At the Intersection of Technology and Real Life

Report: Google arguing to U.S. that forked Huawei OS is security threat

Michael York Reading, PA 9 to 5 Google, Syndicated Stories

While tech companies have complied with the Commerce Department’s ban on Huawei, many are in discussion with U.S. officials on a possible resolution. A report today reveals that Google’s argument is centered around Huawei’s forked OS possibly being the bigger security threat.

more…

The post Report: Google arguing to U.S. that forked Huawei OS is security threat appeared first on 9to5Google.

Read original article here

Latest Headlines

Adoption Moved to Facebook and a War Began

4 March 2021

As the adoption industry migrates to social media, regretful adoptees and birth mothers are confronting prospective parents with their personal pain—and anger. [...]

How a Hashtag Went Viral—and Incited a Military Intervention

2 March 2021

In 2014, more than 200 Nigerian schoolgirls were kidnapped. It hardly made global headlines, until the Twitter masses brought it all the way to the White House. [...]

2034, Part VI: Crossing the Red Line

2 March 2021

“Eventually, the Americans would find them. But by then it would be too late.” [...]

Sex Tapes, Hush Money, and Hollywood’s Economy of Secrets

25 February 2021

Meet Kevin Blatt, the celebrity fixer who’s a master at shepherding compromising material off the internet—or into the hands of the highest bidder. [...]

How to Remember a Disaster Without Being Shattered by It

23 February 2021

Margaret McKinnon survived a midair catastrophe, then became a major researcher of memory and trauma. Now she’s studying how the pandemic will haunt us. [...]

2034, Part V: Sailing Into Darkness

23 February 2021

“Somewhere in that black hole was the Chinese fleet. She would be expected to find and destroy it.” [...]

The LA Musician Who Designed a Microphone for Mars

17 February 2021

How an obsession with space led to a partnership on the Perseverance rover—and the chance we could finally hear what our planetary neighbor sounds like. [...]

2034, Part IV: The Spratly Islands Ambush

16 February 2021

“In a thousand years America won’t be remembered as a country, but simply as a fleeting moment.” [...]

Premature Babies and the Lonely Terror of a Pandemic NICU

11 February 2021

Baby Olivia weighed 1 pound, 10 ounces. Her doctors faced a stressful paradox: giving her the healing power of a parent's touch, while keeping the virus out. [...]

2034, Part III: One Left to Tell the Tale

9 February 2021

“When the planes didn't attack, a silence fell over the crew. Why didn't they finish the job?” [...]

New Sarbloh ransomware supports Indian farmers' protest

8 March 2021

A new ransomware known as Sarbloh encrypts your files while at the same time delivering a message supporting the protests of Indian farmers. [...]

Microsoft 365 adds 'External' email tags for increased security

8 March 2021

Microsoft is working on boosting Exchange Online phishing protection capabilities by adding support for external email message tags to its cloud-based email service. [...]

Hackers hiding Supernova malware in SolarWinds Orion linked to China

8 March 2021

Intrusion activity related to the Supernova malware planted on compromised SolarWinds Orion installations exposed on the public internet points to an espionage threat actor based in China. [...]

Google Chrome to block port 554 to stop NAT Slipstreaming attacks

8 March 2021

Google Chrome will block the browser's access to TCP port 554 to protect against attacks using the NAT Slipstreaming 2.0 vulnerability. [...]

European Banking Authority discloses Exchange server hack

8 March 2021

The European Banking Authority (EBA) took down all email systems after their Microsoft Exchange Servers were hacked as part of the ongoing attacks targeting organizations worldwide. [...]

Flagstar Bank hit by data breach exposing customer, employee data

8 March 2021

US bank and mortgage lender Flagstar has disclosed a data breach after the Clop ransomware gang hacked their Accellion file transfer server in January. [...]

CISA takes over .GOV top-level domain (TLD) administration

8 March 2021

The US Cybersecurity and Infrastructure Security Agency (CISA) is taking over the administration of the .GOV top-level domain (TLD) as its new policy and management authority starting next month. [...]

Unpatched QNAP devices are being hacked to mine cryptocurrency

8 March 2021

Unpatched network-attached storage (NAS) devices are targeted in ongoing attacks where the attackers try to take them over and install cryptominer malware to mine for cryptocurrency. [...]

Microsoft's MSERT tool now finds web shells from Exchange Server attacks

7 March 2021

Microsoft has pushed out a new update for their Microsoft Safety Scanner (MSERT) tool to detect web shells deployed in the recent Exchange Server attacks. [...]

How to use Google's 'Chrome Labs' to test new browser features

7 March 2021

Google has added a new feature to Google Chrome Canary that makes it easier for users to test new hidden features under development. [...]

Best electric kettle of 2021 - CNET

9 March 2021

Get hot water in a hurry. [...]

Which internet speed test should you use to test your connection at home? - CNET

9 March 2021

Curious to see what your actual internet speeds look like? An internet speed test is just what you need -- here are the ones we recommend. [...]

Zack Snyder's Justice League released early by accident - CNET

9 March 2021

Instead of Tom & Jerry, the upcoming superhero flick played on HBO Max instead. [...]

AEW Revolution 2021: Botched ending, results, full recap and analysis - CNET

9 March 2021

A strong pay-per-view goes out with a whimper. [...]

