At the Intersection of Technology and Real Life

Report: Google arguing to U.S. that forked Huawei OS is security threat

Michael York Reading, PA 9 to 5 Google, Syndicated Stories

While tech companies have complied with the Commerce Department’s ban on Huawei, many are in discussion with U.S. officials on a possible resolution. A report today reveals that Google’s argument is centered around Huawei’s forked OS possibly being the bigger security threat.

more…

The post Report: Google arguing to U.S. that forked Huawei OS is security threat appeared first on 9to5Google.

Read original article here

Syndicated Stories, TechCrunch

This Week in Apps: Snapchat clones TikTok, India bans 43 Chinese apps, more data on App Store commission changes

Welcome back to This Week in Apps, the TechCrunch series that recaps the latest in mobile OS news, mobile applications, and the overall app economy. The app industry is as hot as ever, with a record 204 billion downloads and $120 billion in consumer spending in 2019. People now spend three hours and 40 minutes per day using apps, […] …

9 to 5 Google, Syndicated Stories

[Update: Back in stock] Pixel Stand gets major 50% discount on the Google Store for Black Friday

With the Pixel 3 and Pixel 3 XL in 2018, Google released a first-party wireless charger. Since then, it has remained compatible with Google’s flagship phones and added new software features. For Black Friday, the Google Store has aggressively discounted the Pixel Stand by 50% off.
more…
The post [Update: Back in stock] Pixel Stand gets major 50% discount on the Google Store for Black Friday appeared first on 9to5Google. …

9 to 5 Google, Syndicated Stories

Save 10% on your next phone and trade in your old one with Decluttr

Black Friday is here and it’s a great time to take advantage of discounts to upgrade an aging smartphone or tablet. Decluttr already offers some killer deals on refurbished tech, but now you can get an extra 10% off for Black Friday. Here’s how.
Using the promo code 9TO5GOOGLE at checkout, you can take 10% off of any smartphone, tablet, or wearable on the Decluttr shop (game consoles excluded) during Black Friday weekend.
more…
The post Save 10% on your next phone and trade in your old one with Decluttr appeared first on 9to5Google. …

Latest Headlines

One Man’s Search for the DNA Data That Could Save His Life

19 November 2020

The genetic correlations that could help Bryce Olson find a drug that works against his cancer are a scattered mess. Why don’t we have a better system for analyzing this kind of information? [...]

Death, Love, and the Solace of a Million Motorcycle Parts

17 November 2020

To cope with the uncertainty and sadness around my mother-in-law’s death, I set about building a four-cylinder superbike. [...]

Huawei, 5G, and the Man Who Conquered Noise

16 November 2020

How an obscure Turkish scientist’s obscure theoretical breakthrough helped the Chinese tech giant gain control of the future. US telecoms never had a chance. [...]

The Scammer Who Wanted to Save His Country

13 November 2020

Last year, a hacker gave Glenn Greenwald a trove of damning messages between Brazil’s leaders. Some suspected the Russians. The truth was far less boring. [...]

What Writing a Pandemic Newsletter Showed Me About America

12 November 2020

In April, I started 'Coronavirus News for Black Folks.' It gave me a kind of second sight. I could see where the country is headed—and how blind it’s been. [...]

The Strange and Twisted Tale of Hydroxychloroquine

11 November 2020

The much-hyped drug sparked a battle between power and knowledge. Let’s not repeat it. [...]

The Vulnerable Can Wait. Vaccinate the Covid Super-Spreaders First

10 November 2020

Who gets priority when Covid-19 shots are in short supply? Network theorists have a counterintuitive answer: Start with the social butterflies. [...]

The History of Poop Is Really the History of Technology

6 November 2020

Sure it's gross, but human mastery over its chemistry allowed the success of agriculture—and the rise of civilization. [...]

A Nameless Hiker and the Case the Internet Can’t Crack

2 November 2020

The man on the trail went by “Mostly Harmless." He was friendly and said he worked in tech. After he died in his tent, no one could figure out who he was. [...]

How to Escape a Sinking Ship (Like, Say, the Titanic)

30 October 2020

First, put on your fanciest clothes. And at 1:15 am, consider heading down to Deck D. [...]

Windows 10 Cumulative Update Preview KB4586853 Released

30 November 2020

Microsoft has released the optional KB4586853 non-security cumulative update preview for Windows 10 versions 2004 and 20H2, with USB 3.0 and gaming fixes. [...]

Windows 10 ARM runs faster on M1 Macs than on a Surface Pro X

30 November 2020

Since Apple unveiled its M1 chip, users have been in awe of its performance power efficiency. It turns out that the M1 chip not only performs fantastic for macOS BigSur but it may also be a better choice for Windows 10 than Microsoft's own devices. [...]

Microsoft Defender for Identity now detects Zerologon attacks

30 November 2020

Microsoft has added support for Zerologon exploitation detection to Microsoft Defender for Identity to allow Security Operations teams to detect on-premises attacks attempting to abuse this critical vulnerability. [...]

Gootkit malware returns to life alongside REvil ransomware

30 November 2020

After a year-long vacation, the Gootkit information-stealing Trojan has returned to life alongside REvil Ransomware in a new campaign targeting Germany. [...]

Healthcare provider AspenPointe data breach affects 295K patients

30 November 2020

U.S. healthcare provider AspenPointe notified patients of a data breach stemming from a September 2020 cyberattack that enabled attackers to steal protected health information (PHI) and personally identifiable information (PII). [...]

