eBook: 5 Ways To Get More Sales Out of Marketing [Free Download]
Welcome Guest | Sign In
TechNewsWorld.com
Rugged Turing Phone to Run on Sailfish OS, Not Android
February 4, 2016
Turing Robotic Industries this week announced that it has uninstalled Google's Android mobile platform in favor of Jolla's Sailfish OS in its yet-to-appear secure smartphone. The Turing Phone, molded from a single unit of the Liquidmorphium liquid-metal alloy, is designed to be more durable to absorb shocks and prevent screen breakage. Preorder pricing starts at $610.
Europe, US Cut 11th Hour Safe Harbor Deal
February 3, 2016
Europe and the United States on Tuesday announced a new Safe Harbor agreement that neutralizes the threat of enforcement actions against domestic companies handling overseas data. The EU-US Privacy Shield aims to protect the privacy of data belonging to European citizens when it's handled by U.S. companies. It "will protect the fundamental rights of Europeans," said EU Commissioner Vera Jourová.
Harvard Researchers Debunk Warnings of Terrorists 'Going Dark'
February 2, 2016
The Berkman Center for Internet & Society at Harvard University on Monday released a report that questions the so-called "going dark" phenomenon. The U.S. government and surveillance and law enforcement agencies have been calling for an end to encryption because they say it lets terrorists communicate with impunity and is responsible for the inability of law enforcement to monitor communications.
Microsoft's Project Natick: Data Centers Better Down Where It's Wetter?
February 1, 2016
Microsoft on Monday unveiled Project Natick, a research initiative aimed at developing underwater data centers that could be built near coastal cities. The project is still in its infancy, but Microsoft built one test facility last year. It was deployed 30 feet underwater off the California coast in August and was tested through December, when it was returned to the Microsoft campus.
Oracle Pulls Plug on Java Browser Plug-In
January 30, 2016
Oracle earlier this week announced its decision to scrap its Java browser plug-in. The plug-in, a frequent target of hackers, won't be included in the next version of JDK 9, which is expected to ship in September. Oracle's action was motivated by browser makers' withdrawal of support for the plug-in. Developers of applications that depend on it need to consider alternatives, the company said.
FDA Guidelines Target IoT Medical Device Security
January 28, 2016
The U.S. Food and Drug Administration last week took a step toward addressing the threat the Internet of Things poses to patients and their data by releasing some proposed guidelines for managing cybersecurity in medical devices. "Networked medical devices, like other networked computer systems, incorporate software that may be vulnerable to cybersecurity threats," the FDA says in its proposal.
Suggestion Glitch Crashes Safari Browser
January 27, 2016
Apple's Safari browser has been crashing on Macs and iOS devices when users launch a search through its address bar, according to reports on Wednesday. OS X and iOS users worldwide have been affected, according to The Verge, which confirmed the problem on several iOS devices and at least one OS X machine. One of the first mentions of the glitch was a tweet by app developer Phillip Caudell.
Panel: Time Is Running Out to Address Killer Robot Threat
January 25, 2016
The rise of autonomous war machines is outpacing policies and technological countermeasures, weapons and robotics experts warned last week at the World Economic Forum. Autonomous weaponry potentially is a $20 billion industry that has taken root in 40 countries, said BAE Systems Chairman Roger Carr. He was one of four panelists at the session titled "What If: Robots Go to War?"
California Bill Would Ban Encrypted Smartphone Sales
January 25, 2016
California State Assemblyman Jim Cooper last week introduced a bill seeking to ban the sale of smartphones that include unbreakable encryption. It would require smartphones made on or after Jan. 1, 2017, and sold in California to be capable of being decrypted and unlocked by manufacturers or OS providers. Knowingly failing to comply would subject a seller or lessor to a fine of $2,500 per device.
Snap-Happy Trojan Targets Linux Servers
January 22, 2016
Security researchers at Dr.Web on Tuesday revealed details of the Trojan Linux.Ekoms.1, which takes screen shots and records audio to acquire sensitive and personal information, mostly from Linux servers. Malware for Linux is becoming more diverse and includes spyware programs, ransomware and Trojans designed to carry out distributed denial-of-service attacks, according to Dr.Web.
