Cyber Security News

We have a collection of recent cyber security news articles from around the planet. We have attempted to create a one stop place which you can use by aggregating feeds from what we consider the top sources of cyber security related news. Browse through these articles and  you can quickly see how prevalent the cyber security problem has become.

 

  • Keybase takes on Slack with new end-to-end encrypted team messaging tool
    Keybase has unveiled a Slack-style team messaging service that promises to protect private communications with end-to-end encryption.The company launched in 2015 with the aim of making encryption technology more accessible to consumers. Its latest service, Keybase Teams, has a look similar to Slack with features such as chat rooms and ... Read more
    Source: Computerworld Cybercrime and HackingPublished on 2017-09-21
  • Experian Site Can Give Anyone Your Credit Freeze PIN
    An alert reader recently pointed my attention to a free online service offered big-three credit bureau Experian that allows anyone to request the personal identification number (PIN) needed to unlock a consumer credit file that was previously frozen at Experian. Experian’s page for retrieving someone’s credit freeze PIN requires little more ... Read more
    Source: Krebs on SecurityPublished on 2017-09-21
  • IDG Contributor Network: Microsoft Security stopped being an oxymoron with the acquisition of Hexadite
    One of the most frustrating things to watch during the early years of Microsoft (Disclosure: Microsoft is a client of the author) was their lack of interest in security.  It was almost as if, when anyone there heard the term, they’d cover up their ears and say “la, la, la, ... Read more
    Source: Computerworld Cybercrime and HackingPublished on 2017-09-21
  • Equifax Breach: Setting the Record Straight
    Bloomberg published a story this week citing three unnamed sources who told the publication that Equifax experienced a breach earlier this year which predated the intrusion that the big-three credit bureau announced on Sept. 7. To be clear, this earlier breach at Equifax is not a new finding and has been a matter ... Read more
    Source: Krebs on SecurityPublished on 2017-09-20
  • Tower of Babel Outlook 2007 security patch KB 4011086 yanked, replaced
    With one month left until Outlook 2007 hits end of life, Microsoft released a fix yesterday for the September security patch’s polyglot ways. You may recall KB 4011086 as the Outlook 2007 patch that displays Swedish menus in the Hungarian language version, Portuguese in Italian, Swedish in Slovenian, Spanish in ... Read more
    Source: Computerworld Cybercrime and HackingPublished on 2017-09-20
  • Outlook security patches intentionally break custom forms
    When Microsoft released its Outlook security patches on Sept. 12, several readers complained that their custom form printing capabilities disappeared. Ends up the bug that broke VBScript printing isn’t a bug at all.Microsoft announced over the weekend that it intentionally disabled scripts in custom forms, and those with printable custom ... Read more
    Source: Computerworld Cybercrime and HackingPublished on 2017-09-19
  • Heads up: Malware found in Piriform’s CCleaner installer
    If you installed the free version of CCleaner after Aug. 15, a couple of nasty programs came along for the ride. Talos Intelligence, a division of Cisco, just published a damning account of malware that it found hiding in the installer for CCleaner 5.33, the version that was released on ... Read more
    Source: Computerworld Cybercrime and HackingPublished on 2017-09-18
  • Apple’s clever strategy for forcing partners to use Face ID
    When Apple announced the iPhone X last week, the most sophisticated (and widely predicted) feature revealed was the facial recognition approach, called Face ID. But by choosing to go all or nothing with the iPhone X — it's only Face ID, with no support for Touch ID — the big ... Read more
    Source: Computerworld Cybercrime and HackingPublished on 2017-09-18
  • Google squeezes Symantec until it certs
    Google has finalized a schedule that, over the next 12 months, will send companies scrambling to replace the digital certificates that secure their websites or risk being viewed with suspicion by users running Chrome, the world's most popular browser."Companies are staring down the barrel of a boat load of work," ... Read more
    Source: Computerworld Cybercrime and HackingPublished on 2017-09-15
  • Outlook 2010 Tower of Babel patch KB 4011089 breaks VBScript print
    If you’ve installed KB 4011089, this month’s Outlook 2010 security patch, and you can no longer print custom forms, you aren’t alone. I’m seeing reports from several sources that installing the patch destroys printing functionality in custom Outlook 2010 forms.It isn’t clear at this early stage if other versions of ... Read more
    Source: Computerworld Cybercrime and HackingPublished on 2017-09-15
  • Equifax Hackers Stole 200k Credit Card Accounts in One Fell Swoop
    Visa and MasterCard are sending confidential alerts to financial institutions across the United States this week, warning them about more than 200,000 credit cards that were stolen in the epic data breach announced last week at big-three credit bureau Equifax. At first glance, the private notices obtained by KrebsOnSecurity appear to suggest ... Read more
    Source: Krebs on SecurityPublished on 2017-09-14
  • If you can’t avoid Word’s ‘Enable Editing,’ patch Windows right now
    In the normal course of events, it takes a week (or two or three) for the bugs in each month’s Windows and Office security patches to shake out. This month’s patches are no exception. There are lots of reports of problems with IE and Edge, for example, and many more ... Read more
    Source: Computerworld Cybercrime and HackingPublished on 2017-09-14
  • Kids! Do NOT try this at work!
