News
now browsing by tag
Intel didn’t #tell US #cyber security officials about the #Meltdown and #Spectre flaws until after it #leaked in news #reports
Source: National Cyber Security News
Intel did not inform U.S. cyber security officials of the so-called Meltdown and Spectre chip security flaws until they leaked to the public, six months after Alphabet Inc notified the chipmaker of the problems, according to letters sent by tech companies to lawmakers on Thursday.
Current and former U.S. government officials have raised concerns that the government was not informed of the flaws before they became public because the flaws potentially held national security implications. Intel said it did not think the flaws needed to be shared with U.S. authorities as hackers had not exploited the vulnerabilities.
Intel did not tell the United States Computer Emergency Readiness Team, better known as US-CERT, about Meltdown and Spectre until Jan. 3, after reports on them in online technology site The Register had begun to circulate.
US-CERT, which issues warnings about cyber security problems to the public and private sector, did not respond to a request for comment.
Details of when the chip flaws were disclosed were detailed in letters sent by Intel, Alphabet and Apple Inc on Thursday in response to questions from Representative Greg Walden, an Oregon Republican who chairs the House Energy and Commerce Committee.
View full post on National Cyber Security Ventures
Hacker #tricks official #Vatican News site into #declaring #God an #onion
Source: National Cyber Security News
A Belgian security researcher has discovered a vulnerability on the website of Vatican News — the official news publication of the Holy See — that could allow anyone to publish their own fake news.
The vulnerability was discovered by independent researcher Inti De Ceukelaire. Proving his work, he tweeted a picture of Vatican News falsely stating that Pope Francis had declared God to be an onion.
De Ceukelaire (who we’ve previously profiled) has been behind some high profile discoveries. In September, he disclosed ways to access corporate messaging apps like Slack and Yammer by exploiting publicly-accessible help-desks and bug trackers.
Last February, De Ceukelaire earned notoriety after he redirected several links in Donald Trump’s old tweets to content that would otherwise be embarrassing for the now-occupant of 1600 Pennsylvania Avenue. He did this by identifying websites Trump had tweeted out whose domain names had been allowed to expire. He then re-registered them under his own name.
Keeping with the Trump theme, he used publicly accessible online information to find the contact details of Melania Trump. He used this to invite FLOTUS to his home town.
In the case of Vatican News, De Ceukelaire encountered an unpatched cross site scripting (XSS) vulnerability, and exploited it to inject the blatantly fake news.
View full post on National Cyber Security Ventures
Iranian #Hackers Have Set Up a #News Outlet to #Court Possible #Targets, #Security Firm Says
An Iranian cyber espionage group known as Charming Kitten is believed to be behind a campaign targeting academic researchers, human rights activists, media outlets and political advisors focusing on Iran, according to a report published earlier this week by Israel-based threat intelligence company ClearSky Cyber Security. The group has also set up a news outlet […]
View full post on AmIHackerProof.com | Can You Be Hacked?
Hacking and fake news cast shadows over German election
Source: National Cyber Security – Produced By Gregory Evans
The Bundestag break-in occurred in May 2015, without a window being smashed. The intruders to the German parliament were not looking for anything tangible, nor were they even in Berlin. They wanted data and they got it: an estimated 16 gigabytes worth. This was no random smash-and-grab: the hackers sorted…
The post Hacking and fake news cast shadows over German election appeared first on National Cyber Security Ventures.
View full post on National Cyber Security Ventures
PayPal Phishing Scam News: Fraudulent Scheme Redirects Users to Obtain Personal Information, Photo
Source: National Cyber Security – Produced By Gregory Evans
This phishing scam reportedly involves the redirection of PayPal users to a different website (hxxps://hellopc[.]co[.]nz/wp-includes/random_compat/error_polyfil.php) that will present a false login page. According to PhishMe, the page will only appear legitimate but is actually a fraudulent scheme. Once PayPal users input their details, the hackers are able to obtain their…
The post PayPal Phishing Scam News: Fraudulent Scheme Redirects Users to Obtain Personal Information, Photo appeared first on National Cyber Security Ventures.
View full post on National Cyber Security Ventures
China Blocks Entertainment News Sites, Cites Cybersecurity Concerns
Source: National Cyber Security – Produced By Gregory Evans
The government has shut down multiple social media outlets in what some citizens are calling a real life version of George Orwell’s 1984. The newly enacted Cybersecurity Law, with its ‘ideological control’ guidelines, is worrying locals and foreign companies alike. Major social media platform operators including Weibo, WeChat, Youku, Baidu…
The post China Blocks Entertainment News Sites, Cites Cybersecurity Concerns appeared first on National Cyber Security Ventures.
View full post on National Cyber Security Ventures
Critical patches from multiple vendors, Ubuntu forums hacked: Security news IT leaders need to know
Source: National Cyber Security – Produced By Gregory Evans
This week’s highlights also include Adobe patches, Drupal bugs and fixes from both Oracle and Cisco. Critical bugs in Drupal The core product and three contributed modules for the popular open source content management system Drupal contain critical flaws. Drupal said in its advisory that RESTful Web Services, Coder, and Webform Multiple File Upload are […]
The post Critical patches from multiple vendors, Ubuntu forums hacked: Security news IT leaders need to know appeared first on National Cyber Security.
View full post on National Cyber Security
What do Fox News and North Korea Have in Common?
Source: National Cyber Security – Produced By Gregory Evans
Greta Van Susteren of Fox News and Pyongyang seem to be in agreement, or at least to share assumptions about the puppet-puppetmaster nature of the U.S.-ROK relationship. ”Why won’t South Korea back us 100%? We don’t need 95%, we need 100%” she whines on her on her Gretawire blog published by Fox News. Her assessment of […] View full post on 38 North: Informed Analysis of North Korea
The post What do Fox News and North Korea Have in Common? appeared first on National Cyber Security.
View full post on National Cyber Security
11 News Investigates: Who’s watching your kids?
Little Rock police arrested 45-year-old Ronald Thrower on December 16. He’s accused of forcing a 4-year-old and 5-year-old child to each perform sex acts on him while at Luv N Care Day Care, an in-family home childcare business in west Little Rock.
THV11 made multiple attempts to reach the childcare’s licensed owner, Ruthie Clayton, but were not returned. Meanwhile, state Department of Human Services Communications Director, Amy Webb agreed to speak with THV11’s Phil Buck about the case.
“There weren’t any red flags in that center’s history,” said Webb. “It’s my understanding that he was a family friend, and she had an appointment that she had to go to.
The post 11 News Investigates: Who’s watching your kids? appeared first on Parent Security Online.
View full post on Parent Security Online
D5 Creation