N.Y. AG's scrutiny of cryptocurrencies unlikely to stymie a thriving industry

Credit to Author: Lucas Mearian| Date: Fri, 20 Apr 2018 13:30:00 -0700

States and the federal government are increasing their scrutiny of cryptocurrencies in an attempt to bring more transparency to a market where buyers and sellers are anonymous and regulatory oversight is light.

Cryptocurrencies such as Bitcoin, Ether, LiteCoin, and Ripple skyrocketed in value last year as investors sought to get in on what many see as the future of global currency – one that for trade and commerce knows no borders. Bitcoin generated massive hype among investors as its value surged more than 1,900% to nearly $20,000 last year, before tumbling back down below $11,000.

To read this article in full, please click here

Read more

Is Facebook’s Anti-Abuse System Broken?

Credit to Author: BrianKrebs| Date: Fri, 20 Apr 2018 12:59:28 +0000

Facebook has built some of the most advanced algorithms for tracking users, but when it comes to acting on user abuse reports about Facebook groups and content that clearly violate the company’s “community standards,” the social media giant’s technology appears to be woefully inadequate.

Read more

You won’t believe why the Win7 Monthly Rollup, KB 4093118, keeps installing itself

Credit to Author: Woody Leonhard| Date: Fri, 20 Apr 2018 06:14:00 -0700

Yesterday, I talked about the weird bug that makes April’s Win7 Monthly Rollup, KB 4093118, re-install itself over and over, even when Windows Update says that it’s been installed successfully. Windows sleuth abbodi86 has discovered the source of the problem, and it should give you patching pause.

To understand how we got into this mess, you need to understand the bugs that Microsoft introduced in the March Win7 patches and their kludgey patches. Installing either the March Monthly Rollup (KB 4088875) or the March Security-only patch (KB 4088878) may knock your machine off the network. As Microsoft says:

To read this article in full, please click here

Read more

9 Android settings that'll strengthen your security

Credit to Author: JR Raphael| Date: Thu, 19 Apr 2018 09:30:00 -0700

You might not know it from all the panic-inducing headlines out there, but Android is actually packed with powerful and practical security features. Some are activated by default and protecting you whether you realize it or not, while others are more out of the way but equally deserving of your attention.

So stop wasting your time worrying about the Android malware monster du jour and which security company is using it to scare you into an unnecessary subscription, and take a moment instead to look through these far more impactful Android security settings — starting with the core elements and moving from there into some more advanced and easily overlooked options.

To read this article in full, please click here

Read more

The gift that keeps on giving: Win7 Monthly Rollup KB 4093118 installs over and over

Credit to Author: Woody Leonhard| Date: Thu, 19 Apr 2018 08:11:00 -0700

Last week, Microsoft quietly re-released its buggy April Win7 Monthly Rollup patch, KB 4093118. You may recall the patch as a reaction to the Carnak the Magnificent situation we had with the original version of KB 4093118.

With the re-release earlier this week of the original Carnak patch, KB 4099950, it’s not clear to me what the recommended installation sequence might be. But this much I know for sure. People all over the internet are complaining that this new version of KB 4093118 installs itself over and over again.

To read this article in full, please click here

Read more

SSD Advisory – Vigor ACS Unsafe Flex AMF Java Object Deserialization

Credit to Author: SSD / Noam Rathaus| Date: Wed, 18 Apr 2018 05:24:56 +0000

Vulnerability Summary A vulnerability in Vigor ACS allows unauthenticated users to cause the product to execute arbitrary code. VigorACS 2 “is a powerful centralized management software for Vigor Routers and VigorAPs, it is an integrated solution for configuring, monitoring, and maintenance of multiple Vigor devices from a single portal. VigorACS 2 is based on TR-069 … Continue reading SSD Advisory – Vigor ACS Unsafe Flex AMF Java Object Deserialization

Read more

How to use a strong passcode to better secure your iPhone

Credit to Author: Lucas Mearian| Date: Wed, 18 Apr 2018 12:32:00 -0700

With police departments and federal agencies lining up to buy technology from two companies whose products can bypass iPhone security mechanisms, experts said users concerned about privacy should use a strong passcode to help prevent unwanted access to data.

That’s also true for enterprise users with iPhones that access potentially sensitive coporate data.

Simply put, complex passcodes are always better for security, according to Phil Hochmuth, IDC’s program director for enterprise mobility. Common best practices for creating a hard-to-crack passcode includes using both upper- and lower-case characters, numbers and uncommon words.

To read this article in full, please click here

Read more

A Sobering Look at Fake Online Reviews

Credit to Author: BrianKrebs| Date: Wed, 18 Apr 2018 16:08:36 +0000

In 2016, KrebsOnSecurity exposed a network of phony Web sites and fake online reviews that funneled those seeking help for drug and alcohol addiction toward rehab centers that were secretly affiliated with the Church of Scientology. Not long after the story ran, that network of bogus reviews disappeared from the Web. Over the past few months, however, the same prolific purveyor of these phantom sites and reviews appears to be back at it again, enlisting the help of Internet users and paying people $25-$35 for each fake listing.

Read more

Patches for Win10 1703 and 1607, and a brain-twisting update to the Win7 IP bug fix

Credit to Author: Woody Leonhard| Date: Wed, 18 Apr 2018 06:32:00 -0700

Yesterday, the third Tuesday of the month, Microsoft dumped another big bucket of patches:

  • KB 4093117 brings Win10 1703 up to build 15063.1058, many miscellaneous fixes, no known issues.
  • KB 4093120 brings Win10 1607 to build 14393.2214, a similarly large bunch of fixes, no known issues.
  • KB 4093113 is the regular Monthly Rollup Preview for Win7.
  • KB 4093121 is the similar Monthly Rollup Preview for Win 8.1.
  • The Update Catalog says there’s a new version of KB 4099950, the abandoned patch for fixing the NIC/static IP bug in Win7.

There are lots of oddities in this motley collection.

To read this article in full, please click here

Read more