Month: October 2014
-
Zero Day Weekly: CurrentC hacked, White House breached, APT28 exposed, Verizon shamed
Originally published in ZDnet. Welcome to Zero Day's Week In Security, our roundup of notable security news items for the week ending October 31, 2014. Covers enterprise, controversies, reports and more. This week, WalMart's answer to Apple Pay and Google wallet got spanked with a breach in development, the White House played down that its… Read more…
-
Geek Sanity: It's Mental Help Week
Originally published in ZDnet. October began with Mental Health Awareness Week, and now it concludes with the tech-focused Mental Help Week. Starting Monday October 27, the week-long online event intends to raise awareness, pool resources, and spark discussion about mental health issues and well-being among geeks. Geek Mental Help Week features articles, blog posts, conversations,… Read more…
-
Zero Day Weekly: Samsung Knox controversy, Twitter Digits, bricked FTDI chips
Originally published in ZDnet. Welcome to Zero Day's Week In Security, our roundup of notable security news items for the week ending October 24, 2014. Covers enterprise, controversies, reports and more. This week, Google released invites to its latest attempt to reshape the inbox; Twitter ruffled feathers with its new password replacement Digits; a Windows update… Read more…
-
FTDI admits to bricking innocent users' chips in silent update
Originally published in ZDnet. Hardware hackers and security researchers are furious at chip maker FTDI for issuing a silent update that bricks cloned FTDI FT232 [USB to UART] chips. FTDI used a recent Windows update to deliver the driver update to brick all cloned FTDI FT232s. On October 24 Fred Dart, CEO of FTDI posted a… Read more…
-
Zero Day Weekly: Drupal disaster, POODLE, Ebola phishing scams
Originally published in ZDnet. Welcome to Zero Day's Week In Security, our roundup of notable security news items for the week ending October 17, 2014. Covers enterprise, controversies, reports and more. This week, Drupal had a SQL faceplant, Dropbox wasn't hacked, controversy erupted over a Kickstarter privacy gadget, nobody wanted a POODLE, and Ebola is… Read more…
-
Zero Day Weekly: ATM malware, Cisco vulnerabilities, BadUSB shenanigans
Originally published in ZDnet. Welcome to Zero Day's Week In Security, our roundup of notable security news items for the week ending October 10, 2014. Covers enterprise, controversies, reports and more. This week, Chase's big breach raises official questions about the victims, WaPo's "golden key" op-ed on encryption backfired, Yahoo didn't get "shellshocked," ATM malware… Read more…
-
10 things you need to know before hiring penetration testers
Originally published in ZDnet. To help you secure sharp, practical, trustworthy and innovative professionals to penetration test your business, ZDNet talked to some of the top pentesters, organizations and teams in the business — and we boiled their advice down to ten must-know rules when it's time to bring in the pros. Penetration testing is… Read more…
-
JPMorgan Chase bank hack: It gets worse
Originally published in ZDnet. The JPMorgan Chase & Co breach is being called the worst known compromise in history, affecting approximately 76 million households and 7 million small businesses — and worsening with new information. Challenging Chase's assurances that limited customer information was obtained, forensics firm Night Lion Security told ZDNet that a significant number of customers are… Read more…
-
Zero Day Weekly: JP Morgan Chase, iOS malware Xsser, FBI informant's spree
Originally published in ZDnet. Welcome to Zero Day's Week In Security, our roundup of notable security news items for the week ending October 3, 2014. Covers enterprise, controversies, reports and more. This week, JPMorgan treats us to the biggest known breach in history; the FBI has a very busy week; iOS and Android malware targets Hong… Read more…