Security News > 2020 > January
GCHQ and its cyber-defence offshoot NCSC have both denied that they are investigating a cyber-attack on the London Stock Exchange, contrary to reports. "The incident," the newspaper claimed, "Which delayed the market open by more than an hour and a half and was the worst outage in eight years, immediately triggered government cyber alert systems, according to the people familiar with the matter."
A widely known vulnerability affecting an enterprise VPN product from Pulse Secure has been exploited by cybercriminals to deliver a piece of ransomware, a researcher has warned. They can use the obtained credentials in combination with a remote command injection vulnerability in Pulse Secure products, allowing them to gain access to private VPN networks.
UPDATE. A U.S. government website was vandalized late Saturday by hackers who posted images of a bloodied President Donald Trump being punched in the face and pro-Iran messages. The hackers, who struck as tensions between the U.S. and Iran heat up, claimed to be "Iran cyber security group hackers," however, there's no evidence to confirm any attribution to Iran at the moment, according to the Department of Homeland Security.
Launching online attacks remains a potent tool in the Iranian government's geopolitical playbook. U.S. officials have warned U.S. businesses to expect an escalation in online attacks launched by Iranian-allied hackers.
Billions of internet-connected devices and the introduction of 5G are transforming the way cities and municipalities care for their citizens. Join Dave Masson, Director of Enterprise Cyber Security at Darktrace and Craig Brown, Chief Innovation Officer of the City of Westland, as they explain how artificial intelligence can detect and respond to cyber-threats targeting the public sector.
Launching online attacks remains a potent tool in the Iranian government's geopolitical playbook. U.S. officials have warned U.S. businesses to expect an escalation in online attacks launched by Iranian-allied hackers.
The U.S. Department of Homeland Security has issued warnings about the possibility of cyberattacks launched by Iran in response to the United States killing Qassem Soleimani, a top Iranian military commander. While many - including U.S. officials - have criticized the decision to kill the leader of the Iranian Revolutionary Guards' Quds Force unit, Washington justified its actions by claiming that Soleimani had been planning an imminent attack on U.S. interests in the Middle East.
Here's a physical-world example of why master keys are a bad idea. It's a video of two postal thieves using a master key to open apartment building mailboxes.
Ambarella and ON Semiconductor announced a joint 3D sensing platform for the development of intelligent access control systems and smart video security products such as smart video doorbells and door locks. "Lumentum has worked to enable diverse applications of our VCSEL technology into next-generation 3D sensing products," said Dr. Andre Wong, vice president, product line management, 3D Sensing at Lumentum.
Cisco has fixed 12 vulnerabilities in Cisco Data Center Network Manager, a platform for managing Cisco switches and fabric extenders that run NX-OS, and has warned about a spike in exploitation attempts of an old flaw affecting Cisco Adaptive Security Appliance and Firepower Appliance software. "The vulnerabilities are not dependent on one another; exploitation of one of the vulnerabilities is not required to exploit another vulnerability," Cisco shared.