostě zastavit už u pofidérní SMS zprávy. Basia, Miklos a Vy asi nejsou typická česká jména Nicméně těch pár otázek může vypadat například takhle:

• Účastnil jsem se vůbec nějaké soutěže o ceny?
• Jak získali moje telefonní číslo?
• Když mají moje telefonní číslo, nemají náhodou i moje osobní údaje? – Proč bych je měl znova vyplňovat?
• Pokud bych opravdu vyhrál jednu z hodnotných cen, opravdu by mě oslovili SMS zprávou? Nestojí to za telefonní hovor s gratulací?
• …

Více o těchto podvodech nově i na kurzech IT bezpečnosti! Pro jednotlivce i firmy.

The post Hlavní cena iPhone 11, neberte to! appeared first on VIRY.CZ.

Department of Fun straps on a holster, strides into the wild west of online gadget users

The British government has finally woken up to the relatively lax security of IoT devices, and is lurching forward with legislation to make gadgets connected to the web more secure.…

While there are dozens of metrics available to determine success, there are two key cybersecurity performance indicators every organization should monitor.

Now patched, but yikes. For our next meeting, let's dial in from a phone box

Video-conferencing outfit Zoom had a major vulnerability in its URL scheme that miscreants could exploit to eavesdrop on private meetings.…

New research from IOActive has found that “blindly” trusting the encryption of the widely adopted device protocol can lead to DDoS, sending of false data and other cyber attacks.

At VB2019 in London, Fortinet researcher Axelle Apvrille presented a paper co-written with Aamir Lakhani that looked at the threats faced by those who use medical IoT devices to help manage their diabetes. Today we publish the researchers' paper, as well as the recording of Axelle's presentation.

Read more

The government has flip-flopped, most recently proposing rules that would transfer regulation out of the hands of the State Department.

Zoom has patched a flaw that could have allowed attackers to guess a meeting ID and enter a meeting.

A potential class action says Clearview AI is breaking biometrics privacy law by ransacking social media so police can match photos with IDs.

Cisco has patched bugs in Webex and in Firepower Management Centre, the device that controls its security products.

Mozilla’s policy is unambiguous - add-ons must be self-contained and not load remote code, which opens up the user to all sorts of risks.

Challenge yourself before the enemy strikes in the real world

Sponsored  Attendees of SANS’ world-class courses consistently rate the hands-on exercises as the most valuable part of the experience. With NetWars, however, SANS has raised the ante with a set of cyber-tournaments that let participants work through a range of challenging levels and master the skills employed by information security professionals.…

We'll laugh at today's mandated holes in the same way we laugh at those from 25 years ago

Enigma  More than a quarter century after its introduction, the failed rollout of hardware deliberately backdoored by the NSA is still having an impact on the modern encryption debate.…

After discovering a wide pattern of potentially malicious behavior in browser extensions, the two search giants are cracking down.

Meanwhile, probe reveals how Avast's 'anonymized' user data can be, er, deanonymized

On Saturday, Google temporarily disabled the ability to publish paid Chrome apps, extensions, and themes in the Chrome Web Store due to a surge in fraud.…

Researchers wonder if a recent "amateur spam" campaign by the once-prevalant malware distribution botnet is a sign of trojans looking to other infection paths.