RSS Reader for Computer Security Articles
Credit to Author: BrianKrebs| Date: Fri, 30 Nov 2018 13:47:51 +0000
Hospitality giant Marriott today disclosed a massive data breach exposing the personal and financial information on as many as a half billion customers who made reservations at any of its Starwood properties over the past four years.
Read More
Credit to Author: Lucas Mearian| Date: Fri, 30 Nov 2018 02:59:00 -0800
Amazon this week announced its latest data analytics product, one aimed at scouring unstructured data within electronic medical records (EMRs) to offer up insights that physicians can use to better treat patients.
Amazon’s new Comprehend Medical AWS cloud service is a natural-language processing engine that purports to be able to read physician notes, patient prescriptions, audio interview transcripts, and pathology and radiology reports – and use machine learning algorithms to spit out relevant medical information to healthcare providers.
Amazon’s Comprehend Medical software service is one of 13 new machine learning software products the company announced on Tuesday.
Credit to Author: Woody Leonhard| Date: Thu, 29 Nov 2018 08:30:00 -0800
By far the most important reason for this month’s relative patching calm: Microsoft decided to wait and get the Windows 10 (version 1809) patch right instead of throwing offal against a wall and seeing what sticks.
What remains is a hodge-podge of Windows patches, some mis-identified .NET patches, a new Servicing Stack Update slowly taking form, a bunch of Office fixes – including two buggy patches that have been pulled and one that’s been fixed – the usual array of Flash excuses and Preview patches.
Credit to Author: Gregg Keizer| Date: Tue, 27 Nov 2018 14:02:00 -0800
Just one day after Microsoft came clean with an explanation of a Nov. 19 outage that blocked users of Office 365 from logging into their accounts using Multi-Factor Authentication (MFA), today the service again went on the fritz.
“Starting at 14:25 UTC on 27 Nov 2018, customers using Multi-Factor Authentication (MFA) may experience intermittent issues signing into Azure resources, such as Azure Active Directory, when MFA is required by policy,” read the Azure status dashboard. Two and a half hours later, the dashboard reported that after resolving a problem with an earlier DNS (Domain Name Service) issue, engineers rebooted the services. “They observed a decrease in the failure rate after the reboot cycles,” the dashboard concluded.
Credit to Author: BrianKrebs| Date: Mon, 26 Nov 2018 14:57:53 +0000
Maybe you were once advised to “look for the padlock” as a means of telling legitimate e-commerce sites from phishing or malware traps. Unfortunately, this has never been more useless advice. New research indicates that half of all phishing scams are now hosted on Web sites whose Internet address includes the padlock and begins with “https://”.
Read More
Credit to Author: BrianKrebs| Date: Fri, 23 Nov 2018 23:24:06 +0000
‘Tis the season when even those who know a thing or two about Internet scams tend to let down their guard in the face of an eye-popping discount or the stress of last-minute holiday shopping. So here’s a quick refresher course on how to make it through the next few weeks without getting snookered online.
Read More
Credit to Author: JR Raphael| Date: Thu, 22 Nov 2018 04:00:00 -0800
Encryption may sound like a subject best left to hackers and tinfoil hat wearers, but don’t be fooled: It’s a critical part of contemporary life and something that’s important for everyone, especially business users, to understand. And one of the places where encryption is most relevant and misunderstood is in the realm of email.
If you’re using Gmail for electronic communication — be it for business, for personal use, or a combination of the two — it’s well worth your while to know how the service does and doesn’t secure your information and what steps you can take to make sure you’re getting the level of privacy you need.
Ready to dive in?
Credit to Author: BrianKrebs| Date: Wed, 21 Nov 2018 17:10:18 +0000
U.S. Postal Service just fixed a security weakness that allowed anyone who has an account at usps.com to view account details for some 60 million other users, and in some cases to modify account details on their behalf. KrebsOnSecurity was contacted last week by a researcher who discovered the problem, but who asked to remain anonymous. The researcher said he informed the USPS about his finding more than a year ago yet never received a response. After confirming his findings, this author contacted the USPS, which promptly addressed the issue.
Read More