Security News > 2020

The U.S. Army is following the lead of the Navy in banning soldiers from using TikTok, a Chinese-made video sharing and social media app, on their government-issued phones, according to the news site Military.com. In guidance issued Dec. 16, the Defense Department, in a "Cyber Awareness Message," identified TikTok as having "Potential security risks associated with its use" and requested that military personnel remove the app from government-issued phones, according to Military.com.

Their lack of voice is then compounded by the fact that most boards and C suites assume their IT and security teams have their cybersecurity covered. With the increasing incidence of cyber breaches and cyber regulations, this assumption is going to put the board and c suite in hot water.

ProtonMail has released the beta version of ProtonCalendar, its fully encrypted calendar application that aims to help users both keep track of their plans and keep their data private. ProtonCalendar is an early beta release, but "Substantial developments" are planned for the project until its public release, including the ability to share the calendar with other ProtonMail users, or the option to send event invites to anyone, even non-ProtonMail users.

Proof-of-concept exploits were recently made public by researchers for remote command execution and information disclosure vulnerabilities affecting many D-Link routers. Miguel Méndez Zúñiga and Pablo Pollanco of Telefónica Chile recently disclosed the details of the vulnerabilities in a couple of blog posts published on Medium.

Two high-severity vulnerabilities recently addressed in the Big Monitoring Fabric application could allow an attacker to remotely access affected systems. Developed by Big Switch Networks, Big Monitoring Fabric is a hybrid cloud visibility and security solution designed to provide customers with the ability to monitor physical, virtual and cloud environments, all through a single dashboard.

Landry's, a popular restaurant chain in the United States, has announced a malware attack on its point of sale systems that allowed cybercriminals to steal customers' payment card information. According to the breach notification published this week, the malware was designed to search for and likely steal sensitive customer credit card data, including credit card numbers, expiration dates, verification codes and, in some cases, cardholder names.

Brazil on Monday fined Facebook $1.65 million for improperly sharing users' data in a case linked to the global Cambridge Analytica scandal. Facebook engaged in an "Abusive practice" by allowing data from 443,000 users in Brazil to be unduly available to developers of the application "This is Your Digital Life," according to the Ministry of Justice.