Best mattress for back pain in 2021 - CNET

8 March 2021

Waking up with back pain? These mattresses combine comfort and support for a restful night and a pain-free morning [...]

White House praises Meghan and Harry's 'courage' after Oprah interview - CNET

8 March 2021

It's unclear whether President Biden watched, but other celebrities, including Maria Shriver and Serena Williams, weigh in on the couple's interview. [...]

GameStop stock surges to nearly $200 in Monday market rally - CNET

8 March 2021

The traders with diamond hands are seeing big gains. [...]

Astronomers find most distant cosmic jet, bursting from a black hole in deep space - CNET

8 March 2021

P172+18 is the most distant radio-loud quasar ever found. It could teach us how galaxies form and evolve. [...]

Rust makes its way to consoles this spring - CNET

8 March 2021

PS4 and Xbox One players will soon understand what it means to survive. [...]

Best airline credit cards to use for March 2021 - CNET

8 March 2021

Earn miles toward a free flight when flying with your preferred airline. [...]

KnowBe4 Buys Competitor MediaPRO

8 March 2021

Known for its phishing simulation platform, KnowBe4 says deal will help it expand in privacy and compliance training market. [...]

McAfee to Sell Enterprise Business to Equity Firm STG for $4B

8 March 2021

The planned move is unlikely to do much for enterprise customers or for security vendor's consumer business, analysts say. [...]

Microsoft Exchange Server Attack Escalation Prompts Patching Panic

8 March 2021

US government officials weigh in on the attacks and malicious activity, which researchers believe may be the work of multiple groups. [...]

Intel, Microsoft Aim for Breakthrough in DARPA Encryption Project

8 March 2021

Together, the vendor giants aim to make "in use" encryption -- also known as "fully homomorphic encryption" -- economical and practical. [...]

The Edge Pro Tip: Proceed With Caution

8 March 2021

Security pros offer up their post-SolarWinds patch-management advice. [...]

Why Data Privacy Should Be on President Biden's Agenda for His First 100 Days

8 March 2021

The new administration is in an excellent position to make significant progress on data privacy -- not just because it's needed, but also because it's time. [...]

Microsoft Exchange Server Exploits Hit Retail, Government, Education

5 March 2021

Mandiant researchers identify a range of victims affected in attacks targeting newly reported Microsoft Exchange Server vulnerabilities. [...]

Microsoft Adopted an 'Aggressive' Strategy for Sharing SolarWinds Attack Intel

5 March 2021

Rob Lefferts, corporate vice president for Microsoft 365 Security in Security and Compliance, explains the company's approach to keeping its customers and the industry apprised and updated on its findings from the now-infamous attack. [...]

5 Ways Social Engineers Crack Into Human Beings

5 March 2021

These common human traits are the basic ingredients in the con-man's recipe for trickery. [...]

Realistic Patch Management Tips, Post-SolarWinds

5 March 2021

Patch management and testing are different, exactly the same, and completely out of hand. Here are tips from the experts on how to wrangle patches in a time of malicious software updates. [...]

GitHub Hires Former Cisco Executive Mike Hanley as Chief Security Officer

24 February 2021

Software development platform GitHub announced on Wednesday that it has hired Mike Hanley as its new Chief Security Officer (CSO). [...]

Reddit Names Allison Miller as Chief Information Security Officer (CISO)

23 February 2021

Social news community site Reddit announced has hired Allison Miller as Chief Information Security Officer (CISO) and VP of Trust. [...]

SecurityWeek Names Ryan Naraine as Editor-at-Large

19 January 2021

SecurityWeek has named Ryan Naraine as Editor-at-Large, adding a veteran cybersecurity journalist and podcaster to its editorial team. [...]

Why Cyber Security Should Be at the Top of Your Christmas List

17 December 2020

To take advantage of emerging trends in both technology and cyberspace, businesses need to manage risks in ways beyond those traditionally handled by the information security function. [...]

United States Federal Government’s Shift to Identity-Centric Security

17 December 2020

Governments are increasingly facing new legislation, standards, frameworks, and policies to protect critical and sensitive information. [...]

How Extreme Weather Will Create Chaos on Infrastructure

21 October 2020

Extreme weather events will soon become more frequent and widespread, devastating areas of the world that typically don’t experience them and amplifying the destruction in areas that do. [...]

BSIMM11 Observes the Cutting Edge of Software Security Initiatives

21 October 2020

In addition to helping an organization start an SSI, the BSIMM also gives them a way to evaluate the maturity of their SSI. [...]

Sustaining Video Collaboration Through End-to-End Encryption

21 October 2020

By infusing end-to-end encryption into any video strategy, it ensures not only the sustainability of the channel, but the businesses that rely on it. [...]

Will Robo-Helpers Help Themselves to Your Data?

8 September 2020

Are you sure that your robo-helpers are secure? [...]

Securing the Hybrid Workforce Begins with Three Crucial Steps

2 September 2020

The global shift to a remote workforce has redefined the way organizations structure their business models. [...]

New Zealand's major telcos agree to create prospective CDR and price comparison tool

8 March 2021

After calls from New Zealand regulator to improve transparency around costs and data usage. [...]