The Best Cyber Monday 2020 Security, IT, VPN, & Antivirus Deals

30 November 2020

Cyber Monday is here and great deals are available for computer security, software, online courses, system admin services, antivirus, and VPN software. [...]

Baltimore students told to ditch Windows PCs after ransomware attack

30 November 2020

Baltimore County Public Schools (BCPS) urged students and staff to stop using their school-issued Windows computers and only use Chromebooks and Google accounts following a ransomware attack that hit the district's network last Wednesday. [...]

Cyber Monday VPN deal: Get 68% off NordVPN + 3 months FREE

30 November 2020

NordVPN's Cyber Monday deal is now live with 68% off a 2-year VPN subscription and an additional three months for free. This offer gives you a total of 27 months of VPN access for a monthly cost of $3.30! [...]

Vermont hospitals still recovering from October ransomware attack

30 November 2020

The University of Vermont Health Network is still recovering from a Ryuk Ransomware attack in October 2020, with services slowly coming back online. [...]

Microsoft really wants you to stop using Internet Explorer

30 November 2020

Today, Microsoft is taking further steps to kill off Internet Explorer in Windows 10 by removing support for Microsoft Teams. [...]

Facebook and Google 'complicit' in censorship and repression in Vietnam, Amnesty International says - CNET

1 December 2020

The report says social media platforms have become "hunting grounds" for state-sponsored trolls and censors. [...]

Fortnite-themed Nintendo Switch bundle currently available at Amazon for Cyber Monday - CNET

1 December 2020

It comes with Fortnite installed and a few V-Bucks for your troubles. It's predictably sold out almost everywhere, but still selling at Amazon for the list price. [...]

The Undoing finale: The ending explained and all your questions answered - CNET

1 December 2020

In the HBO miniseries, who killed Elena Alves and why? And why did so many viewers miss the clues? [...]

Newegg's Cyber Monday deals now available: Samsung Smart TV, gaming laptops and more - CNET

1 December 2020

The Newegg sale continues as we head into Cyber Monday, with deals on everything from computers to TVs to accessories. [...]

Cyber Monday Home Depot deals: Save on LG refrigerator, Arlo video doorbell and more - CNET

1 December 2020

From power tools to kitchen appliances to smart home gadgets, Home Depot is a great place to find prime Cyber Monday deals. [...]

Target Cyber Monday 2020 deals: Apple Watch SE, Fitbit Versa 2, Roomba, Google Nest Hub and more - CNET

1 December 2020

Check out the best Cyber Monday deals available at Target. [...]

PS5: The best PlayStation 5 games to play right now - CNET

1 December 2020

The new generation is here, and there are already some bangers to play. [...]

Best true wireless earbuds for 2020: Apple AirPods, Bose QuietComfort Earbuds and more - CNET

1 December 2020

True wireless earbuds are all the rage. Here are the top wire-free models you can buy right now. [...]

Best Cyber Monday 2020 HP deals: Save up to $300 on Envy and Omen laptops - CNET

1 December 2020

With up to $300 off laptops from HP, now is a great time to get an upgrade on business and gaming devices ahead of Cyber Monday. [...]

Another mysterious monolith has been discovered in Romania - CNET

1 December 2020

It looks quite similar to the one found in Utah. [...]

Driven by Ransomware, Cyber Claims Rise in Number & Value

30 November 2020

Companies are on track to file 27% more cyber claims in 2020, one insurer estimates, while another underwriter finds five out of every 100 companies file a claim each year. [...]

Manchester United Cyberattack Highlights Controversy in Paying Ransomware Attackers

30 November 2020

The Premier League English football (soccer) club team is reportedly being held to ransom by cyberattackers. Manchester United may face a difficult decision: whether to pay a ransom for release of its stolen data. [...]

Baltimore County Public Schools Closed Due to Ransomware Attack

30 November 2020

The incident struck the day before Thanksgiving and interfered with online classes for some 115,000 students, officials report. [...]

Industrial Computer Maker Confirms Ransomware, Data Theft

30 November 2020

Advantech reports the stolen data was confidential but did not contain high-value documents. [...]

Why Vulnerable Code Is Shipped Knowingly

30 November 2020

The business priority of speed of development and deployment is overshadowing the need for secure code. [...]

5 Signs Someone Might be Taking Advantage of Your Security Goodness

27 November 2020

Not everyone in a security department is acting in good faith, and they'll do what they can to bypass those who do. Here's how to spot them. [...]

Failing Toward Zero: Why Your Security Needs to Fail to Get Better

27 November 2020

Each security incident should lead to a successive reduction in future incidences of the same type. Organizations that fail toward zero embrace failure and learn from their mistakes. [...]

Do You Know Who's Lurking in Your Cloud Environment?

25 November 2020

A security researcher explains the dangers of poor visibility in the cloud and a new strategy to evaluate IAM exposure in Google Cloud Platform. [...]

Look Beyond the 'Big 5' in Cyberattacks

25 November 2020

Don't ignore cyber operations outside US and European interests, researcher says. We can learn a lot from methods used by attackers that aren't among the usual suspects. [...]

Prevention Is Better Than the Cure When Securing Cloud-Native Deployments

25 November 2020

The "OODA loop" shows us how to secure cloud-native deployments and prevent breaches before they occur. [...]

How Extreme Weather Will Create Chaos on Infrastructure

21 October 2020

Extreme weather events will soon become more frequent and widespread, devastating areas of the world that typically don’t experience them and amplifying the destruction in areas that do. [...]

