Security News

Crucial steps toward building such an internet are already underway in the Chicago region, which has become one of the leading global hubs for quantum research. One of the hallmarks of quantum transmissions is that they are exceedingly difficult to eavesdrop on as information passes between locations.

US officials and scientists have begun laying the groundwork for a more secure "Virtually unhackable" internet based on quantum computing technology. At a presentation Thursday, Department of Energy officials issued a report that lays out a blueprint strategy for the development of a national quantum internet, using laws of quantum mechanics to transmit information more securely than on existing networks.

Isolation technology allows companies to keep employee browsers siloed in the cloud. To deal with this deluge of new threats, dozens of the world's biggest organizations are turning to isolation technologies and techniques to protect employees from the kind of common mistakes cybercriminals are increasingly taking advantage of.

Rapid7's research found that the security of the internet overall is improving. Vulnerabilities and exposures still plague the modern internet even with the increasing adoption of more secure alternatives to insecure protocols, like Secure Shell and DNS-over-TLS. "We were surprised to see that recent incidents appear to have had no obvious effect on the fundamental nature of the internet, however it is possible that we have yet to see the full impact," said Tod Beardsley, Director of Research at Rapid7.

It all came to light this week after Comparitech's Bob Diachenko spotted 894GB of records in an unsecured Elasticsearch cluster that belonged to UFO VPN. The silo contained streams of log entries as netizens connected to UFO's service: this information included what appeared to be account passwords in plain text, VPN session secrets and tokens, IP addresses of users' devices and the VPN servers they connected to, connection timestamps, location information, device characteristics and OS versions, and web domains from which ads were injected into the browsers of UFO's free-tier users. A few days later, on July 5, the data silo was separately discovered by Noam Rotem's team at VPNmentor, and it became clear the security blunder went well beyond UFO. It appears seven Hong-Kong-based VPN providers - UFO VPN, FAST VPN, Free VPN, Super VPN, Flash VPN, Secure VPN, and Rabbit VPN - all share a common entity, which provides a white-labelled VPN service.

Someone has been scanning the internet in search of SAP systems affected by the recently disclosed vulnerability dubbed RECON. The scanning activity started just as a researcher released a proof-of-concept exploit. Onapsis, a company specializing in the protection of business-critical applications, revealed on Tuesday that many SAP products that use the NetWeaver AS Java technology stack could be exposed to remote attacks due to a critical vulnerability tracked as CVE-2020-6287 and dubbed RECON. A remote and unauthenticated attacker who has access to the targeted system can exploit CVE-2020-6287 to create a new SAP admin user, allowing them to gain full control of the system.

Network administrators are urged to patch their F5 BIG-IP application delivery controllers following the disclosure of a pair of critical remote takeover bugs. The flaws in question, CVE-2020-5902 and CVE-2020-5903, lie within in a configuration tool known as the Traffic Management User Interface.

D-Link announced their new 5G solutions that create a world of wireless possibilities whether at home, at the office, or on the go. 5G networks elevate mobile internet connectivity and enhance IoT technology and devices to a level that has never been experienced before.

Avaya Holdings announced that its Avaya Collaboration Unit, a simple to use, all-in-one video meeting solution, has received a 2020 INTERNET TELEPHONY Product of the Year Award. As the global workforce adapts to new ways of collaborating, meeting and engaging, The Avaya Collaboration Unit represents a breakthrough stand-alone solution that turns any space - including a home office or workplace huddle rooms - into a cloud-enabled collaboration room.

Interesting story of how the police can identify someone by following the evidence chain from website to website. According to filings in Blumenthal's case, FBI agents had little more to go on when they started their investigation than the news helicopter footage of the woman setting the police car ablaze as it was broadcast live May 30.