MIRA-Aware Super a step closer to finalising AU$3.5 billion takeover of Vocus

8 March 2021

As IPO plans for Vocus New Zealand are binned. [...]

IDC: Cloud computing could prevent 1B metric tons of CO2 emissions by 2024

8 March 2021

The idea of "green IT" has caught on, but its impact over the next few years will depend on the way organizations build datacenters, IDC says. [...]

Brazilian tech startup ecosystem fails to advance gender equality

8 March 2021

The proportion of female founders has been stagnant for ten years and women are largely overlooked by funds, study finds. [...]

Ezviz C3X outdoor security camera review: Simple setup, superb features

8 March 2021

The Ezviz C3X is a well-build outdoor security camera with some great features like motion setection zones, voice alerts and strobe lights to warn off intruders. [...]

How does your company use data analytics? We want to know.

8 March 2021

Take this quick, multiple-choice survey and tell us about the business intelligence or data analytics tools used at your workplace. [...]

REPSOL is a global multi-energy provider and digital transformation trailblazer

8 March 2021

Repsol is a global multi-energy provider that is aggressively driving its evolution toward a low-emissions energy model and establishing itself as a digital business transformation trailblazer. [...]

Best cloud storage service in 2021

8 March 2021

Free and cheap personal and small business cloud storage services are everywhere. But which one is best for you? Let's look at the top cloud storage options. [...]

Best multitool for IT technicians in 2021

8 March 2021

We don't always have access to a fully equipped toolbox, but with the right multitool, you always have access to the basics. Here is a selection of the best multitools that I have owned and tested over the years. [...]

Best Mac apps in 2021: Antivirus, security, and productivity

8 March 2021

A selection of the best performance, security, and productivity apps to help you get the most from your Mac. [...]

Innovation Through Diverse Thinking: Amplifying Gender Diversity and Shrinking the Skills Gap

8 March 2021

Cybersecurity Help Wanted Those of us who work in the cybersecurity field continue to witness the capabilities of adversaries outpace the profession’s ability to protect their organizations. Compounding this issue is limited resources, including a lack of skilled professionals. As the tech industry has forewarned for decades, the need for a bigger and better security […] The post Innovation Through Diverse Thinking: Amplifying Gender Diversity and Shrinking the Skills Gap appeared first on Security Intelligence. [...]

Cloud Native Tools Series Part 2: Understand Your Responsibilities

8 March 2021

As I mentioned in my first blog: traditional security just doesn’t work in the cloud. Businesses dependent on the cloud can make up for this by choosing native cloud security tools. But, they can’t do so unless they understand what aspects of cloud security they’re responsible for. The AWS Shared Security Model as a Guide Luckily, […] The post Cloud Native Tools Series Part 2: Understand Your Responsibilities appeared first on Security Intelligence. [...]

Cloud Clarity: Adding Security and Control to the AWS Shared Responsibility Model

5 March 2021

Have your security team members ever made a mistake in the cloud? Human error happens and it can take on many forms. But, none are as serious as failing to understand the way cloud defenses work. If a mistake does come to mind, be reassured you’re not alone. Seven in 10 organizations suffered a public […] The post Cloud Clarity: Adding Security and Control to the AWS Shared Responsibility Model appeared first on Security Intelligence. [...]

How Enterprise Design Thinking Can Improve Data Security Solutions

4 March 2021

“Design must reflect the practical and aesthetic in business, but above all … good design must primarily serve people,” said Thomas J. Watson, a man synonymous with IBM. To no one’s surprise, he was a proponent of good enterprise design. Design must serve people. It simply makes sense that a well-designed product can meet the […] The post How Enterprise Design Thinking Can Improve Data Security Solutions appeared first on Security Intelligence. [...]

The Shift to E-Commerce: How Retail Cybersecurity is Changing

4 March 2021

With more people making purchases from home, now is a more important time than ever to secure your business against retail security threats. More and more customers are moving to online orders with gradual growth accelerated by five years in 2020 alone. Take a look at retail cybersecurity risks and how to protect against them. […] The post The Shift to E-Commerce: How Retail Cybersecurity is Changing appeared first on Security Intelligence. [...]

Don’t Speed Past Better Cloud App Security

3 March 2021

They say you can only have two of three — fast, good and cheap. When it comes to developing cloud-based applications, I think that a fourth criteria should be added: secure. But, I honestly don’t think that this common advice to project managers who work in today’s market. Successful developers who take cloud app security […] The post Don’t Speed Past Better Cloud App Security appeared first on Security Intelligence. [...]

A More Effective Approach to Combating Software Supply Chain Attacks

3 March 2021

Software supply chain attacks are not new, but as we’ve seen recently, if executed successfully they can have huge payoffs for sophisticated attackers. Detecting malicious code inserted into a trusted vendor’s security updates is extremely difficult to do at scale, and for most organizations, impractical given the time required to analyze updates vs. the increased […] The post A More Effective Approach to Combating Software Supply Chain Attacks appeared first on Security Intelligence. [...]

Cybersecurity Trends and Emerging Threats in 2021

3 March 2021

The year 2021 is finally here, bringing with it the promise of a brighter future — but a long road ahead. In this piece, we’ll dive into five cybersecurity trends that pose significant potential risk in 2021 and offer practical advice to help entities reduce overall risk. The first quarter of 2021 represents a cybersecurity […] The post Cybersecurity Trends and Emerging Threats in 2021 appeared first on Security Intelligence. [...]