BSIMM11 Observes the Cutting Edge of Software Security Initiatives

21 October 2020

In addition to helping an organization start an SSI, the BSIMM also gives them a way to evaluate the maturity of their SSI. [...]

Sustaining Video Collaboration Through End-to-End Encryption

21 October 2020

By infusing end-to-end encryption into any video strategy, it ensures not only the sustainability of the channel, but the businesses that rely on it. [...]

Will Robo-Helpers Help Themselves to Your Data?

8 September 2020

Are you sure that your robo-helpers are secure? [...]

Securing the Hybrid Workforce Begins with Three Crucial Steps

2 September 2020

The global shift to a remote workforce has redefined the way organizations structure their business models. [...]

A New Strategy for DDoS Protection: Log Analysis on Steroids

26 August 2020

Incorporating a data lake philosophy into your security strategy is like putting log analysis on steroids. [...]

COVID-19 Aside, Data Protection Regulations March Ahead: What To Consider

26 August 2020

Despite the COVID-19 pandemic, companies are obligated to comply with many laws governing data security and privacy [...]

SecurityWeek Extends ICS Cyber Security Conference Call for Presentations to August 31, 2020

12 August 2020

The official Call for Presentations (speakers) for SecurityWeek’s 2020 Industrial Control Systems (ICS) Cyber Security Conference, being held October 19 – 22, 2020 in SecurityWeek’s Virtual Conference Center, has been extended to August 31st. [...]

SecurityWeek to Host Cloud Security Summit Virtual Event on August 13, 2020

12 August 2020

SecurityWeek will host its 2020 Cloud Security Summit virtual eventon Thursday, August 13, 2020. [...]

Avoiding Fuelling the Cyber-Crime Economy

11 August 2020

What drives the cyber-crime economy, and how can organizations prevent their data being used as a criminal commodity? [...]

Australian SKA Pathfinder maps 3 million galaxies at lightning speed

1 December 2020

It took just 300 hours to survey the entire southern sky to create a new atlas of the Universe. [...]

Nearly 40% of rural homes globally do not have access to internet: ITU

1 December 2020

Which is almost double the inaccessibility compared to urban areas. [...]

HP Cyber Monday deals: Omen, Envy, Pavilion and more laptops

1 December 2020

The PC maker's Cyber Monday deals continue discounts on its laptops and desktops. [...]

Newegg Cyber Monday deals: HP Pavilion, Acer laptops, more

1 December 2020

Plenty of Cyber Monday deals on laptops and desktops from this leading tech etailer. [...]

Zoom's Q3 revenue up 367% as demand shows no signs of slowing

30 November 2020

Zoom's third quarter results crushed estimates and the company raised its outlook for fiscal 2021. [...]

Staples Cyber Monday deals: Echo Show 5, HP laptop, and more

30 November 2020

This office superstore's Cyber Monday deals offer savings on laptops, desktops, and Amazon Echo Show smart speakers. [...]

Microsoft Cyber Monday deals: Surface Pro 7, Book 3, more

30 November 2020

Top deals on Surface devices highlight Microsoft's Cyber Monday offerings. [...]

Amazon Cyber Monday deals: Echo, Kindle, Fire TV, and more

30 November 2020

The best deals on Amazon's Echo, Echo Dot, Kindle, Fire TV devices, Fire tablets, and more. Amazon said these discounts start Nov. 20 and will be available throughout Cyber Monday Week, too. [...]

Best Buy Cyber Monday deals: Galaxy Book, Chromebooks, more

30 November 2020

Here are the best Cyber Monday deals from the electronics chain on laptop, desktop, and tablet PCs. [...]

Phone Cyber Monday deals: Pixel 5, Note 20 Ultra, more

30 November 2020

The very best Cyber Monday 2020 deals on smartphones. [...]

Improving Data Security in Schools Part 1: Hybrid Learning

30 November 2020

This is the first piece in a series about education security challenges in 2020-2021. Education has been an underrated and understated hotbed for cybersecurity threats. School officials and security teams are tasked with not only protecting the personally identifiable information (PII) of students, faculty, staff, consultants and contractors, but also their health and financial data. […] The post Improving Data Security in Schools Part 1: Hybrid Learning appeared first on Security Intelligence. [...]

Chaos Engineering: Building the Next Generation of Cyber Ranges

30 November 2020

In one of our past posts on the same subject, we discussed how to apply chaos engineering principles to cyber war-games and team simulation exercises in broad brush strokes. In short, ‘chaos engineering’ is the discipline of working and experimenting with new features and changes on a system that’s already in live production. The purpose […] The post Chaos Engineering: Building the Next Generation of Cyber Ranges appeared first on Security Intelligence. [...]

How a Cybersecurity Training Program Can Recruit From Inside Your Business

24 November 2020

The cybersecurity industry is facing a shortage of trained and experienced professionals. Schools, universities and organizations are doing amazing things to encourage the next generation to pursue a cybersecurity career. However, there is still a huge cybersecurity talent shortage. With the right training, this can change. It is clear that organizations require cybersecurity training for […] The post How a Cybersecurity Training Program Can Recruit From Inside Your Business appeared first on Security Intelligence. [...]

Shadow IT: Addressing the Risks in Remote Work Environments

23 November 2020

Shadow IT can cause big problems for cybersecurity. The trouble is in the name: these connections exist in the shadows outside of IT (information technology) and security personnel’s knowledge. So, what can IT leaders do to address it in a time of growing remote workforces? What is Shadow IT? Shadow IT consists of information technology […] The post Shadow IT: Addressing the Risks in Remote Work Environments appeared first on Security Intelligence. [...]

