Smart cameras marketed under the Samsung brand name are vulnerable to attacks that allow hackers to gain full control, a status that allows the viewing of what are supposed to be private video feeds, researchers said. The remote code-execution vulnerability has been confirmed in the Samsung SmartCam SNH-1011, but the researchers said they suspect Read More …
Extortionists Wipe Thousands of Databases, Victims Who Pay Up Get Stiffed
Tens of thousands of personal and possibly proprietary databases that were left accessible to the public online have just been wiped from the Internet, replaced with ransom notes demanding payment for the return of the files. Adding insult to injury, it appears that virtually none of the victims have paid the ransom have gotten their Read More …
It’s official: US election systems designated as critical
On Friday, US Homeland Security Secretary Jeh Johnson designated election systems to be part of the nation’s critical US infrastructure. He said this move would better protect elections from increasingly sophisticated hacking. “Now more than ever, it is important that we offer our assistance to state and local election officials in the cybersecurity of Read More …
Millions exposed to malvertising that hid attack code in banner pixels
Millions of people visiting mainstream websites over the past two months have been exposed to a novel form of malicious ads that embed attack code in individual pixels of the banners. Researchers from antivirus provider Eset said “Stegano,” as they’ve dubbed the campaign, dates back to 2014. Beginning in early October, its unusually stealthy Read More …
US Navy warns 134,000 sailors of data breach after HPE laptop is compromised
Names and social security numbers accessed by “unknown individuals”—probe underway. Kelly Fiveash (UK) – 11/24/2016, 10:30 AM A data breach at the US Navy has exposed the social security numbers and names of more than 130,000 current and former sailors, officials confirmed late on Wednesday—adding that “unknown individuals” had accessed the sensitive information. Read More …
Meet PoisonTap, the $5 tool that ransacks password-protected computers
The perils of leaving computers unattended just got worse, thanks to a newly released exploit tool that takes only 30 seconds to install a privacy-invading backdoor, even when the machine is locked with a strong password. PoisonTap, as the tool has been dubbed, runs freely available software on a $5/£4 Raspberry Pi Zero device. Read More …
IoT Device Maker Vows Product Recall, Legal Action Against Western Accusers
A Chinese electronics firm pegged by experts as responsible for making many of the components leveraged in last week’s massive attack that disrupted Twitter and dozens of popular Web sites has vowed to recall some of its vulnerable products, even as it threatened legal action against this publication and others for allegedly tarnishing the company’s Read More …
Indiana county government shut down by ransomware to pay up
Madison County, Indiana, suffered a widespread ransomware attack that shut down virtually all county services last week. Over the weekend, the county government leadership decided to pay the ransom demands of the ring running the malware, which has not yet been identified publicly. “We’re following the directions of our insurance carrier,” Madison County Commissioner Read More …
What gives health execs the most anxiety? Ransomware and social engineering, among others
Research conducted by CHIME and AEHIS uncovers the need for new cybersecurity tools, help from federal agencies and incentives for information sharing. By Bernie Monegain November 01, 2016 Malware and ramsomware are top of mind for healthcare executives, according to a new survey from the College of Healthcare Information Management Executives and the Association Read More …
Computer Virus Cripples UK Hospital System
Citing a computer virus outbreak, a hospital system in the United Kingdom has canceled all planned operations and diverted major trauma cases to neighboring facilities. The incident came as U.K. leaders detailed a national cyber security strategy that promises billions in cybersecurity spending, new special police units to pursue organized online gangs, and the possibility Read More …