March

Clever spear-phishing emails hit employees involved in SEC filings (Help Net Security)

2017-03-08 21:18

FireEye has flagged a sophisticated spear-phishing campaign hitting US-based businesses with emails purportedly coming from the US Securities and Exchange Commission (SEC). The emails look like...

#email #phishing #SEC #security #spearphishing

Senator Demands Answers About CloudPets Breach (Threatpost)

2017-03-08 20:41

A U.S. senator from Florida sent Spiral Toys CEO Mark Meyers a letter demanding answers about the recent CloudPets breach.

#breach #cloudpets #threatpost

21% of websites still use insecure SHA-1 certificates (Help Net Security)

2017-03-08 19:38

New research from Venafi Labs shows that 21 percent of the world’s websites are still using certificates signed with the vulnerable Secure Hash Algorithm, SHA-1. On February 23, 2017, Google...

#certificate #security

Confide Updates App After Critical Security Issues Are Raised (Threatpost)

2017-03-08 19:03

The makers of the popular messaging app Confide said Wednesday it has patched multiple security vulnerabilities that could have allowed hackers to intercept messages sent using its secure...

#critical #security #threatpost

Firefox 52 Expands Non-Secure HTTP Warnings, Enables SHA-1 Deprecation (Threatpost)

2017-03-08 17:36

The latest version of Firefox expands non-secure HTTP warnings, enables SHA-1 deprecation by default, and removes support for NPAPI.

#firefox #http #threatpost

Confide, a messaging app used by White House staff to leak, isn't very secure (ZDNet)

2017-03-08 17:10

#leak #whitehouse

Western Digital My Cloud NAS devices wide open to attackers (Help Net Security)

2017-03-08 16:51

Western Digital My Cloud NAS devices have again been found wanting in the security department, as two set of researchers have revealed a number of serious flaws in the devices’ firmware. WD My...

#cloud #digital #NAS #security #westerndigital