‘Clear and Present Danger’: Why Cybersecurity Risk Management Needs to Keep Evolving

2 March 2021

The phrase ‘future-proof’ is seductive. We want to believe technology prepares us for the future. But with threat actors and developers in an arms race to breach and protect, cybersecurity risk — and cybersecurity risk management — are always changing. As a recent report by World Economic Forum shows, businesses and other entities should know […] The post ‘Clear and Present Danger’: Why Cybersecurity Risk Management Needs to Keep Evolving appeared first on Security Intelligence. [...]

Cybersecurity Gaps and Opportunities in the Logistics Industry

2 March 2021

Shipping and logistics is, in many ways, the backbone of our lives and businesses. What business doesn’t benefit from fresh food or a timely delivery? Unfortunately, this industry is open to cyberattacks just like anyone else. Luckily, groups in the trucking and logistics industry aren’t powerless to address these challenges. Check out how you can […] The post Cybersecurity Gaps and Opportunities in the Logistics Industry appeared first on Security Intelligence. [...]

McAfee Sheds Enterprise Business in $4 Billion Deal

8 March 2021

McAfee is changing owners again as part of a $4 billion all-cash transaction that includes the sale of its enterprise business unit. read more [...]

FINRA Warns of Ongoing Phishing Attacks Targeting Brokerage Firms

8 March 2021

The Financial Industry Regulatory Authority (FINRA) has issued an alert to warn brokerage firms of a phishing campaign that is currently ongoing. read more [...]

Idaho Man Charged With Hacking Into Computers in Georgia

8 March 2021

An Idaho man faces federal charges after authorities say he hacked into the computers of a Georgia city and Atlanta area medical clinics. read more [...]

Disruptions at Pan-American Life Likely Caused by Ransomware Attack

8 March 2021

Two Ukrainians charged for their involvement in a network providing cash-out and money laundering services to cybercriminals have been extradited to the United States. read more [...]

EU Banking Regulator Hit by Microsoft Email Hack

8 March 2021

The European Banking Authority, a key EU financial regulator, says it has fallen victim to a hack of its Microsoft email system which the US company blames on a Chinese group. read more [...]

Cybersecurity M&A Roundup for Week of Mar. 1, 2021

8 March 2021

Several cybersecurity-related acquisitions and mergers were announced in the first week of March 2021. read more [...]

Casting a Wide Intrusion Net: Dozens Burned With Single Hack

8 March 2021

The SolarWinds hacking campaign blamed on Russian spies and the “grave threat” it poses to U.S. national security are widely known. A very different — and no less alarming — coordinated series of intrusions also detected in December has gotten considerably less public attention. read more [...]

F1 Team Williams Unveils New Car After Hackers Foil Launch

7 March 2021

The Williams team presented its new Formula One car on Friday — after hackers foiled plans for an “augmented reality” launch — revealing a livery inspired by its “all-conquering cars of the 1980s and 1990s.” The British team enters its first full season under the ownership of US-based investment firm Dorilton Capital. read more [...]

Microsoft Shares Additional Mitigations for Exchange Server Vulnerabilities Under Attack

6 March 2021

Microsoft on Friday released alternative mitigation measures for organizations who have not been able to immediately apply emergency out-of-band patches released earlier this week that address vulnerabilities being exploited to siphon e-mail data from corporate Microsoft Exchange servers. read more [...]

Apple releases important iPhone, iPad, Mac and Watch security patches

8 March 2021

Apple has released a set of security updates for iPhones, iPads, Macs and Watches. There are no new features — but these are updates you will still want to install. As part of these security fixes, iPhones and iPads will update to iOS and iPadOS 14.4.1, watchOS users will update to 7.3.2 and macOS Big Sur […] [...]

Max Q: Starship’s good landing (and less good post-landing)

8 March 2021

Max Q is a weekly newsletter from TechCrunch all about space. Sign up here to receive it weekly on Mondays in your inbox. Sometimes even the biggest successes look like failures on video. That’s the theme of this week, because the biggest news by far was SpaceX’s test launch of its latest Starship prototype in […] [...]

Daily Crunch: PayPal acquires Curv

8 March 2021

PayPal acquires a cryptocurrency startup, Apple discontinues the iMac Pro and McAfee sells its enterprise business. This is your Daily Crunch for March 8, 2021. The big story: PayPal acquires Curv This deal will grow PayPal’s cryptocurrency team by bringing on Curv, a startup working with exchanges, brokers and over-the-counter desks to help their users […] [...]

Zapier buys no-code-focused Makerpad in its first acquisition

8 March 2021

Zapier, a well-known no-code automation tool, has purchased Makerpad, a no-code education service and community. Terms of the deal were not disclosed. TechCrunch has covered Zapier often during its life, including its first, and only, fundraising event, a $1.2 million round back in 2012 that tapped Bessemer, DFJ and others. Since then the company has […] [...]

White-label voice assistants will win the battle for podcast discovery

8 March 2021

The voice assistant that can personalize podcasts and help listeners search, sample and discover content through sharable bite-sized pieces will win the voice wars. [...]

