Independent – Page 184 – Computer Security Articles

Credit to Author: BrianKrebs| Date: Tue, 26 Jun 2018 17:59:44 +0000

Previous stories here on the proliferation of card-skimming devices hidden inside fuel pumps have offered a multitude of security tips for readers looking to minimize their chances of becoming the next victim, such as favoring filling stations that use security cameras and tamper-evident tape on their pumps. But according to police in San Antonio, Texas, there are far more reliable ways to avoid getting skimmed at a fuel station.

Independent Securiteam

June 22, 2018 admin

beVX Conference Challenge – HiTB

Credit to Author: SSD / Noam Rathaus| Date: Fri, 22 Jun 2018 11:30:44 +0000

During the event of Hack In the Box, we launched an ARM reverse engineering and exploitation challenge and gave the attendees the change to win great prizes. The challenge was divided into two parts, a file – can be downloaded from here: https://www.beyondsecurity.com/bevxcon/bevx-challenge-10 – that you had to download and reverse engineer and server that … Continue reading beVX Conference Challenge – HiTB

Independent Krebs

June 22, 2018 admin

Supreme Court: Police Need Warrant for Mobile Location Data

Credit to Author: BrianKrebs| Date: Fri, 22 Jun 2018 20:30:13 +0000

The U.S. Supreme Court today ruled that the government needs to obtain a court-ordered warrant to gather location data on mobile device users. The decision is a major development for privacy rights, but experts say it may have limited bearing on the selling of real-time customer location data by the wireless carriers to third-party companies.

ComputerWorld Independent

June 22, 2018 admin

Supreme Court: Your digital location is protected by the Constitution

Credit to Author: Lucas Mearian| Date: Fri, 22 Jun 2018 12:15:00 -0700

The U.S. Supreme Court today ruled that access to historical cell-site records of a person’s location based on their mobile phone will require law enforcement to obtain a warrant before searching a person’s historical location records.

This is the first time the high court has ruled on whether a phone subscriber has a legitimate expectation of privacy regarding a telephone company’s records of their cellphone location data, according to Aloke Chakravarty, a partner in the Denver-based law firm of Snell & Wilmer.

“This is a landmark case for privacy, and how the court will deal with emerging technologies going forward,” Chakravarty said via email. “It creates a new lens through which to view a government’s ability to obtain third-party records where a criminal defendant neither possesses the records, doesn’t have a property interest in them, may not even know they exist, and he cannot personally even access them.”

To read this article in full, please click here

ComputerWorld Independent

June 22, 2018 admin

Big Win10 1709 patch reinforces twice-a-month patching pace but, oddly, nothing new for 1803

Credit to Author: Woody Leonhard| Date: Fri, 22 Jun 2018 05:36:00 -0700

Microsoft’s Windows 10 patching pace is so fast at this point that one Patch Tuesday doesn’t cover all the bases. Instead, we’re seeing one massive Cumulative Update on Patch Tuesday, and a second — typically large — grab bag of patches later in the month.

You have to wonder what’s happening, though, when Microsoft can deliver its second bundle of patches for 1709, 1703 and 1607 before the second patch for the latest version, 1803, sees light of day.

The Win10 patches

KB 4284822 for Win10 1709

To read this article in full, please click here

ComputerWorld Independent

June 22, 2018 admin

Apple pushes privacy theme in Safari for iOS 12, 'Mojave'

Credit to Author: Gregg Keizer| Date: Fri, 22 Jun 2018 03:23:00 -0700

Apple upgrades its Safari browser on macOS and iOS just once a year, making the refresh more strategic than most of its rivals, notably Google, which last year had eight separate opportunities to add features or functionality to Chrome.

The next Safari, which will be bundled with macOS 10.14 ‘Mojave’ and iOS 12, and offered as a separate download for those who stick with macOS High Sierra (10.13) and Sierra (10.12), thus must make its enhancements count.

On the security and privacy side, Safari tries its hardest to build a case. Here are the important ways Apple’s browser – which shed user share on both the desktop and on mobile over the past year – has staked its reputation for the next 12 months.

To read this article in full, please click here

ComputerWorld Independent

June 21, 2018 admin

Throwback Thursday: Get the picture?

Credit to Author: Sharky| Date: Thu, 21 Jun 2018 03:00:00 -0700

IT director pilot fish at a daily newspaper is reworking the company’s entire network. Why? “There is no security,” sighs fish. “None, with about 90 users in a peer-to-peer Mac and PC environment.”

One night he gets a call from an editor: One of the applications isn’t working. It’s the one that lets a reporter find a photo on a wire service’s website and save it to a folder. The app then moves the folder to a holding folder on another machine, where yet another machine can grab it and put it into the newspaper’s production process.

It takes a couple hours of troubleshooting, but fish tracks down the problem. That holding folder? The one that’s actually named “Do not touch, do not delete”?

To read this article in full, please click here

Independent Krebs

June 19, 2018 admin

AT&T, Sprint, Verizon to Stop Sharing Customer Location Data With Third Parties

Credit to Author: BrianKrebs| Date: Tue, 19 Jun 2018 18:03:44 +0000

In the wake of a scandal involving third-party companies leaking or selling precise, real-time location data on virtually all Americans who own a mobile phone, the four major wireless carriers have responded to requests from a U.S. senator for more details about how the carriers are managing access to this extremely sensitive information. While three out of four providers said they had cancelled data sharing agreements with some of the offending companies, only one — Verizon — pledged to terminate all of them and initiate a wholesale review of their location data-sharing practices.