The Era Of Data-Jacking Is Here. Are You Ready?
As data in the cloud becomes more valuable, the cost of weak security will soon be higher than many organizations can bear. Here’s why. The past few months have seen a deluge of attacks on database deployments in production environments. Victor Gevers, an ethical hacker and founder of GDI Foundation, broke news about attacks on…
Android for cars: Secure connection?
Fast-forward 17 years and there are apps for everything — even your car. Chances are, if an app might make part of your life easier, someone will develop it and plenty of people will use it. Over the past few years, the concept of the connected car has continued to evolve — and become reality….
IDG Contributor Network: Who makes better cybersecurity decisions, men or women?
Unfortunately, it’s very common to assume that when women are stressed they are more emotional or that they rely more heavily on intuition or hunches. (If you agree with this notion, spoiler alert – you are wrong…. LOL. Then you’re probably going to rely more heavily on men, not women, in high pressure, high risk…
What happens if your thermostat is hacked? Researchers name the top 7 security threats
What happens if a bad actor turns off your heat in the middle of winter, then demands $1,000 to turn it back on? Or even holds a small city’s power for ransom? Those kinds of attacks were among the top threats that security experts worried about at the RSA security conference this week. While consumers…
Bruce Schneier: Public-service technologists are needed to tame the IoT
The internet of things needs to be regulated and soon before it becomes even more of a tool to facilitate cyberattacks, and that means coming up with civic-minded technologists to help formulate government policies, security expert Bruce Schneier told an RSA Conference 2017 audience. The problem is governments lack the technological expertise to understand the…
US legislation revived to curb warrantless geolocation tracking
U.S. legislators have reintroduced bills that would place curbs on warrantless access by the government to electronically generated geolocation information of Americans, including on the use of cell-site simulators that can capture cellphone data. Bicameral legislation introduced Wednesday, called the Geolocation Privacy and Surveillance Act, aims to create clear rules for when law enforcement agencies…
Yahoo Notifies Users of Sophisticated Breach Methods
Yahoo said Wednesday it was notifying some users that hackers may have been able to use a maneuver to break into their accounts without stealing passwords. The latest notifications were in response to the record breach disclosed late last year affecting an estimated one billion users — which involved forging of “cookies” or files used…
IDG Contributor Network: Deletion is not destruction: ensuring the permanent removal of data
Some words of warning to all armchair data security “experts:” The Delete button is not a substitute for destruction; it no more eliminates data than a pink eraser removes magic marker, or a magic wand has the power to do anything more than — to ever be anything more than — a cheap prop. And…
Doubts abound over US action on cybersecurity
How should the U.S. respond to cyber attacks? That’s been a major question at this year’s RSA security conference, following Russia’s suspected attempt to influence last year’s election. Clearly, the government should be doing more on cybersecurity, said U.S. lawmakers and officials at the show, but they admit that politics and policy conflicts have hampered the…
Over a Dozen Code Execution Flaws Patched in Flash Player
Adobe on Tuesday released security updates that address two dozen vulnerabilities in Flash Player, Digital Editions and the Campaigns marketing tool, but none of the flaws have been exploited in the wild. Flash Player 24.0.0.221 patches 13 critical vulnerabilities that can be exploited for arbitrary code execution, including type confusion, integer overflow, use-after-free, heap buffer…