Announcing the agenda for TC Early Stage — Operations & Fundraising

8 March 2021

As an early-stage founder, how do you identify the right investors? Or know how to hire the best possible team to set up your company for growth? Should you bootstrap, and if so, how do you do it successfully? How do you nail virtual pitch meetings? What about product-market fit? Board construction and good governance? […] [...]

From electric charging to supply chain management, InMotion Ventures preps Jaguar for a sustainable future

8 March 2021

"Obviously, we venture beyond electrification into autonomous vehicles and connectivity. There will be a lot of value creation once OEMs are able to surface their APIs." [...]

Cosi raises €20M for its ‘full-stack’ approach to short-term rentals

8 March 2021

Cosi Group, a Berlin-based startup offering an alternative to boutique hotels and managed short-stay apartments, is disclosing €20 million in new investment. Backing the round is Vienna-based Soravia, a leading real estate group in German-speaking countries. Existing investors Cherry Ventures, e.ventures, Kreos Capital and Bremke followed on, along with a number of individual investors. They […] [...]

Porter Road’s sustainable, whole animal butchery raises $10 million to expand across the US

8 March 2021

In the nearly 10 years since it launched as a whole animal butchery out of a storefront in East Nashville, the founders of Porter Road have wanted to herd America’s meat industry down a new path. Now the company has $10 million in financing from investors including L37 Ventures, River Park Ventures, Middleland, FJ Labs, […] [...]

Apple teams with Common Sense Media to curate podcasts for kids

8 March 2021

Apple announced this morning it’s teaming up with Common Sense Media to curate a selection of kid-friendly podcasts in the U.S. in light of what appears to be growing interest in spoken-word entertainment among families. That interest, in part, may have been prompted by the pandemic and parents’ desire to reduce kids’ screen time for […] [...]

Iranian Hackers Using Remote Utilities Software to Spy On Its Targets

8 March 2021

Hackers with suspected ties to Iran are actively targeting academia, government agencies, and tourism entities in the Middle East and neighboring regions as part of an espionage campaign aimed at data theft. Dubbed "Earth Vetala" by Trend Micro, the latest finding expands on previous research published by Anomali last month, which found evidence of malicious activity aimed at UAE and Kuwait [...]

Malware Can Exploit New Flaw in Intel CPUs to Launch Side-Channel Attacks

8 March 2021

A new research has yielded yet another means to pilfer sensitive data by exploiting what's the first "on-chip, cross-core" side-channel in Intel Coffee Lake and Skylake processors. Published by a group of academics from the University of Illinois at Urbana-Champaign, the findings are expected to be presented at the USENIX Security Symposium coming this August. While information leakage attacks [...]

Microsoft Exchange Cyber Attack — What Do We Know So Far?

8 March 2021

Microsoft on Friday warned of active attacks exploiting unpatched Exchange Servers carried out by multiple threat actors, as the hacking campaign is believed to have infected tens of thousands of businesses, government entities in the U.S., Asia, and Europe. The company said "it continues to see increased use of these vulnerabilities in attacks targeting unpatched systems by multiple malicious [...]

Bug in Apple's Find My Feature Could've Exposed Users' Location Histories

5 March 2021

Cybersecurity researchers on Thursday disclosed two distinct design and implementation flaws in Apple's crowdsourced Bluetooth location tracking system that can lead to a location correlation attack and unauthorized access to the location history of the past seven days, thereby by deanonymizing users. The findings are a consequence of an exhaustive review undertaken by the Open Wireless Link ( [...]

Google Cloud Certifications — Get Prep Courses and Practice Tests at 95% Discount

5 March 2021

As cloud computing continues to grow, Google Cloud is quickly becoming one of the most popular solutions. However, relatively few engineers know this platform well. This leaves the door open for aspiring IT professionals who take the official exams. The Google Cloud Certifications Practice Tests + Courses Bundle helps you get certified faster, with 43 hours of video content and over 1,000 [...]

Mazafaka — Elite Hacking and Cybercrime Forum — Got Hacked!

5 March 2021

In what's a case of hackers getting hacked, a prominent underground online criminal forum by the name of Maza has been compromised by unknown attackers, making it the fourth forum to have been breached since the start of the year. The intrusion is said to have occurred on March 3, with information about the forum members — including usernames, email addresses, and hashed passwords — publicly [...]

Researchers Find 3 New Malware Strains Used by SolarWinds Hackers

5 March 2021

FireEye and Microsoft on Thursday said they discovered three more malware strains in connection with the SolarWinds supply-chain attack, including a "sophisticated second-stage backdoor," as the investigation into the sprawling espionage campaign continues to yield fresh clues about the threat actor's tactics and techniques. Dubbed GoldMax (aka SUNSHUTTLE), GoldFinder, and Sibot, the new set of [...]

Google Will Use 'FLoC' for Ad Targeting Once 3rd-Party Cookies Are Dead

8 March 2021

Signaling a major shift to its ads-driven business model, Google on Wednesday unequivocally stated it would not build alternate identifiers or tools to track users across multiple websites once it begins phasing out third-party tracking cookies from its Chrome browser by early 2022. "Instead, our web products will be powered by privacy-preserving APIs which prevent individual tracking while [...]