Be Prepared for Increased DDoS Attacks Ahead of Black Friday

23 November 2020

Black Friday is prime time for distributed denial-of-service (DDoS) attacks, especially as retail goes online even more than usual in 2020. Forecasters predict e-commerce sales will soar to new heights this holiday season, increasing by as much as 35% year-over-year. This explosion in online shopping brings new challenges to retailers, including managing logistics and supply chains. […] The post Be Prepared for Increased DDoS Attacks Ahead of Black Friday appeared first on Security Intelligence. [...]

Security Culture: Putting Digital Literacy First in Your Company

20 November 2020

Building a security-first culture is as important for cybersecurity as investing in the right tech or creating and enforcing the right policies. Defense systems cannot provide 100% of the security organizations need as long as individual employees are making decisions about what to click on, who to trust and, at the leadership levels, where and how much […] The post Security Culture: Putting Digital Literacy First in Your Company appeared first on Security Intelligence. [...]

IBM CISO Perspective: Zero Trust Changes Security From Something You Do to Something You Have

19 November 2020

As the chief information security officer (CISO) for IBM, I’m often asked by peers and colleagues, “What do you think of Zero Trust?” Or, perhaps more often, “What strategies are you using to keep IBM protected?” First, many vendors in the security industry are looking at zero trust security from the wrong perspective. Security isn’t […] The post IBM CISO Perspective: Zero Trust Changes Security From Something You Do to Something You Have appeared first on Security Intelligence. [...]

Stay Calm: Your Supply Chain Cybersecurity Is Solid

19 November 2020

A little over 50 years ago, on July 20, 1969, humans first landed on the moon. Among the many amazing feats involved, it took just over eight years from the time President John F. Kennedy issued his famous challenge for the American space program to Neil Armstrong coming down the ladder with a small step […] The post Stay Calm: Your Supply Chain Cybersecurity Is Solid appeared first on Security Intelligence. [...]

Data Destruction: Importance and Best Practices

19 November 2020

As discussed in an earlier piece, data should be treated as a valuable currency. But there is another aspect to data handling that needs to be considered: data as a liability. Having your data fall into the wrong hands can be incredibly damaging to you and your team, which is all the more reason to […] The post Data Destruction: Importance and Best Practices appeared first on Security Intelligence. [...]

Cybersecurity Framework: How To Create A Resilience Strategy

19 November 2020

A cyber resilience framework, or cybersecurity framework, is a crucial component of modern-day business. In the face of rising threats from malware, phishing and high-tech threat actors, a cyber resilient company can position itself as a secure model for data protection customers can trust. Despite the growing security risks in a remote working world, many […] The post Cybersecurity Framework: How To Create A Resilience Strategy appeared first on Security Intelligence. [...]

UK to Ban New Huawei Gear Installations After Sept

30 November 2020

Wireless carriers in the U.K. won’t be allowed to install Huawei equipment in their high-speed 5G networks after September 2021, the British government said Monday, hardening its line against the Chinese technology company. read more [...]

WebKit Vulnerabilities Allow Remote Code Execution via Malicious Websites

30 November 2020

The WebKit browser engine is affected by several vulnerabilities, including ones that can be exploited for remote code execution by convincing the targeted user to visit a malicious website. WebKit is an open source engine that has been used by Safari and other Apple products, as well as many other apps for macOS, iOS and Linux. read more [...]

COVID-19 Is Requiring Us to Implement Cyber Distancing

30 November 2020

Reduce Your Risk by Practicing “Cyber Distancing” read more [...]

Dozens of Dormant North American Networks Suspiciously Resurrected at Once

30 November 2020

More than fifty networks in the North American region suddenly burst to life after being dormant for a long period of time, Spamhaus reveals. The Geneva-based international nonprofit organization is focused on tracking spam, phishing, malware, and botnets, and provides threat intelligence that can help filter spam and related threats. read more [...]

SD-WAN Product Vulnerabilities Allow Hackers to Steer Traffic, Shut Down Networks

30 November 2020

Researchers at cybersecurity consulting firm Realmode Labs have identified vulnerabilities in SD-WAN products from Silver Peak, Cisco, Citrix and VMware, including potentially serious flaws that can be exploited to steer traffic or completely shut down an organization’s network. read more [...]

Report Claims CIA Controlled Second Swiss Encryption Firm

30 November 2020

Swiss politicians have voiced outrage and demanded an investigation after revelations that a second Swiss encryption company was allegedly used by the CIA and its German counterpart to spy on governments worldwide. read more [...]

Vietnam-Linked Cyberspies Use New macOS Backdoor in Attacks

30 November 2020

Trend Micro’s security researchers have identified a new macOS backdoor that they believe is used by the Vietnamese threat actor OceanLotus. read more [...]

Media Production Giant Banijay Hit by Ransomware

30 November 2020

Banijay, one of the world’s largest media production and distribution companies, last week disclosed a cybersecurity incident that resulted in the theft of sensitive information. read more [...]

Financial Impact of Ransomware Attack on Sopra Steria Could Reach €50 Million

27 November 2020

European IT services provider Sopra Steria estimates that a recent ransomware attack will have a financial impact ranging between €40 million ($48 million) and €50 million ($60 million). read more [...]

