Security News > 2020 > January
Cisco on Thursday informed customers that it has released software updates for its Data Center Network Manager product to address several critical and high-severity vulnerabilities. All of the serious vulnerabilities patched in DCNM were reported to Cisco by researcher Steven Seeley of Source Incite.
Multiple critical vulnerabilities in Ruckus Wi-Fi routers used throughout the world were disclosed at the 36th Chaos Communication Congress in Leipzig, Germany, held from December 27-30, 2019. Although the devices examined were from the Ruckus Unleashed stable, Zror told SecurityWeek, "I believe the same issues will affect the Ruckus regular routers and other Ruckus devices. Without pre-authentication," he continued, "I can run my own code on those devices. The implication is that I can upload my own malware into the router, and manipulate all the router activity, as I wish. From there I can access any other network, including the corporate network, that may be connected or may also use Ruckus devices."
Learn how to gain more security in your git repository with the help of the git-secret tool. If you use Git for much of your development needs, you should know there's a dirty little secret to be found.
Although Landry's now uses end-to-end encryption within its payment system and its point-of-sale devices, it appears that some customers' payment card data was exposed as a result of the malware when waitstaff at some locations mistakenly swiped cards on terminals used to enter kitchen and bar orders, according to the company. "The payment cards potentially involved in this incident are the cards mistakenly swiped on the order-entry systems."
A small Alaskan airline has suffered a curiously specific "Cyber attack" that mostly affected its De Havilland Dash 8 airliners. RavnAir Group declared on 21 December that it had "Experienced a malicious cyber attack on our company's IT network" the day before, causing it to cancel all of its flights operated with Dash 8s on its RavnAir Alaska airline.
Even better, U.S. legislation is coming at a time when service providers have already started to take more aggressive steps to prevent robocalls from getting through to end users. Neither service providers nor legislation will be able to prevent these calls altogether.
E-commerce sites are trying to keep up with sophisticated skimming schemes, but chances are your credit card information will still be compromised. A security expert offers advice.
TikTok is one of the fastest growing social apps, with more than 1.5 billion downloads. Now the US Army has banned soldiers from downloading the app on government-issued phones.
TikTok is one of the fastest growing social apps, with more than 1.5 billion downloads. Now the US Army has banned soldiers from downloading the app on government-issued phones.
A landmark privacy rights bill took effect Jan. 1, 2020 in California and will have broad implications for U.S. consumers and businesses. The California Consumer Privacy Act mandates strict requirements for companies to notify users about how their user data will be used and monetized along with giving them straightforward tools for opting out.