Extortion Gang Breaches Cybersecurity Firm Qualys Using Accellion Exploit

8 March 2021

Enterprise cloud security firm Qualys has become the latest victim to join a long list of entities to have suffered a data breach after zero-day vulnerabilities in its Accellion File Transfer Appliance (FTA) server were exploited to steal sensitive business documents. As proof of access to the data, the cybercriminals behind the recent hacks targeting Accellion FTA servers have shared [...]

CISA Issues Emergency Directive on In-the-Wild Microsoft Exchange Flaws

5 March 2021

Following Microsoft's release of out-of-band patches to address multiple zero-day flaws in on-premises versions of Microsoft Exchange Server, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an emergency directive warning of "active exploitation" of the vulnerabilities. The alert comes on the heels of Microsoft's disclosure that China-based hackers were [...]

Episode 206: What Might A Federal Data Privacy Law Mean In the US?

7 March 2021

With movement towards passage of a federal data privacy law stronger than ever, we invite two experts in to the Security Ledger studio to talk about what that might mean for U.S. residents and businesses: Stacey Gray, who is a Senior Counsel at the Future of Privacy Forum and Rehan Jalil, the CEO of Securiti.ai. The post Episode 206: What Might A...Read the whole entry... » Related StoriesBook argues for New Laws to break Social Media MonopoliesEpisode 202: The Byte Stops Here – Biden’s Cyber AgendaEpisode 197: The Russia Hack Is A 5 Alarm Fire | Also: Shoppers Beware! [...]

Episode 205 – Google’s Camille Stewart: InfoSec’s Lack of Diversity is a Cyber Risk

26 February 2021

In this interview, Camille Stewart, Google’s Head of Security Policy for Google Play and Android explains how understanding how systemic racism influences cyber security is integral to protecting the American people and defending the country from cyber adversaries. The post Episode 205 – Google’s Camille Stewart: InfoSec’s Lack of...Read the whole entry... » Related StoriesEpisode 203: Don’t Hack The Water and Black Girls Hack Founder Tennisha MartinEpisode 192: It’s Showtime! Are Local Governments Ready To Turn Back Election Hacks?Episode 202: The Byte Stops Here – Biden’s Cyber Agenda [...]

Exclusive: Flaws in Zoom’s Keybase App Kept Chat Images From Being Deleted

22 February 2021

A serious flaw in Zoom’s Keybase secure chat application left copies of images contained in secure communications on Keybase users’ computers after they were supposedly deleted. The post Exclusive: Flaws in Zoom’s Keybase App Kept Chat Images From Being Deleted appeared first on The Security Ledger. Related StoriesEpisode 201: Bug Hunting with Sick CodesEpisode 200: Sakura Samurai Wants To Make Hacking Groups Cool Again. And: Automating Our Way Out of PKI ChaosDHS Looking Into Cyber Risk from TCL Smart TVs [...]

Episode 204: Josh Corman of CISA on securing the Vaccine Supply Chain

18 February 2021

Joshua Corman, the Chief Strategist for Healthcare and COVID on CISA’s COVID Task Force, joins us to talk about the myriad of cyber threats facing healthcare and the vaccine distribution system and how the federal government is working to counter them. The post Episode 204: Josh Corman of CISA on securing the Vaccine Supply Chain appeared first...Read the whole entry... » Related StoriesEpisode 197: The Russia Hack Is A 5 Alarm Fire | Also: Shoppers Beware!Episode 194: What Happened To All The Election Hacks?Episode 200: Sakura Samurai Wants To Make Hacking Groups Cool Again. And: Automating Our Way Out of PKI… [...]

Episode 203: Don’t Hack The Water and Black Girls Hack Founder Tennisha Martin

15 February 2021

In this episode of the Security Ledger Podcast (#203) we talk about the apparent hack of a water treatment plant in Oldsmar Florida with Frank Downs of the firm BlueVoyant. In our second segment: is infosec’s lack of diversity a bug or a feature? Tennisha Martin of Black Girls Hack joins us to talk about the many obstacles that black women face...Read the whole entry... » Related StoriesEpisode 205 – Google’s Camille Stewart: InfoSec’s Lack of Diversity is a Cyber RiskEpisode 197: The Russia Hack Is A 5 Alarm Fire | Also: Shoppers Beware!Episode 200: Sakura Samurai Wants To Make Hacking… [...]

Episode 202: The Byte Stops Here – Biden’s Cyber Agenda

5 February 2021

Even before Solar Storm, Joe Biden had made it clear that a cyber security reset was needed. But what will that reset look like? To understand a bit better what might be in store in the months ahead we devoted this episode of the podcast to interviewing three experts on federal IT security and cyber defense. The post Episode 202: The Byte Stops...Read the whole entry... » Related StoriesEpisode 206: What Might A Federal Data Privacy Law Mean In the US?Episode 205 – Google’s Camille Stewart: InfoSec’s Lack of Diversity is a Cyber RiskEpisode 197: The Russia Hack Is A 5… [...]

