research Archives - Page 24 of 38

research

Google offers rewards for techniques that bypass their abuse, fraud, and spam systems

August 16, 2018

Google is expanding its vulnerability reward program again: the company wants to be notified about techniques that allow third parties to successfully bypass their abuse, …

Networking vendors patch against new cryptographic attack

August 15, 2018

Vulnerable IPSec IKE implementations used in Cisco, Huawei, ZyXel and Clavister networking devices can allow attackers to retrieve session keys and decrypt connections, …

Connecting the dots to North Korea as a threat adversary

August 14, 2018

Reports of malware campaigns invariably focus on two critical conclusions: attribution and who was the intended target of the attack. It is challenging to draw swift …

Vulnerabilities in smart card drivers open systems to attackers

August 13, 2018

Security researcher Eric Sesterhenn of X41 D-SEC GmbH has unearthed a number of vulnerabilities in several smart card drivers, some of which can allow attackers to log into …

Vulnerabilities in mPOS devices could lead to fraud and theft

August 10, 2018

Vulnerabilities in mPOS (mobile point-of-sale) machines could allow malicious merchants to defraud customers and attackers to steal payment card data, Positive Technologies …

IoT malware found hitting airplanes’ SATCOM systems

August 10, 2018

In 2014, IOActive researchers revealed security vulnerabilities they found in the most widely deployed satellite communications terminals and presented potential scenarios …

Smart cities are exposed to old-school threats

August 9, 2018

Spurred by the false alarm that made Hawaii residents fear for their lives earlier this year, IBM X-Force Red and Threatcare researchers have decided to test several smart …

A botnet of smart irrigation systems can deplete a city’s water supply

August 9, 2018

Ben-Gurion University of the Negev (BGU) cyber security researchers warn of a potential distributed attack against urban water services that uses a botnet of smart irrigation …

Should we add bugs to software to put off attackers?

August 8, 2018

A group of New York University researchers are testing a new approach to software security: adding more bugs to it instead of removing them. The idea is to “drown …

Researchers open source tools to identify Twitter bots at scale

August 6, 2018

Duo Security published technical research and methodology detailing how to identify automated Twitter accounts, known as bots, at a mass scale. Using machine learning …

Vulnerability research and responsible disclosure: Advice from an industry veteran

July 23, 2018

“Everything changes once you have to supervise and mentor and schedule and coordinate and keep in mind all the things others don’t. You often have to hold back your own …

Gargoyle: Innovative solution for preventing insider attacks

July 13, 2018

A group of researchers from UNSW Sydney, Macquarie University, and Purdue University has released a paper on a new and very promising network-based solution for preventing …

research

Google offers rewards for techniques that bypass their abuse, fraud, and spam systems

Networking vendors patch against new cryptographic attack

Connecting the dots to North Korea as a threat adversary

Vulnerabilities in smart card drivers open systems to attackers

Vulnerabilities in mPOS devices could lead to fraud and theft

IoT malware found hitting airplanes’ SATCOM systems

Smart cities are exposed to old-school threats

A botnet of smart irrigation systems can deplete a city’s water supply

Should we add bugs to software to put off attackers?

Researchers open source tools to identify Twitter bots at scale

Vulnerability research and responsible disclosure: Advice from an industry veteran

Gargoyle: Innovative solution for preventing insider attacks

Don't miss

CISO-approved strategies for software supply chain security

Phishers use encrypted file attachments to steal Microsoft 365 account credentials

New Buhti ransomware uses leaked payloads and public exploits

Strengthening travel safety protocols with ISO 31030

Phishing campaign targets ChatGPT users