    This IT consultant pilot fish works at a real estate company once a week, performing SAN management and doing routine updates and security patching on the Windows PCs."I was using my Linux-based laptop to peruse the quarantine area of the antivirus application, checking out the many X-rated and infected email ... Read more
    Source: Computerworld Cybercrime and HackingPublished on 2017-09-14
  • IDG Contributor Network: September Patch Tuesday brings critical updates for Window, Edge and .NET
    September brings a relatively large patch profile for Microsoft with 76 reported vulnerabilities, three public disclosures (thank you, Google) and unfortunately one zero day exploit. You used to be worried about browsers and Flash, now we have a publicly exploited vulnerability for augmented reality (AR) with a fix for Microsoft’s ... Read more
    Source: Computerworld Cybercrime and HackingPublished on 2017-09-13
  • Adobe, Microsoft Plug Critical Security Holes
    Adobe and Microsoft both on Tuesday released patches to plug critical security vulnerabilities in their products. Microsoft’s patch bundles fix close to 80 separate security problems in various versions of its Windows operating system and related software — including two vulnerabilities that already are being exploited in active attacks. Adobe’s ... Read more
    Source: Krebs on SecurityPublished on 2017-09-13
  • iPhone X & Face ID: Everything you need to know
    The iPhone X replaces the Home button and Touch ID with gesture controls and Face ID, sophisticated facial recognition software that learns to recognize your face and only lets you use your device once it has confirmed it is you. It is a new technology, here’s what we know about ... Read more
    Source: Computerworld Cybercrime and HackingPublished on 2017-09-13
  • Bloated Patch Tuesday brings fix for nasty Word/RTF/Net vulnerability
    Microsoft on Tuesday released 259 individual security patches, covering 82 security holes (counting by CVE number). You may feel rushed to apply those patches, particularly when you hear about a really bad vulnerability involving Word, RTF, and the .NET Framework. The facts are a little less alarmist.Here's a quick overview. ... Read more
    Source: Computerworld Cybercrime and HackingPublished on 2017-09-13
  • Windows Hello for Business: Next-gen authentication for Windows shops
    Authentication: the act of proving one’s identity to the satisfaction of some central authority. To most, this process means typing in a username and a password. It’s been this way for years and years.To read this article in full or to leave a comment, please click here(Insider Story) ... Read more
    Source: Computerworld Cybercrime and HackingPublished on 2017-09-13
  • Ayuda! (Help!) Equifax Has My Data!
