Security News

Toshiba Addressing Vulnerabilities in its Retail Software (Threatpost)
2015-06-09 14:40

Toshiba has eliminated a hard-coded cryptographic key in its CHEC software, but is dealing with an information-disclosure bug in its 4690 operating system.

OPM Warned About Governance Weaknesses, System Vulnerabilities Prior to Hack (Threatpost)
2015-06-08 19:54

The Office of Personnel Management was warned as recently as November of numerous system vulnerabilities and governance weaknesses.

Bug Bounties in Crosshairs of Proposed US Wassenaar Rules (Threatpost)
2015-06-08 17:32

Bug bounties and rewards programs provide researchers with a measure of income, and if the proposed Wassenaar rules are implemented in the U.S., that initiatives could be adversely impacted.

Many Drug Pumps Open to Variety of Security Flaws (Threatpost)
2015-06-08 15:41

In April, a security researcher disclosed a litany of severe vulnerabilities in the PCA3 drug-infusion pump manufactured by a company named Hospira. He went so far as to call the pump “the least...

Researcher Finds CSRF Bug in Wind Turbine Software (Threatpost)
2015-06-08 14:45

Wind turbines have been popping up across the United States in great numbers of late, and many of them are connected to the Internet. That, of course, means that these turbines are going to be...

OPM Hack May Have Exposed Security Clearance Data (Threatpost)
2015-06-05 19:15

The OPM hack may indeed extend to security clearance data, in addition to personal information belonging to four million federal workers.

New Snowden Documents Outline Memos on Expanded Spying of Hackers (Threatpost)
2015-06-05 19:11

A new set of memos uncovered by Edward Snowden and shared with both the New York Times and ProPublica this week reveal how the Obama administration upped its search for hackers and expanded its...

Threatpost News Wrap, June 5, 2015 (Threatpost)
2015-06-05 15:33

Dennis Fisher and Mike Mimoso discuss Facebook’s moves toward encrypted notifications and SHA-2 usage, the audit of GitHub SSH keys and the awesome OpenSesame garage door hack from Samy Kamkar.

Rights Groups Call for More Change Two Years After Snowden Revelations Began (Threatpost)
2015-06-05 15:32

It’s been two years now since the first stories about NSA surveillance capabilities began to appear, and the environment has shifted dramatically in that time. Awareness of and resistance to mass...

Phishers Going the Long Way Round to Avoid Filtering Systems (Threatpost)
2015-06-05 11:21

Any human with an email address likely has gotten thousands of spam messages that look like delivery notifications, invoices, or other alleged communications from shipping companies such as UPS or...