U of Vermont Medical Center Continuing Cyber-Attack Recovery

27 November 2020

The University of Vermont Medical Center is continuing to recover from the cyber attack late last month that crippled access to electronic records at the Burlington hospital. read more [...]

Materialize scores $40 million investment for SQL streaming database

30 November 2020

Materialize, the SQL streaming database startup built on top of the open source Timely Dataflow project, announced a $32 million Series B investment today led by Kleiner Perkins with participation from Lightspeed Ventures. While it was at it, the company also announced a previously unannounced $8 million Series A from last year that had been […] [...]

Equity Monday: HungryPanda raises $70M, trade tensions, and cross-border VC

30 November 2020

Hello and welcome back to Equity, TechCrunch’s venture capital-focused podcast where we unpack the numbers behind the headlines. This is Equity Monday, our weekly kickoff that tracks the latest big news, chats about the coming week, digs into some recent funding rounds and mulls over a larger theme or narrative from the private markets. You can […] [...]

DoorDash aims to add $11 billion to its valuation during public offering

30 November 2020

This morning, DoorDash filed a new S-1 document, this time updating the market about the price it expects to command during its public offering. The food-delivery giant gave a range of $75 to $85 per share, which would revalue the company sharply higher than its final private price, set during a June Series H that […] [...]

Nikola shares drop as GM pulls plug on investment deal

30 November 2020

GM is backing away from an agreement to take a stake in electric automaker Nikola Corp, marking the collapse of a deal that has been problematic since it was announced just two months ago. Shares of Nikola plummeted more than 20% in pre-market trading Monday morning. GM has instead signed a non-binding memorandum of understanding […] [...]

Raspberry Pi Foundation releases case fan to prevent overheating

30 November 2020

The Raspberry Pi Foundation has released a new product today. It’s a tiny $5 fan combined with a small heatsink for the Raspberry Pi 4. It works with the official case, below the top cover. That accessory should prevent the Raspberry Pi from overheating. If you’re not familiar with the Raspberry Pi, it’s a cheap, […] [...]

EU lawmakers to push audio-visual sector on geoblocking

30 November 2020

European Union lawmakers are considering whether current rules aimed at limiting the practice of geoblocking across the bloc should be extended to cover access to streaming audio-visual content. Access to services like Netflix tends to be gated to individual EU Member States, meaning Europeans can be barred from accessing libraries of content offered elsewhere in […] [...]

ServiceNow is acquiring Element AI, the Canadian startup building AI services for enterprises

30 November 2020

ServiceNow, the cloud-based IT services company, is making a significant acquisition today to fill out its longer-term strategy to be a big player in the worlds of automation and artificial intelligence for enterprises. It is acquiring Element AI, a startup out of Canada. Founded by AI pioneers and backed by some of the world’s biggest […] [...]

Moderna claims 94% efficacy for COVID-19 vaccine, will ask FDA for emergency use authorization today

30 November 2020

Drugmaker Moderna has completed its initial efficacy analysis of its COVID-19 vaccine from the drug’s Phase 3 clinical study, and determined that it was 94.1% effective in preventing people from contracting COVID-19 across 196 confirmed cases from among 30,000 participants in the study. Moderna also found that it was 100% effective in preventing severe cases […] [...]

Apple on the hook for €10M in Italy, accused of misleading users about iPhone water resistance

30 November 2020

Apple’s marketing of iPhones as ‘water resistant’ without clarifying the limits of the feature and also having a warranty that excludes cover for damage by liquids has got the company into hot water in Italy. The Italian competition authority (AGCM) has informed the tech giant of an intent to fine it €10 million for commercial […] [...]

UK shrinks timetable for telcos to stop installing 5G kit from Huawei

30 November 2020

The UK government has squeezed the timetable for domestic telcos to stop installing 5G kit from Chinese suppliers, per the BBC, which reports that the deadline for installation of kit from so-called ‘high risk’ vendors is now September. It had already announced a ban on telcos buying kit from Huawei et al by the end […] [...]

Quick Guide — How to Troubleshoot Active Directory Account Lockouts

30 November 2020

Active Directory account lockouts can be hugely problematic for organizations. There have been documented instances of attackers leveraging the account lockout feature in a type of denial of service attack. By intentionally entering numerous bad passwords, attackers can theoretically lock all of the users out of their accounts. But what do you do if you are experiencing problems with account [...]

Digitally Signed Bandook Malware Once Again Targets Multiple Sectors

27 November 2020

A cyberespionage group with suspected ties to the Kazakh and Lebanese governments has unleashed a new wave of attacks against a multitude of industries with a retooled version of a 13-year-old backdoor Trojan. Check Point Research called out hackers affiliated with a group named Dark Caracal in a new report published yesterday for their efforts to deploy "dozens of digitally signed variants" of [...]

Become a White Hat Hacker — Get 10 Top-Rated Courses at 97% OFF

26 November 2020

Many of us here would love to turn hacking into a full-time career. To make that dream come true, you need to master your subject and earn some key certifications. To speed up this process, you might want to take a little guidance from the experts. Featuring 98 hours of content from top instructors, The Ultimate 2020 White Hat Hacker Certification Bundle is the ultimate launchpad for your career [...]

Interpol Arrests 3 Nigerian BEC Scammers For Targeting Over 500,000 Entities

26 November 2020

Three Nigerian citizens suspected of being members of an organized cybercrime group behind distributing malware, carrying out phishing campaigns, and extensive Business Email Compromise (BEC) scams have been arrested in the city of Lagos, Interpol reported yesterday. The investigation, dubbed "Operation Falcon," was jointly undertaken by the international police organization along with [...]

