Collaborate Disseminate
Remember how an unpatched flaw in Apache Struts caused one of the biggest data breaches in history? It could happen again, if those using Apache Struts versions 2.3.x or lower fail to replace a file-upload component with a newer version. Apache release… Continue reading Equifax nemesis Apache Struts found vulnerable to 2-year old unpatched flaw; workaround available
Researchers at Netherlands-based Radboud University, which is active in almost all scientific fields, have discovered grave security flaws in several popular solid-state drives (SSD) that promise full disk encryption. In a nutshell, they can be cracked… Continue reading Researchers crack disk encryption in popular Samsung and Crucial SSDs
HSBC Bank, the seventh-largest banking and financial services organizations in the world and the largest in Europe, has been breached by hackers. The bank is now sending letters to an undisclosed number of customers notifying them that hackers have the… Continue reading Europe’s largest bank just got hacked
Technology players know all too well the implications of having malware moving around on USB drives. A single autorun Trojan or ransomware strain can inflict massive disruption and loss of revenue, as cybercrooks increasingly take aim at big busin… Continue reading Old Malware on USB Drives Still Pose Potent Threat to Industrial Facilities, Research Shows
Some experts believe Russian election interference is driving a wedge in American society, but according to one recent study, the rumors are motivating voters more than ever to show up to the polling stations. After innumerable warnings from intelligen… Continue reading Rumors of foreign election meddling may boost urge to vote in 40% of Americans
Networking giant Cisco is warning customers that attackers are actively exploiting a vulnerability in the company’s Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software. CVE-2018-15454 describes a vulnerability in the Ses… Continue reading Hackers actively exploiting vulnerabilities in Cisco security appliances
Less than a week before the United States 2018 midterm elections, concerns about meddling by Russia, China and Iran continue to mount. So much so that the U.S. government is prepared to sanction any entity involved in interference. On Wednesday, a seni… Continue reading U.S. intel prepared to sanction any company or individual interfering with the 2018 midterms
Healthcare lags behind most other industries in recognizing and reporting phishing attacks, new research shows. The resilience of healthcare providers to phishing emails is much lower than in other verticals, while its high turnover rate might hav… Continue reading High Churn Rate in Healthcare May Help Explain Sector’s Vulnerability to Phishing, Research Suggests
From China allegedly intercepting President Trump’s personal calls to Russian attempts at sowing discord among voters, US authorities are concerned the 2018 midterms face meddling similar to that of the 2016 Presidential elections. For its part, … Continue reading Many States Reject DHS Offer to Check Election Systems for Flaws, Saying They’re Safe from Hackers
China has the resources and ability to interfere with US elections but chooses not to, according to cybersecurity expert and author Adam Segal. Unlike Russia, which seems keen to heighten political divisions, China prefers to cultivate long-term relati… Continue reading Expert: ‘China has both the playbook and the capacity to interfere’ in US elections