security Archives - Help Net Security

(IN)SECUREMagazine

Android Pie: Security and privacy changes

August 7, 2018
Android
mobile apps
privacy

It is official: “Android P” is Android Pie, and it comes with a variety of new capabilities and security and privacy changes. The newest version (9.0) of the …

Google Chrome

Chrome users get Site Isolation by default to ward off Spectre attacks

July 13, 2018
browser
Chrome
Google

Site Isolation, the optional security feature added to Chrome 63 late last year to serve as protection against Spectre information disclosure attacks, has been enabled by …

Bug

What motivates bug hunters?

November 16, 2017
bug bounty
bug hunting
Bugcrowd

Crowdsourced security penetration testing outfit Bugcrowd has released its second annual “Mind of a Hacker” report, to provide insight into bug hunters’ …

cyborg

Security, privacy issues we need to solve before non-medical implants become pervasive

The cybernetic revolution is happening, and it’s imperative that civil liberties and privacy issues are addressed by system designers, innovators, regulators, and …

files

Disqus, Forrester Research suffer data breach

Popular blog comment hosting service Disqus and market research company Forrester Research announced late on Friday that they’ve suffered a breach. While the latter was …

Securing the Internet of Things

Review: Securing the Internet of Things

About the authors Shancang Li is a senior lecturer in the cyber security research unit, Department of Computer Science and Creative Technologies at University of the West of …

structure

McAfee aims to strengthen human-machine defense teams

“Today’s security teams are facing 244 new cyber threats every minute, amid a serious talent shortage. Siloed security, without automation, managed by overwhelmed teams is not …

GMV checker

Critical RCE flaw in ATM security software found

Researchers from Positive Technologies have unearthed a critical vulnerability (CVE-2017-6968) in Checker ATM Security by Spanish corporate group GMV Innovating Solutions. The …

chess

Deception security doesn’t have to be onerous or expensive

When talking about deception security, most infosec pros’ mind turns to honeypots and decoy systems – additional solutions that companies have to buy, deploy, and …

Double Robotics Telepresence Robot

Double Robotics Telepresence Robot can be hacked

Rapid7 researchers have discovered a number of vulnerabilities in the Double Robotics Telepresence Robot, the company’s iPad-based telepresence device that looks a bit …

Don't miss

open lock

Networking vendors patch against new cryptographic attack

firewall

Chaos and confusion reign with existing firewall infrastructure

patch

August 2018 Patch Tuesday: Microsoft fixes two actively exploited zero-days

DDoS

DDoS attackers increasingly strike outside of normal business hours

Office 365

New Office 365 phishing attack uses malicious links in SharePoint documents

gap

Microsoft ADFS flaw allows attackers to bypass MFA safeguards

location services

Turning off Location History doesn’t prevent Google from knowing your location

North Korea

Connecting the dots to North Korea as a threat adversary

business

Three A’s of SaaS adoption, and why every company goes through them

risk

10,644 vulnerabilities disclosed in the first half of 2018

Election systems should be considered critical infrastructure

smart card

Vulnerabilities in smart card drivers open systems to attackers