2-Factor Authentication Bypass Flaw Reported in cPanel and WHM Software

25 November 2020

cPanel, a provider of popular administrative tools to manage web hosting, has patched a security vulnerability that could have allowed remote attackers with access to valid credentials to bypass two-factor authentication (2FA) protection on an account. The issue, tracked as "SEC-575" and discovered by researchers from Digital Defense, has been remedied by the company in versions 11.92.0.2, [...]

China's Baidu Android Apps Caught Collecting Sensitive User Data

26 November 2020

Two popular Android apps from Chinese tech giant Baidu were temporarily unavailable on the Google Play Store in October after they were caught collecting sensitive user details. The two apps in question—Baidu Maps and Baidu Search Box—were found to collect device identifiers, such as the International Mobile Subscriber Identity (IMSI) number or MAC address, without users' knowledge, thus making [...]

Stantinko Botnet Now Targeting Linux Servers to Hide Behind Proxies

24 November 2020

An adware and coin-miner botnet targeting Russia, Ukraine, Belarus, and Kazakhstan at least since 2012 has now set its sights on Linux servers to fly under the radar. According to a new analysis published by Intezer today and shared with The Hacker News, the trojan masquerades as HTTPd, a commonly used program on Linux servers, and is a new version of the malware belonging to a threat actor [...]

Critical Unpatched VMware Flaw Affects Multiple Corporates Products

24 November 2020

VMware has released temporary workarounds to address a critical vulnerability in its products that could be exploited by an attacker to take control of an affected system. "A malicious actor with network access to the administrative configurator on port 8443 and a valid password for the configurator admin account can execute commands with unrestricted privileges on the underlying operating [...]

Why Replace Traditional Web Application Firewall (WAF) With New Age WAF?

23 November 2020

At present, web applications have become the top targets for attackers because of potential monetization opportunities. Security breaches on the web application can cost millions. Strikingly, DNS (Domain Name System) related outage and Distributed denial of service (DDoS) lead a negative impact on businesses. Among the wide range of countermeasures, a web application firewall is the first line [...]

Facebook Messenger Bug Lets Hackers Listen to You Before You Pick Up the Call

24 November 2020

Facebook has patched a bug in its widely installed Messenger app for Android that could have allowed a remote attacker to call unsuspecting targets and listen to them before even they picked up the audio call. The flaw was discovered and reported to Facebook by Natalie Silvanovich of Google's Project Zero bug-hunting team last month on October 6 with a 90-day deadline, and impacts version [...]

Containers Complicate Compliance (And What To Do About It)

30 November 2020

If you work within the security industry, compliance is seen almost as a dirty word. You have likely run into situations like that which @Nemesis09 describes below. Here, we see it’s all too common for organizations to treat testing compliance as a checkbox exercise and to thereby view compliance in a way that goes against its entire purpose....Read the whole entry... »Related StoriesEpisode 191: Shifting Compliance Left with Galen Emery of ChefReport: Critical Infrastructure Cyber Attacks A Global CrisisPodcast Episode 189: AppSec for Pandemic Times, A Conversation with GitLab Security VP Jonathan Hunt [...]

Exploitable Flaw in NPM Private IP App Lurks Everywhere, Anywhere

25 November 2020

A serious security flaw in a commonly used npm security module, private-ip, may affect hundreds of thousands of private and public applications. The post Exploitable Flaw in NPM Private IP App Lurks Everywhere, Anywhere appeared first on The Security Ledger. Related StoriesTV Maker TCL Denies Back Door, Promises Better ProcessSecurity Holes Opened Back Door To TCL Android Smart TVsPodcast Episode 189: AppSec for Pandemic Times, A Conversation with GitLab Security VP Jonathan Hunt [...]

TV Maker TCL Denies Back Door, Promises Better Process

20 November 2020

Chinese electronics giant TCL has acknowledged security holes in some models of its smart television sets, but denies that it maintains a secret "back door" that gives it control over deployed TVs. The post TV Maker TCL Denies Back Door, Promises Better Process appeared first on The Security Ledger. Related StoriesSecurity Holes Opened Back Door To TCL Android Smart TVsExploitable Flaw in NPM Private IP App Lurks Everywhere, AnywherePodcast Episode 189: AppSec for Pandemic Times, A Conversation with GitLab Security VP Jonathan Hunt [...]

Episode 194: What Happened To All The Election Hacks?

17 November 2020

Cyber attacks meant to disrupt the 2020 presidential election in the US were a foregone conclusion. But two weeks and more than 140 million votes later, predictions of cyber attacks on the U.S. presidential election have fallen flat. What happened? The post Episode 194: What Happened To All The Election Hacks? appeared first on The Security Ledger....Read the whole entry... » Related StoriesSpotlight Podcast: Taking a Risk-Based Approach to Election SecurityEpisode 192: It’s Showtime! Are Local Governments Ready To Turn Back Election Hacks?Public Sector Mega-Vendor Tyler Technologies Says It Was Hacked [...]

Security Holes Opened Back Door To TCL Android Smart TVs

12 November 2020

A report by independent researchers warns that TCL brand Android smart TVs contained serious and exploitable security holes. It also raises questions about the China-based electronics firm's ability to remotely access and control deployed devices. The post Security Holes Opened Back Door To TCL Android Smart TVs appeared first on The Security...Read the whole entry... »Related StoriesTV Maker TCL Denies Back Door, Promises Better ProcessExploitable Flaw in NPM Private IP App Lurks Everywhere, AnywherePodcast Episode 189: AppSec for Pandemic Times, A Conversation with GitLab Security VP Jonathan Hunt [...]

