Article Trunk



Posts Tagged ‘computer security’

Symantec offers free anti-spoofing services to US political campaigns and election groups

Symantec is the latest private security company to offer its expertise to vulnerable political targets on the house. Today the company announced that it would extend its “Project Dolphin” service (dolphins eat phish, get it) to political campaigns, candidates and election officials, all “prime target[s] for malicious actors seeking to influence the outcome of the ...

Surveillance camera vulnerability could allow hackers to spy on and alter recordings

In newly published research, security firm Tenable reveals how popular video surveillance camera software could be manipulated, allowing would-be attackers the ability to view, disable or otherwise manipulate video footage. The vulnerability, which researchers fittingly dubbed “Peekaboo,” affects software created by NUUO, a surveillance system software maker with clients including hospitals, banks, and schools around ...

British Airways breach caused by credit card skimming malware, researchers say

A security firm says credit card skimming malware installed by hackers on British Airways’ website a few months ago was to blame for a data breach of over 380,000 credit cards. Payments through the airline’s website and mobile app were stolen over the three week period, but a key clue was that travel information wasn’t ...

Prosecutors charge Russian accused of hacking JP Morgan, Dow Jones

New York prosecutors have extradited a Russian hacker accused of breaking into JP Morgan, one of the world’s largest banking institutions. Moscow resident Andrei Tiurin, 35, was charged Friday after he was extradited from neighboring Georgia, with the theft of over 80 million records from the bank in 2014. The alleged hacker is said to have ...

Sonatype raises $80 million to build out Nexus platform

Sonatype, a cybersecurity-focused open-source company, has raised $80 million from investment firm TPG. The company said the financing will help extend its Nexus platform, which it touts as an enterprise ready repository manager and library, which among other things tracks code and helps to keep everything in the devops pipeline up-to-date and secure. It’s that ...

ProtonMail names one of the attackers behind a major DDoS this summer

End-to-end encrypted email service ProtonMail has named one of the attackers behind a sustained distributed denial of service attack (DDoS) it suffered earlier this summer. The attack took its email service offline for up to several minute long stretches at a time, even with mitigation measures in place. It says the UK’s National Crime Agency ...

Tesla’s new bug bounty protects hackers — and your warranty

Good news if you’re into hacking your car, you probably won’t void your warranty. The electric car giant confirmed the move in a tweet this week. Tesla’s product security policy now says that if, through “good-faith security research” you brick your car, the company will reflash the software over-the-air or at a service center. It’s ...

Watchdog says 2020 Census systems are riddled with security flaws

With a census just two years away, the Census Bureau has a cybersecurity problem. That’s a key takeaway from the congressional watchdog, the Government Accountability Office, which oversees the government’s spending. In a new report published Thursday, the non-partisan agency said that the government’s Census Bureau has only a few months to fix thousands of ...

Air Canada confirms mobile app data breach

Air Canada has confirmed a data breach on its mobile app, which the airline said may affect 20,000 people — or 1 percent — of its 1.7 million app users. The company said it had “detected unusual log-in behavior” occurring between August 22-24. According to an email to customers, attackers may have accessed basic profile ...

Abbyy leaked 203,000 sensitive customer documents in server lapse

Abbyy, a maker of optical character recognition software, has exposed a trove of sensitive customer documents after a database server was left online without a password. The exposed server was found by former Kromtech security researcher Bob Diachenko, who now works independently. In a blog post shared prior to publication, he said one of the ...