Episode 201: Bug Hunting with Sick Codes

29 January 2021

The work of vulnerability research has changed a lot in the last two decades. In this episode, Security Ledger Podcast host Paul Roberts chats with the independent researcher known as “Sick Codes” about the growing risk of open source supply chain hacks, his method for bug hunting and what projects are in the pipeline for 2021. The post ...Read the whole entry... » Related StoriesEpisode 200: Sakura Samurai Wants To Make Hacking Groups Cool Again. And: Automating Our Way Out of PKI ChaosDHS Looking Into Cyber Risk from TCL Smart TVsEpisode 195: Cyber Monday Super Deals Carry Cyber Risk [...]

Episode 200: Sakura Samurai Wants To Make Hacking Groups Cool Again. And: Automating Our Way Out of PKI Chaos

22 January 2021

In this episode of the podcast (#200), sponsored by Digicert: John Jackson, founder of the group Sakura Samurai talks to us about his quest to make hacking groups cool again. Also: we talk with Avesta Hojjati of the firm Digicert about the challenge of managing a growing population of digital certificates and how automation may be an answer. The...Read the whole entry... » Related StoriesEpisode 201: Bug Hunting with Sick CodesEpisode 198: Must Hear Interviews from 2020DHS Looking Into Cyber Risk from TCL Smart TVs [...]

Researchers Test UN’s Cybersecurity, Find Data on 100k

11 January 2021

Independent security researchers testing the security of the United Nations were able to compromise public-facing servers and a cloud-based development account for the U.N. and lift data on more than 100,000 staff and employees, according to a report released Monday. The post Researchers Test UN’s Cybersecurity, Find Data on 100k appeared first...Read the whole entry... »Related StoriesExclusive: Flaws in Zoom’s Keybase App Kept Chat Images From Being DeletedPodcast Episode 189: AppSec for Pandemic Times, A Conversation with GitLab Security VP Jonathan HuntEpisode 200: Sakura Samurai Wants To Make Hacking Groups Cool Again. And: Automating Our Way Out of PKI Chaos [...]

Episode 199 COVID’s Other Legacy: Data Theft and Enterprise Insecurity

8 January 2021

In this episode of the podcast (#199), sponsored by LastPass, we talk with Shareth Ben of Securonix about how massive layoffs that have resulted from the COVID pandemic put organizations at far greater risk of data theft. In our second segment, we’re joined by Barry McMahon, a Senior Global Product Marketing Manager at LogMeIn, to talk about...Read the whole entry... » Related StoriesEpisode 197: The Russia Hack Is A 5 Alarm Fire | Also: Shoppers Beware!Episode 200: Sakura Samurai Wants To Make Hacking Groups Cool Again. And: Automating Our Way Out of PKI ChaosEpisode 205 – Google’s Camille Stewart: InfoSec’s Lack… [...]

Tom and Jerry accidentally became the Snyder Cut for a hot minute

9 March 2021

Image: Warner Bros. The Snyder Cut is set to release on March 18th, but some viewers already got a truly inexplicable sneak peek today — quite a few people trying to watch the Tom and Jerry movie on HBO Max were instead shown the upcoming R-rated version of Justice League (via The Hollywood Reporter). I guess you could say Warner Bros. really let the cat out of the bag. HBO confirmed that, yes, this did in fact happen: “Zack Snyder’s Justice League was temporarily available on HBO Max and the error was addressed within minutes,” a spokesperson tells The Verge.… [...]

The Switch-style Aya Neo handheld gaming PC is now on Indiegogo, starting at $789

8 March 2021

The Aya Neo — a Nintendo Switch-style handheld gaming PC that promises to offer a full-fledged PC gaming experience in the palm of your hands — is now available to back on Indiegogo, starting at $6,120 HKD (~$789 USD) for the 500GB model. This version of the Neo is technically the second, following the limited, sold-out run of the “Founder’s Edition” that Aya offered back in January. The new, broader release promises several improvements over that initial version, including: An improved operating system Reduced weight The option to toggle rumble Better buttons Better power consumption and performance presets Improvements to… [...]

Verizon is once again giving you a reason to turn 5G off

8 March 2021

Despite years of promotion, Verizon’s 5G network still lags behind 4G. | Illustration by Alex Castro / The Verge Verizon 4G appears to be getting even better than its nationwide 5G network, according to new tests conducted by PCMag’s Sascha Segan. After last week’s tweet suggesting that users turn off their phone’s 5G to conserve battery life, there seems to be a multitude of reasons for Verizon customers to stick with 4G right now. Additional spectrum is making the difference for Verizon 4G right now, and not the C-band spectrum that’s been in the news recently. This is CBRS, a… [...]

How to block ad tracking on your iPhone

8 March 2021

Photo by Amelia Holowaty Krales / The Verge In 2019, an article in The Washington Post by Geoffrey Fowler described the author’s shock when he discovered just how many of his iPhone apps were collecting and uploading information about his usage while he slept. As we all know by now, data is a huge commodity these days. If you use a phone, laptop, or any type of computing device (unless you’re a security expert or a high-end hacker with access to sophisticated blocking tools), you’re paying for your apps by contributing marketing and other info to the companies that supply… [...]

Spice up your daily pandemic walk with these apps

8 March 2021

Photo: Allison Johnson / The Verge Keep the routine fresh Continue reading… [...]

