January

Fitbit, warranty fraud, and hijacked accounts (Help Net Security)

2016-01-07 14:36

Online account hijackings usually end up with the account owners being the main victims, but there are fraudsters out there who are more interested in ripping off companies than end users. Case in ...

#fitbit #fraud #hijacked #security

Mozilla Re-Enables Support for SHA-1 in Firefox (SecurityWeek)

2016-01-07 14:10

#firefox #mozilla #securityweek

Report: Clinton emails among 'incomplete' record searches (Yahoo Security)

2016-01-07 13:55

#email #report #security #yahoo

WordPress 4.4.1 Patches XSS Vulnerability (SecurityWeek)

2016-01-07 13:10

#wordpress #securityweek #XSS #vulnerability

Straight Talk about Terrorism (Schneier on Security)

2016-01-07 13:00

Nice essay that lists ten "truths" about terrorism: We can't keep the bad guys out. Besides, the threat is already inside. More surveillance won't get rid of terrorism, either. Defeating the...

#security #terrorism

Social media phisherfolk cast their lines for Fortune 500 suits (The Register)

2016-01-07 12:40

#socialmedia

Banking Trojans are growing smarter. But will banks keep up? (ZDNet)

2016-01-07 12:25

#bank #banking #trojan

Bugs in Drupal's update process could lead to backdoored updates, site compromise (Help Net Security)

2016-01-07 11:06

Drupal's update process is deeply flawed, says IOActive researcher Fernando Arnaboldi. He recently discovered three separate flaws in it, the worst of which could be exploited by attackers to swap ...

#compromise #drupal #security

Unpatched Drupal Flaws Expose Sites to Attacks (SecurityWeek)

2016-01-07 10:09

#attack #drupal #securityweek

You can't stop what you can't see: Mitigating third-party vendor risk (Help Net Security)

2016-01-07 09:43

Third-party vendors are a liability for host organizations, often unwittingly creating backdoors and exposing sensitive data. In fact, according to the Ponemon Institute “Aftermath of a Data Breach St...

#security