Episode 193: Repair, Cyber and Your Car with Assaf Harel of Karamba Security

5 November 2020

Assaf Harel of the firm Karamba Security joins us in the Security Ledger studio to discuss connected car security and the right to repair. The post Episode 193: Repair, Cyber and Your Car with Assaf Harel of Karamba Security appeared first on The Security Ledger. Related StoriesEpisode 194: What Happened To All The Election Hacks?Episode 192: It’s Showtime! Are Local Governments Ready To Turn Back Election Hacks?Episode 191: Shifting Compliance Left with Galen Emery of Chef [...]

Episode 192: It’s Showtime! Are Local Governments Ready To Turn Back Election Hacks?

28 October 2020

Election day is almost here. After years of warnings, are state and local governments ready for what Russia, Iran or any number of ransomware gangs have in store for them? The post Episode 192: It’s Showtime! Are Local Governments Ready To Turn Back Election Hacks? appeared first on The Security Ledger. Related StoriesEpisode 194: What Happened To All The Election Hacks?Spotlight Podcast: Taking a Risk-Based Approach to Election SecurityPublic Sector Mega-Vendor Tyler Technologies Says It Was Hacked [...]

Episode 191: Shifting Compliance Left with Galen Emery of Chef

22 October 2020

Galen Emery of Chef comes into the Security Ledger studios to talk about how security and compliance are "shifting left" with DEVSECOPS. The post Episode 191: Shifting Compliance Left with Galen Emery of Chef appeared first on The Security Ledger. Related StoriesPodcast Episode 189: AppSec for Pandemic Times, A Conversation with GitLab Security VP Jonathan HuntSpotlight Podcast: CTO Zulfikar Ramzan on RSA’s Next Act: Security Start-UpSpotlight Podcast: Taking a Risk-Based Approach to Election Security [...]

Episode 190: 20 Years, 300 CVEs. Also: COVID’s Lasting Security Lessons

11 October 2020

In this episode of the podcast (#190), sponsored by LastPass, Larry Cashdollar of Akamai joins us to talk about how finding his first CVE vulnerability, more than 20 years ago, nearly got him fired. Also: Katie Petrillo of LastPass joins us to talk about how some of the security adjustments we've made for COVID might not go away any time soon. ...Read the whole entry... » Related StoriesPodcast Episode 189: AppSec for Pandemic Times, A Conversation with GitLab Security VP Jonathan HuntEpisode 194: What Happened To All The Election Hacks?Spotlight Podcast: Taking a Risk-Based Approach to Election Security [...]

Opinion: Staying Secure Through 5G Migration

8 October 2020

To achieve their 5G transformation, telecommunications providers require security solutions and platforms built from the ground up for modern, dynamic business models. The post Opinion: Staying Secure Through 5G Migration appeared first on The Security Ledger. Related StoriesPKI Points the Way for Identity and Authentication in IoTReport: China Rides Cyber Attacks to Superpower StatusEpisode 185: Attacking COVID, Protecting Privacy [...]

Enterprising developers are emulating PS2 games on the Xbox Series S and X

30 November 2020

Photo by Tom Warren / The Verge Developers have now made it possible to emulate PS2 games on the Xbox Series X and S using the RetroArch emulator — something that the PlayStation 5, a successor to the PS2, can’t. Thanks to the Xbox Series X / S consoles’ “Developer Mode,” the emulation software can be added as a Universal Windows Application (UWA), allowing users to download a retail version of the emulation software directly to their console without tricky workarounds, so players don’t have to wait for a re-release to play an older favorite. While RetroArch is able to… [...]

Component failure in NASA’s deep-space crew capsule could take months to fix

30 November 2020

Engineers are racing to fix a failed piece of equipment on NASA’s future deep-space crew capsule Orion ahead of its first flight to space. It may require months of work to replace and fix. Right now, engineers at NASA and Orion’s primary contractor, Lockheed Martin, are trying to figure out the best way to fix the component and how much time the repairs are going to take. In early November, engineers at Lockheed Martin working on Orion noticed that a power component inside the vehicle had failed, according to an internal email and an internal PowerPoint presentation seen by The… [...]

The best Cyber Monday deals on tech

30 November 2020

Cyber Monday is here. It’s the last big shopping opportunity of 2020, and if you didn’t already take advantage of some deals that debuted over the weekend, now’s your chance. Every retailer has debuted at least a few new deals earlier than ever, and we’re focused on adding them here — in addition to the great Black Friday deals you can still get. As you’re expecting, there are some great deals on gaming laptops, wireless noise-canceling headphones, earbuds, tablets, and much more. We’ll be doing our best to keep this post updated during Cyber Monday, and stay tuned throughout Cyber… [...]

Here are the best AirPods deals you can get right now

30 November 2020

Apple’s AirPods Pro wireless earbuds | Photo by Chris Welch / The Verge Apple AirPods are among the most popular headphones on the market. They’re compact, easy to pair with your devices, and they offer reliable connectivity, which can sometimes be a problem with truly wireless earphones. So there’s a chance that you might be looking for a deal on them. Surprisingly, they’re no stranger to the occasional price cut. There are commonly discounts on even the more expensive AirPods Pro, which offer noise cancellation and better sound than the standard second-generation model. We’ll run through all three of the… [...]

