Anatomy of a spambot

Credit to Author: John Brandon| Date: Thu, 19 Oct 2017 03:00:00 -0700

For security pros, spambots are known enemies. For the uninitiated, they are unknown entities. And yet they proliferate like ants at a picnic or teens on messaging apps. You might be receiving countless messages from bots every day, and even worse, a bot might be sending out unwanted emails from your computer right now, making you an unwilling participant in digitized mayhem.

To read this article in full or to leave a comment, please click here

(Insider Story)

Read more

48% off Kidde Carbon Monoxide Alarm with Display and 10 Year Battery – Deal Alert

Credit to Author: DealPost Team| Date: Wed, 18 Oct 2017 06:32:00 -0700

Carbon Monoxide is odorless, tasteless and invisible, and it accounts for over 72,000 cases of poisoning each year. Kidde calls their C3010D model “worry free” because its sensor and sealed battery provide 10 years of uninterrupted CO detection, and a digital display that updates every 15 seconds. The unit will chirp when its reaching the ends of its life, so you don’t have to wonder. The Kidde C3010D alarm is currently discounted down to just $27.93. See this deal now on Amazon.

To read this article in full or to leave a comment, please click here

Read more

Excel, Access, external DB driver errors linked to this month’s patches

Credit to Author: Woody Leonhard| Date: Tue, 17 Oct 2017 08:08:00 -0700

Read more

Amazon wants to deliver groceries to your car trunk — not a good idea

Credit to Author: Evan Schuman| Date: Tue, 17 Oct 2017 03:00:00 -0700

In the minds of mobile shoppers, where is the line between convenience and personal space/privacy? We now have two retailers — Walmart and Amazon, the giants of in-store and online shopping, respectively — separately testing programs to deliver purchases directly into your home or your car trunk when the shopper is nowhere near. 

Both efforts rely on mobile devices connecting shoppers to the scene of the delivery, where customers can theoretically watch the delivery in real time. It isn’t practical or likely, but that’s the idea. Mobile is what justifies these attempts.

Walmart’s efforts, focused entirely on shoppers letting the retailer unlock a home’s front door and put away the groceries in the shopper’s kitchen and refrigerator/freezer, is an idea that begs for a privacy/security disaster to happen. A prudent executive looks at any cutting-edge plan and asks, “What could go wrong with this and how bad is it for our customers if it does?”

To read this article in full or to leave a comment, please click here

Read more

Microsoft shuts down Krack with sneaky Windows update

Credit to Author: Gregg Keizer| Date: Mon, 16 Oct 2017 13:44:00 -0700

Microsoft today revealed that it quietly patched Windows last week against vulnerabilities in the Wi-Fi Protected Access II (WPA2) protocol used to secure wireless networks.

Details of the security update were only published Monday to Microsoft’s Security Update Guide, the catalog-like portal that earlier this year replaced the decades-old practice of delivering explanatory bulletins.

All supported versions of Windows received the update, according to the catalog listing, including Windows 7, Windows 8.1, Windows 10, Windows Server 2008, Windows Server 2012 and Windows Server 2016.

To read this article in full or to leave a comment, please click here

Read more

Microsoft shuts down Krank with emergency Windows update

Credit to Author: Gregg Keizer| Date: Mon, 16 Oct 2017 12:20:00 -0700

Microsoft today issued an emergency Windows security update to patch vulnerabilities in the Wi-Fi Protected Access II (WPA2) protocol used to secure wireless networks.

Details of the security update were published to Microsoft’s Security Update Guide, the catalog-like portal that earlier this year replaced the decades-old practice of delivering explanatory bulletins.

All supported versions of Windows will receive the update, according to the catalog listing, including Windows 7, Windows 8.1, Windows 10, Windows Server 2008, Windows Server 2012 and Windows Server 2016.

To read this article in full or to leave a comment, please click here

Read more

Don’t be the fool in the cloud

Credit to Author: Steven J. Vaughan-Nichols| Date: Mon, 16 Oct 2017 07:23:00 -0700

When I hear people worrying about cloud security, they’re usually shaking in their boots about some obscure bug beyond their control. Ha! Ordinary, stupid human mistakes are more than bad enough.

For example, Accenture left hundreds of gigabytes of private user and corporate data on four unsecured Amazon Web Services (AWS) S3 cloud servers. The data included passwords and decryption keys. What did you need to dig into this treasure trove? The servers’ web addresses.

That’s all. No user ID, no password, no nothing.

Adding insult to injury, according to Chris Vickery, director of cyber-risk research at security firm UpGuard, Accenture’s revealed data included its AWS Key Management System (KMS) master keys. With those, an attacker could have also taken control of all the company’s encrypted AWS data.

To read this article in full or to leave a comment, please click here

Read more

FinTech builds on blockchain for international mobile payments

Credit to Author: Lucas Mearian| Date: Sun, 15 Oct 2017 21:07:00 -0700

IBM has partnered with a Polynesian payments system provider and an open-source FinTech payment network to implement a new international exchange based on a blockchain electronic ledger.

The new payment network uses IBM’s Blockchain Platform, a cloud service, to enable the electronic exchange of 12 different currencies across Pacific Islands as well as Australia, New Zealand and the United Kingdom.

KlickEx Group, a United Nations-funded, Pacific-region financial services company, and Stellar.org, a nonprofit organization that supports an open-source blockchain network for financial services, are backing the new cross-border payments service.

To read this article in full or to leave a comment, please click here

Read more