Microsoft Surface Laptop 4 will reportedly include both AMD and Intel configurations

8 March 2021

Photo by Tom Warren / The Verge For a while, Microsoft’s Surface Laptop 3 was one of the best laptops you could buy. Microsoft is now planning its successor, the Surface Laptop 4, and it appears WinFuture has obtained details about this upcoming device. Per this report, the laptop is coming sometime in April. The biggest news is that the new Surface Laptop will come with both Intel and AMD options. The AMD models will include chips from the Ryzen 4000 mobile series, including the Ryzen 5 4680U and the Ryzen 7 4980U. These aren’t AMD’s top guns; the current-gen… [...]

SpaceX moves to beam Starlink internet into trucks, boats, and aircraft

8 March 2021

A train of Starlink satellites in low-Earth orbit passes over Uruguay. SpaceX is asking the FCC for approval to beam Starlink internet into moving vehicles. | Photo by Mariana Suarez / AFP via Getty Images SpaceX is seeking regulatory approval to connect its rapidly growing network of internet-beaming Starlink satellites to cars, trucks, shipping boats, and aircraft. The request, filed last Friday with the Federal Communications Commission, marks SpaceX’s biggest step yet toward connecting Starlink to the automotive sector, a potentially lucrative line of business that would expand the company’s current stationary offerings from rural homes. The March 5th FCC… [...]

The brands are at it again — Taco Bell is hopping on the NFT train

8 March 2021

This piece is called Transformative Tacos On Sunday evening, Taco Bell was serving up more than just tacos — it was also delivering NFTs: the fast-food chain tweeted that it was selling taco-themed GIFs and images on NFT marketplace Rarible. Of course, everyone saw that it was a brand hopping on a bandwagon (one that could potentially be detrimental to the environment), and promptly ignored it. No one bought them, and no articles were written. Just kidding! Taco Bell said that the demand for the NFTs was hot, and that the 25 tokens apparently sold out in 30 minutes. The… [...]

Microsoft was warned months ago — now, the Hafnium hack has grown to gigantic proportions

8 March 2021

Illustration by Alex Castro / The Verge On Friday, cybersecurity journalists Brian Krebs and Andy Greenberg reported that as many as 30,000 organizations had been compromised in an unprecedented email server hack, believed to have originated from a state-sponsored Chinese hacking group known as Hafnium. Over the weekend, that estimate has doubled to 60,000 Microsoft Exchange Server customers hacked around the world, with the European Banking Authority now admitting that it’s one of the victims — and it looks like Microsoft may have taken a little too long to realize the severity and patch it. Krebs has now put together… [...]

Oprah’s Meghan and Harry interview exemplifies Paramount Plus’ streaming challenges

8 March 2021

Two of the biggest entertainment events of the weekend could have been Paramount Plus exclusives: Oprah’s highly anticipated interview with Meghan Markle and Prince Harry, and Eddie Murphy’s eagerly awaited Coming 2 America. Instead, the former is now only available on CBS’s website (free) and the latter is streaming exclusively on Amazon. For a company whose executives just touted the vital importance of leaning into streaming, having launched Paramount Plus within days of the interview and film being released, not finding a way to have one or the other — or both, ideally — available on demand is head-scratch worthy.… [...]

‘Retaliation’ for Russia's SolarWinds Spying Isn't the Answer

8 March 2021

It will be hard pointing to a specific line the Kremlin crossed that the US hasn't crossed as well. [...]

Klara and the Sun Imagines a Social Schism Driven by AI

8 March 2021

The Nobel Prize-winning novelist Kazuo Ishiguro talks to WIRED about AI, Crispr, and his hopes for humanity. [...]

Microsoft-Led Team Retracts Disputed Quantum-Computing Paper

8 March 2021

The 2018 report in Nature claimed to have found evidence of an elusive subatomic particle. A review found that the group had omitted key data. [...]

These Sea Slugs Decapitate Themselves and Grow New Bodies

8 March 2021

Showing off their best impressions of Deadpool, the animals survived for weeks without organs, only to regrow everything and go about their business. [...]

Watch Us Sing Sea Chanteys on Twitch With The Longest Johns

8 March 2021

The WIRED crew will be playing a little Sea of Thieves too, matey. [...]

How to Figure Out the Mass of Earth—With Balls and String

8 March 2021

It involves calculating some very, very tiny numbers in order to find some super huge big ones. [...]

Climate Change Will Reshape Silicon Valley As We Know It

8 March 2021

The next entrepreneurial revolution will arise to combat the crisis of our lifetime. [...]

The Political Advertising Black Box Must Be Destroyed

8 March 2021

Federal law allowed Both the Trump and Biden campaigns to hide where their ad spending went. Either Congress or the FEC needs to close the loophole. [...]

The Game of Chess Had Patch Notes, Too

8 March 2021

The fundamentals haven't changed much. But the rules have evolved over the centuries—from timer usage to the ways that pieces are moved. [...]

Ubisoft's Valhalla Is Too Long, Too Big, and Too Repetitive

8 March 2021

In the latest Assassin's Creed installment, I'm playing a Viking during the Dark Ages. Why am I bored? [...]

Report: Google arguing to U.S. that forked Huawei OS is security threat

Related Posts

Fossil paused Wear OS H MR2 update for Gen 5 watches to ‘iron out some issues’

Google testing YouTube ‘app’ for Chromecast with Android TV-like homescreen, player controls

The average Android tablet isn’t ready for work from home — believe me, I tried