The best Cyber Monday deals on Apple devices

30 November 2020

iPhone 12. | Photo by Vjeran Pavic / The Verge It’s rare that Apple slashes the prices on its own products. Fortunately, other retailers are putting a lot of Apple products on sale for Cyber Monday. A bunch of retailers like Amazon, Best Buy, B&H Photo, Walmart, and Woot are slashing the prices on everything from wearables to its wireless earbuds. Additionally, the online Apple store will have a special promotion on Friday, November 27th, and running until Monday, November 30th. The promotion will allow you to get up to $150 in an Apple gift card if you purchase an… [...]

Zoom once again quadrupled its revenue year over year

30 November 2020

Illustration by Alex Castro / The Verge Zoom is doing pretty well. The company reported $777.2 million in revenue during its third quarter, well over 4x its revenue from the same quarter last year. That’s now two quarters in a row that Zoom’s revenue has quadrupled. Zoom expects to quadruple its revenue year over year once again in the fourth quarter. The immense success should come as no surprise. Zoom became the go-to videoconferencing app at the start of the pandemic, and it’s managed to hold on to that spot even as other services — like Google Meet, Slack, and… [...]

Apple hires venture capitalist Josh Elman to help improve App Store discovery

30 November 2020

Illustration by Alex Castro / The Verge Apple has hired Josh Elman, a prominent venture capitalist and former vice president of product at stock-trading app Robinhood, to help it improve iOS app discovery in the App Store. Elman announced the news via his Twitter account on Monday, saying he’s also leaving his role as a board partner at the firm Greylock Partners and as a board member of prominent tech companies like Discord and Medium. Elman joining the App Store team may help improve the iPhone maker’s relationship with developers after a rather rough year in which Apple’s stewardship of… [...]

The best Cyber Monday deals on games

30 November 2020

The Last of Us Part II Let’s be honest: gaming is expensive, but the holiday season is a good time to take advantage of deals and sales and buy more than one game. Whether you are adding games to your personal library for your backlog, or you are planning to buy some games for a friend or family member, retailers like Amazon, GameStop, and Target have various discounts on titles. If you are planning to buy a PS5 or an Xbox Series X / S during this time, please keep in mind that both are in high demand, limited supply,… [...]

Best Cyber Monday deals on smart home tech

30 November 2020

Amazon Echo Show 8 | Photo by Dan Seifert / The Verge Smart homes are no longer just for the rich or digital experimenters. Your speakers, locks, lights, security cameras, and kitchen utensils can now be controlled via your phone or other digital device — and there are a lot of products to choose from. Many of which are going for less during this year’s Cyber Monday event. You can start with a simple smart speaker from Google, Amazon, or Apple, and then add some smart bulbs or a security camera. Use a smart display to make controlling your home… [...]

Here are the best Cyber Monday deals happening at Best Buy

30 November 2020

Photo by Avery White / The Verge Best Buy was one of the first retailers to launch Black Friday deals — all the way back in mid-October to go up against Amazon Prime Day. Now that Cyber Monday is here, Best Buy is back with a bunch of great sales that you can take advantage of. And, you can do all of your shopping online. Below, you’ll find the best deals currently happening at Best Buy. If you want to find out what’s happening at other retailers, check out our other Black Friday and Cyber Monday coverage. As new deals… [...]

Our Favorite Mattress Deals for Cyber Monday

1 December 2020

You should never buy a mattress online unless it’s discounted. Luckily, there are some modest holiday deals going on our favorite models. [...]

The Best Cyber Monday Phone, Tablet, and Watch Deals

1 December 2020

We found discounts on Samsung Galaxy phones, Google Pixels, Apple Watches, iPads, and some great accessories. [...]

The Best Cyber Monday Deals If You Work From Home

1 December 2020

Standing desks, monitors, keyboards—pad out your home office with this discounted gear. [...]

The Best Cyber Monday Deals on Self-Care and Sex Toys

30 November 2020

Do you need some extra relaxing? We found the best discounts on vibrators, skincare tools, and more. [...]

The Best Cyber Monday Home, Kitchen, and Parenting Deals

30 November 2020

We're spending more time in our houses than ever. Let us help you out with robot vacuums, smart dog collars, and more. [...]

Burn Off That Turkey With These Cyber Monday Fitness Deals

30 November 2020

These picks will help you get your sweat on, whether you're in a home gym, jogging down the road, or roughing it in the wilderness. [...]

These Are the Very Best Laptop Deals for Cyber Monday

30 November 2020

We scoured the web to find the best deals on notebooks, Chromebooks, external monitors, and more. [...]

Our Fave Headphone and Speaker Deals for Cyber Monday

30 November 2020

These are our favorite audio deals this Cyber Monday, from a pair of Beats to a smart speaker for your kitchen. [...]

20 Cyber Monday Deals on Earth-Friendly Gear

30 November 2020

Conserve water, save our national parks, and offset carbon emissions a bit with these sustainable picks. [...]

The Absolute Best Cyber Monday Deals Online

30 November 2020

Here are the very best discounts we’ve found in every category and at all the major retailers. [...]

Report: Google arguing to U.S. that forked Huawei OS is security threat

Related Posts

This Week in Apps: Snapchat clones TikTok, India bans 43 Chinese apps, more data on App Store commission changes

[Update: Back in stock] Pixel Stand gets major 50% discount on the Google Store for Black Friday

Save 10% on your next phone and trade in your old one with Decluttr