Security News
Denmark's top foreign intelligence chief has been suspended for spying on Danish citizens illegally for up to six years after a whistleblower released a trove of documents to government regulators. In a press release yesterday, the independent regulator of the Danish security services said it had received information from a whistleblower in November that revealed the country's foreign intelligence service "Had withheld key and crucial information," and given "Incorrect information on matters relating to the collection of the service and disclosure of information."
ATM manufacturers Diebold Nixdorf and NCR have fixed a number of software vulnerabilities that allowed attackers to execute arbitrary code with or without SYSTEM privileges, and to make illegal cash withdrawals by committing deposit forgery and issueing valid commands to dispense currency. "Diebold Nixdorf ProCash 2100xe USB ATMs running Wincor Probase version 1.1.30 do not encrypt, authenticate, or verify the integrity of messages between the cash and check deposit module and the host computer. An attacker with physical access to internal ATM components can intercept and modify messages, such as the amount and value of currency being deposited, and send modified messages to the host computer," the CERT Coordination Center at Carnegie Mellon University explained the root of CVE-2020-9062.
Police in Germany have arrested 32 people and detained 11 after nationwide raids targeting users of an illegal online platform, prosecutors in Frankfurt and Bamberg said Wednesday. More than 1,400 police were involved in the raids in 15 of Germany's 16 states and in neighbouring Austria and Poland on Tuesday, said prosecutors in Bamberg, in the southern state of Bavaria.
Learn what a bot is, the spectrum of ways bots are used online, and how bots might be used in the next election cycle. Dan Patterson, CNET and CBS News Senior Producer, spoke with Patrick Sullivan, Akamai CTO, Security Strategy, about the programming and use cases of bots.
The operating system does allow software, such as the NHS tracing app, to run in a special mode so that it can announce itself to nearby iPhones and iPads via Bluetooth, and listen out for copies of itself on other devices, even when in the background. It is literally impossible to broadcast the UUID needed for the app to work without the screen on and the app in the foreground.
Its home state, Maryland, also knows how to swiftly propose mind-bogglingly bad legislation that would outlaw possession of ransomware and put researchers in jeopardy of prosecution. It's not supposed to keep researchers from responsibly researching or disclosing vulnerabilities, but like other, similar "Let's make malware more illegal" bills before it, SB 30's attempts to protect researchers could "Use a little more work," as pointed out by Ars Technica's Sean Gallagher.
A data silo we didn't know existed until a certain IT admin went rogue Analysis The FBI is likely breaking the Fourth Amendment, which protects against unreasonable searches, when it investigates...
Spyware used unlawfully against 1,400 targets, including human-rights bods, it is claimed Facebook and its WhatsApp subsidiary on Tuesday sued NSO Group, and affiliated corporate entity Q Cyber...
A citizen of Singapore has been charged in the United States for a large-scale cryptocurrency mining operation performed using stolen identity and credit card information. read more