Chrome Browser to Blaze With Brotli
January 21, 2016
Google Chrome users will get faster Web access soon through the Brotli open source compression algorithm, which has been rolled out to the M49 release of Chrome. That's in Canary -- which is designed for devs -- so it's not clear when Brotli will surface in the browser. It gives 20 to 26 percent higher compression ratios over its Zopfli algorithm and provides faster page loads, the company said.
GM Bug Program Gets Mixed Notices
January 21, 2016
Two white-hat hackers, Charlie Miller and Chris Valasek, made headlines last year when they demonstrated how they could hijack the control systems of a moving motor vehicle over the Internet. The move got the attention of the auto industry, and last week General Motors put in place a program to encourage more digital dabblers to alert the company when they find bugs in GM vehicles.
Digital Ad Fraud Could Top $7 Billion in 2016
January 20, 2016
Bot fraud will cost digital advertisers $7.2 billion worldwide this year, according to a report released Tuesday by the Association of National Advertisers. For the "2015 Bot Baseline" report, 49 ANA members deployed detection tags from White Ops on their digital ads to measure bot fraud over 61 days. Bot fraud impacted up to 37 percent of ads, compared to up to 22 percent in a study in 2014.
Ukraine Mounts Investigation of Kiev Airport Cyberattack
January 20, 2016
Ukrainian officials earlier this week said they had launched a probe into the source of a cyberattack that targeted a Kiev Airport. The attack may be related to the BlackEnergy malware attacks that recently targeted Ukrainian infrastructure facilities, apparently from Russia. CERT-UA on Monday warned system administrators to be on the alert for the presence of BlackEnergy malware.
FTC Issues Regulatory Warning on Big Data Use
January 20, 2016
The Federal Trade Commission is extending its regulatory reach to the e-commerce impact of big data. For years, the FTC has asserted vigorously its authority to apply existing consumer protection laws to emerging developments in the IT realm. Now it is signaling that it will apply that same vigor to big data under the regulatory authority it possesses through the FTC Act and other laws.
Cook Slams Door on Backdoor Discussions
January 19, 2016
Privacy advocates from around the globe have taken heart from reports that Apple CEO Tim Cook pushed hard against the Obama administration's efforts to reach a compromise on encryption during a recent Silicon Valley meeting. Cook reportedly lashed out at administration officials who were calling for a way to grant law enforcement officials limited, backdoor access to computer systems.
Phishing Attack Could Net LastPass Credentials
January 19, 2016
LastPass has boosted security for its users after a security researcher alerted the company of a phishing attack he devised to steal users' login and two-factor authentication credentials. Sean Cassidy, CTO of Praesidio, demonstrated the phishing attack, which he calls "LostPass," last week at ShmooCon. "We think this is a very serious problem," said Praesidio CEO Edgardo Nazario.
OpenSSH Flaw Could Leak Crypto Keys
January 15, 2016
Qualys on Thursday reported a flaw in the OpenSSH client that could let a hacker steal the client's private crypto keys. The bug is the result of an undocumented feature called "roaming" that exists in version 5.4 and above. It's one of two vulnerabilities that a malicious SSH server or a trusted but compromised server can exploit, Qualys said. The other is a heap-based buffer overflow.
Privacy as a Service Advocates Promise Better Data Protection
January 14, 2016
There's been a lot of wailing and gnashing of teeth about the Sisyphean task of protecting privacy in the Digital Age, but that hasn't stopped innovators from searching for ways to preserve it. One of the latest ideas to emerge in the field is Privacy as a Service. As with many emerging technologies, the definition of "PaaS" (not to be confused with Platform as a Service) is in flux.
Black Duck Intros Container Scanning
January 13, 2016
Black Duck Software on Tuesday announced it has added to its Hub software container-scanning capabilities that let users map open source security flaws for applications, Linux distros, and other software in Docker and other Linux containers. Adding a containerized scanner to a Docker host enables automatic identification of known open source vulnerabilities in all layers of containers on the host.
