Security News > 2020
Russia wants to watch Americans "Tear ourselves apart" as the United States heads toward elections, an FBI official warned Monday. Porter spoke at an election security conference on Capitol Hill just days after conflicting accounts emerged of a closed-door briefing intelligence officials had given to House lawmakers on threats from Russia and other nations in the 2020 election.
The number of stalkerware attacks on mobile devices increased 50 percent over the last year, showing an upward and continued trend in the emerging threat, researchers said. "Attacks involving the use of mobile stalkerware became more frequent, the purpose being to monitor and collect information about the victim," Victor Chebyshev, a research development team lead at Kaspersky, wrote in a post on the company's SecureList blog outlining trends in mobile malware in 2019.At the same time, stalkerware-a threat that appeared on security researchers' radar in only the last couple of years-also began to show signs of " keeping pace with its malware cousins" in terms of sophistication, he said.
The leak came from an S3 bucket that was left unsecured. The unsecured S3 bucket appeared to be powering Rotherwood's internal system, a CRM-style software suite that looks to be used to capture and store essential data about staff and patients alike.
The leak came from an S3 bucket that was left unsecured. The unsecured S3 bucket appeared to be powering Rotherwood's internal system, a CRM-style software suite that looks to be used to capture and store essential data about staff and patients alike.
The Reading Municipal Light Department, an electric utility in Massachusetts, informed customers on Monday that its systems were targeted last week in a ransomware attack. The company says the ransomware attack had no impact on the delivery of electricity, and it has found no evidence that customer financial data, which is stored on third-party systems, has been compromised as a result of the incident.
A National Security Agency system that analyzed logs of Americans' domestic phone calls and text messages cost $100 million from 2015 to 2019, but yielded only a single significant investigation, according to a newly declassified study. Only twice during that four-year period did the program generate unique information that the F.B.I. did not already possess, said the study, which was produced by the Privacy and Civil Liberties Oversight Board and briefed to Congress on Tuesday.
An update released this week for the OpenSMTPD mail server addresses an out-of-bounds read vulnerability that could lead to arbitrary command execution. The issue resides in OpenSMTPD's client-side code, which delivers mail to remote SMTP servers, and exploitation is possible either client-side, or server-side, explains security firm Qualys, which discovered the vulnerability.
Last week, Politico reported that earlier this month, the EC took to internal messaging boards to recommend moving to the alternative end-to-end encrypted messaging app, which it said "Has been selected as the recommended application for public instant messaging." Unlike WhatsApp, Signal is operated by a non-profit foundation - one that WhatsApp co-founder Brian Acton put $50 million into after he ditched Facebook - and is applauded for putting security above all else.
Organizations around the world are observing this Shadow IoT phenomenon, where employees are bringing unauthorized devices into the enterprise. Key findings Unauthorized IoT devices on the rise: The top unauthorized IoT devices include digital home assistants, TV set-top boxes, IP cameras, smart home devices, smart TVs, smart watches, and even automotive multimedia systems.
A suspected meth dealer is off the hook for at least one of the charges he's facing: that he "Stole" the GPS device that police stuck on his car to track his movements. So police applied for warrants to search both Heuring's home and his father's barn, where they suspected that Heuring had put the GPS device.