    Equifax last week disclosed a historic breach involving Social Security numbers and other sensitive data on as many as 143 million Americans. The company said the breach also impacted an undisclosed number of people in Canada and the United Kingdom. But the official list of victim countries may not yet ... Read more
    Source: Krebs on SecurityPublished on 2017-09-12
  • The Equifax Breach: What You Should Know
    It remains unclear whether those responsible for stealing Social Security numbers and other data on as many as 143 million Americans from big-three credit bureau Equifax intend to sell this data to identity thieves. But if ever there was a reminder that you — the consumer — are ultimately responsible ... Read more
    Source: Krebs on SecurityPublished on 2017-09-11
  • Equifax Breach Response Turns Dumpster Fire
    I cannot recall a previous data breach in which the breached company’s public outreach and response has been so haphazard and ill-conceived as the one coming right now from big-three credit bureau Equifax, which rather clumsily announced Thursday that an intrusion jeopardized Social security numbers and other information on 143 ... Read more
    Source: Krebs on SecurityPublished on 2017-09-08
  • 3 important things to know about the Equifax data breach
    When Gartner ranks a data breach as a 10 on a scale of 1-10, you know there is cause for alarm. A recent compromise at Equifax, a consumer credit reporting agency, resulted in 143 million records being stolen. Of those, at least 209,000 involved stealing a credit card number and ... Read more
    Source: Computerworld Cybercrime and HackingPublished on 2017-09-08
  • Equifax security breach debacle thickens with improbable denials
    No doubt you’ve heard about the stolen data at credit reporting agency Equifax. The company’s official disclosure appeared yesterday: Equifax Inc. (NYSE: EFX) today announced a cybersecurity incident potentially impacting approximately 143 million U.S. consumers. Criminals exploited a U.S. website application vulnerability to gain access to certain files. Based on ... Read more
    Source: Computerworld Cybercrime and HackingPublished on 2017-09-08
  • Breach at Equifax May Impact 143M Americans
    Equifax, one of the “big-three” U.S. credit bureaus, said today that a data breach at the company may have affected 143 million Americans, jeopardizing consumer Social Security numbers, birth dates, addresses and some driver’s license numbers. In a press release today, Equifax [NYSE:EFX] said it discovered the “unauthorized access” on ... Read more
    Source: Krebs on SecurityPublished on 2017-09-07
  • Details, details…
    Word comes down from on high that this company will be installing video surveillance systems in dozens of its remote warehouses, reports an IT manager pilot fish on the inside."The director of operations decided we needed video surveillance in order to monitor the warehouses in real time," fish says. "The ... Read more
    Source: Computerworld Cybercrime and HackingPublished on 2017-09-06
  • Kaspersky Lab and the Russia connection | Salted Hash Ep 1, Pt 1
    Reporters Fahmida Rashid and Steve Ragan talk about antivirus vendor Kaspersky Lab, a Russian-based company that various U.S. agencies have flagged as untrustworthy. Should you use it? ... Read more
    Source: Computerworld Cybercrime and HackingPublished on 2017-09-06
  • U.S. Cyber Command gains status | Salted Hash Ep 1, Pt 2
    Reporters Steve Ragan and Fahmida Rashid discuss the implications of the U.S. Cyber Command's recent elevation in status, putting it on the same level as the military’s other functional combatant commands. ... Read more
    Source: Computerworld Cybercrime and HackingPublished on 2017-09-06
  • Salted Hash: Kaspersky Lab, U.S. Cyber Command, Hollywood hacking and ransomware
    Reporters Steve Ragan and Fahmida Rashid unpack the hottest topics in the security realm: Kaspersky Lab's Russia connection, the new status for the U.S. Cyber Command, Hollywood's hacking woes and ransomware. ... Read more
    Source: Computerworld Cybercrime and HackingPublished on 2017-09-06
  • Ransomware: What you need to know now | Salted Hash Ep 1, Pt 4
    Reporters Fahmida Rashid and Steve Ragan talk about the latest ransomware threats, the holes in IT security and the burdens on enterprises. ... Read more
    Source: Computerworld Cybercrime and HackingPublished on 2017-09-06
  • Hollywood’s hacking woes | Salted Hash Ep 1, Pt 3
    Reporters Fahmida Rashid and Steve Ragan talk about hacks of Sony and more recently, HBO, and what lessons enterprises can learn from the entertainment industry's mistakes. ... Read more
    Source: Computerworld Cybercrime and HackingPublished on 2017-09-06