Collaborate Disseminate
News via Jeff Baumgartner, writing at Light Reading, of the apparent remediation of a deep (and wide) hole in Comcast systems; certainly today’s MustRead!
“One of the vulnerabilities uncovered by security researcher Ryan Stevenson centered on an in-h… Continue reading Comcast Hole Of Doom, The Plugging
via the comic superiority of Robert M. Lee and the superb illustration work of Jeff Hass at Little Bobby Comics
Permalink
The post Robert M. Lee & Jeff Hass’s ‘Little Bobby – Preparatory Action’ appeared first on Security B… Continue reading Robert M. Lee & Jeff Hass’s ‘Little Bobby – Preparatory Action’
Illustration from the Kaspersky Labs Document.
Dan Goodin, writing at ArsTechnica, provides us with the surreptitious history of the malice-filled code-miscreant APT monikered Slingshot; of which, is apparently an alternatative mwthod of describing t… Continue reading Six Years The Lurker
Reportedly, Harry Sintonen, empolyed at F-Secure as a security researcher, discovered during the course of his labors – a flaw in Intel’s Active Management Technology (AMT) firmware. Ooops.
As is typical of Intel Corporation (Nasdaq: INTC) the firm is… Continue reading Another Flawed Bit of Intel Corp Nonsense, The Active Management Technology Vector
Via Catalin Cimpanu, writing at Bleeping Computer, comes one of today’s most interesting (and fairly innocuous) flaws, targeting the speaker products of both Sonos and Bose Corporation. Apparently, the flaws are of the remote exploit variety, of which… Continue reading Smart Speaker Flaws, The Pranking
After seven supercomputers hacked each other on stage at a prominent cybersecurity conference in Las Vegas in August 2016, a Chinese corporation approached U.S. researchers responsible for developing the cutting-edge technology in hopes of acquiring it. The previously unreported but concentrated interest by Huawei Technologies, a company once at the center of a federal investigation and which has come under scrutiny by U.S. spy agencies, came in the form of phone calls and emails sent to select individuals involved in engineering machines that competed in the 2016 DARPA Cyber Grand Challenge. ForAllSecure, the company whose team won the challenge, was among those contacted by a representative claiming to be from Huawei. ForAllSecure ignored the advances, according to company CEO David Brumley. The decision was partially driven by a common understanding that Huawei is closely connected to the Chinese government and as such, a relationship with Huawei may negatively impact ForAllSecure’s ability to […]
The post Huawei tried to acquire technology from the winners of the Cyber Grand Challenge appeared first on Cyberscoop.
Continue reading Huawei tried to acquire technology from the winners of the Cyber Grand Challenge
At the Security Analyst Summit, Mark Dowd described how memory corruption mitigations are successfully driving up exploit development costs. Continue reading Memory Corruption Mitigations Doing Their Job
Kaspersky Lab today at Black Hat USA 2016 announced the launch of a public bug bounty, one of the few offered by a software vendor in the computer security industry. Continue reading Kaspersky Lab Launches Bug Bounty Program
Uber announced a public bug bounty program that will pay up to $10,000 for critical bugs, and which also includes a loyalty program that pays bonuses for five or more finds. Continue reading Uber Bug Bounty Rewards Loyalty, Promises Transparency