The need to patch Cisco Data Center Network Manager for Nexus switches becomes even more urgent.
Federal Judge Gives Final Approval to Class-Action Settlement Over 2017 BreachA federal judge in Atlanta has given final approval to a settlement that resolves a class-action lawsuit against credit bureau Equifax, which in 2017 suffered one of the largest data breaches in history. The minimum cost to Equifax will be $1.38 billion.
It was the year of unicorn sales, the launch of 5G, and enthusiasm for e-commerce, amid government crackdowns.
1 day ago Google removes WhatsGap from app storeZDNet View Synopsis+1
The search engine giant claims the 'sensitive content' on WhatsGap violated the company's content policy.
1 day ago Top Euro court tells cops, spies that yelling 'national security' isn't enough to force ISPs to hand over massive piles of people's private dataThe Register View Synopsis+1
Decision is preliminary and unenforced, though a good start
Analysis In a massive win for privacy rights, a preliminary ruling from the European Court of Justice (ECJ) has made clear that national security concerns do not override citizens' data privacy. Thus, ISPs should not be forced to hand over personal information without clear justification.…
Proposed Fund Would Drive More Than $1 Billion Into Western-Based AlternativesOne gaping hole in the U.S. government's push to counter Chinese-built 5G telecommunications gear remains the lack of alternatives. But a bipartisan group of senators is seeking a $1 billion fund to create trusted, Western-built options.
Several proof-of-concept (PoC) exploits have already been created - and some of them have been made public - for CVE-2020-0601, the crypto-related Windows vulnerability that Microsoft patched recently after being notified by the U.S. National Security Agency.
IE zero-day connected to last week's Firefox zero-day.
3 hours ago 'Friendly' hackers are seemingly fixing the Citrix server hole - and leaving a nasty present behindThe Register View Synopsis+1
Congratulations, you've won a secret backdoor
Hackers exploiting the high-profile Citrix CVE-2019-19781 flaw to compromise VPN gateways are now patching the servers to keep others out.…
WeLeakInfo Website Taken Down in International Law Enforcement Operation
3 hours ago Microsoft Introduces Free Source Code AnalyzerSecurityWeek View Synopsis+1
Microsoft this week announced a new source code analyzer designed to identify interesting characteristics of code.
A threat group targeting the recently disclosed critical vulnerability in Citrix Application Delivery Controller (ADC) is installing their own backdoor while cleaning up other malware infections and blocking others from exploiting the vulnerability, FireEye has discovered.
3 hours ago 'Nice guy' hackers are seemingly fixing the Citrix server hole, but leaving a nasty present behindThe Register View Synopsis+1
Leave the backdoor. Take the exploit.
Hackers exploiting the high-profile Citrix CVE-2019-19781 flaw are now patching the servers to keep others out.…
Visa is actively going after Magecart groups, but also deploying new technologies to safeguard payment card data.
4 hours ago 'WeLeakInfo' Website Shut DownInfoRiskToday View Synopsis+1
Site Provided Access to 12 Billion Personal Records, Police AllegeLaw enforcement agencies in five countries have shut down WeLeakInfo.com, which allegedly provided cybercriminals with access to over 12 billion personal records culled from 10,000 data breaches.
IoT security is becoming a top-of-mind priority in the personal care industry. Essence group believes it has the solution and had it on display at CES 2020.
CES 2020: A "hacked" robot was on display to demonstrate how SigmaDots serverless architecture is poised to fend off IoT security threats.
5 hours ago Live Webinar | Changing the Equation: Ensuring Faster Payments Do NOT Equate to Faster FraudInfoRiskToday View Synopsis+1
How Another Firm's Breach Could Impact Your Organization.Recommendations for protecting your organization from ripple events.
By inserting themselves into business emails among employees, cybercriminals can trick victims into wiring money or sharing payment information, says security firm Barracuda Networks.
Country's government agencies must resolve repeated lapses and plug weaknesses in IT controls, especially given the speed at which new IT systems are implemented, says government committee responsible for assessing how public funds are used.
One Irishman and one Dutchman both nicked
Two men have been arrested after Britain's National Crime Agency and its international pals claimed the takedown of breached credentials-reselling website WeLeakInfo.…