Administration, Silicon Valley Bigs Meet to Strategize on ISIS
January 13, 2016
Obama administration officials last week met with senior executives from several leading Silicon Valley firms in a summit on how to combat the proliferation of terrorist communications on social media networks. Attorney General Loretta Lynch, FBI Director James Comey, and John Carlin, assistant attorney general for national security, represented the DoJ.
US Army Marches to the Cloud
January 13, 2016
The U.S. Army may be in the walking phase of its plan to shift major portions of its information technology resources to the cloud, but a recent contracting initiative could move the service up to a jogging pace by the end of the year. The Army's progress in migrating much of its IT capabilities to the cloud was characterized as a crawl during 2015.
Microsoft Puts Legacy IE Browsers Out to Pasture
January 12, 2016
Microsoft has ended technical support for the older versions of its legacy Internet Explorer browser, placing at risk millions of users who -- despite extensive warnings -- have not upgraded to the latest version of Internet Explorer or the free install of Windows 10. The support expiration means that customers using IE 8, 9 and 10 no longer will receive technical support and security updates.
ProPublica Launches News Site on Dark Web
January 12, 2016
ProPublica last week reportedly launched what's believed to be the first major news site on the dark Web. The site's purpose reportedly is to maximize the privacy of readers. The Tor hidden service goes beyond SSL in that visits to sites are hidden from eavesdroppers and ISPs. Anyone monitoring Tor nodes can track visitors who use a Tor browser to view ProPublica's regular site.
Taxpayer Advocate Blasts IRS' Planned Customer Service Revamp
January 8, 2016
The Taxpayer Advocate Service has released its annual report to Congress. Among other things, it warns that a five-year plan to revamp IRS operations may result in a substantial reduction in telephone and face-to-face interactions with taxpayers. "TAS has been left with the distinct impression that the IRS's ultimate goal is to get out of the business of talking with taxpayers," the report states.
Major Security Flaw Found in Silent Circle's Blackphone
January 7, 2016
Security researchers at SentinelOne on Wednesday revealed a vulnerability they discovered in the Blackphone. The flaw -- an obscure socket -- lets an attacker take over and control communications on the Blackphone, a highly secure Android smartphone Silent Circle developed and marketed in reaction to news of government surveillance of people's communications.
Iranian Cyberattack on American Dam Viewed As Rarity
January 7, 2016
Just days before Christmas, a rare event occurred: the report of a successful intrusion into America's infrastructure by overseas hackers. The event -- penetration of the control system of a dam 20 miles from New York City -- happened more than two years ago but wasn't made until last month. Cloaking such incidents in secrecy is standard operating procedure for industries that use control systems.
FTC Debates Cybersecurity Injury Standard
January 5, 2016
The U.S. Federal Trade Commission is engaged in an internal struggle over how it should assess the effect on consumers when businesses fail to provide proper e-commerce security. The outcome of the debate will have a significant impact on the FTC's ability to initiate cybersecurity violation cases. The legal issue could spill over to federal courts or even Congress for resolution.
Security Execs Sweat Insider Threats
December 31, 2015
Insider threats are becoming increasingly worrisome to corporate security executives. That is one of the findings in a survey of C-level businesspeople Nuix released last week. "The insider threat seems to be a bigger concern this year than it was in previous years," said Nuix's Keith Lowry. "People are recognizing that it is a significant weakness that has yet to be fully addressed."
Backspace Flaw Enables Linux Zero-Day Attack
December 28, 2015
Researchers last week revealed a zero-day flaw that lets attackers take over a Linux system by pressing the backspace key repeatedly. Pressing backspace 17 to 20 times will overwrite the highest byte of the return address of the grub_memset() function, ultimately causing a reboot by redirecting control flow to the 0x00eb53e8 address, according to the Cybersecurity Group at the Universitat Politecnica de Valencia.
See More Articles in Cybersecurity Section >>
Facebook Twitter LinkedIn Google+ RSS
What is your reaction to the rumored
4-inch iPhone?
I'm in -- I'd love to have a smaller iPhone.
I prefer a larger iPhone, but it's good to have more options.
I expect innovation from Apple -- seems it's running out of ideas.
I'm not interested in an iPhone of any size.
Try MailChimp Pro