Independent – Page 371 – Computer Security Articles

Credit to Author: Lucas Mearian| Date: Tue, 11 Jul 2017 08:01:00 -0700

The Linux Foundation’s Hyperledger project announced today the availability of Fabric 1.0, a collaboration tool for building blockchain distributed ledger business networks such as smart contract technology.

The Hyperledger project, a collaborative cross-industry effort created to advance blockchain technology, said the Hyperledger Fabric framework can be a foundation for developing blockchain applications, products or customized business solutions

To read this article in full or to leave a comment, please click here

Independent Securiteam

July 10, 2017 admin

SSD Advisory – EMC IsilonSD Edge Management Server Command Injection

Credit to Author: SSD / Maor Schwartz| Date: Sun, 02 Jul 2017 08:09:16 +0000

Vulnerability Summary The following advisory describes a Remote Command Injection vulnerability found in EMC IsilonSD Edge Management Server version 1.0.1.0005. IsilonSD Edge Management Server enables you to deploy industry leading scale-out NAS operating system using industry-standard hardware. Key benefits of IsilonSD Edge: Simple yet powerful and efficient scale-out storage solution for remote and branch offices, … Continue reading SSD Advisory – EMC IsilonSD Edge Management Server Command Injection

ComputerWorld Independent

July 10, 2017 admin

Kill it! Kill Windows XP now!

Credit to Author: Steven J. Vaughan-Nichols| Date: Mon, 10 Jul 2017 04:20:00 -0700

The headline — “HMS Queen Elizabeth is ‘running outdated Windows XP’, raising cyber attack fears” — was startling, but wrong. The United Kingdom’s newest aircraft carrier wasn’t running Windows XP. But some of the contractors that built the warship were.

The U.S. Navy, meanwhile, has been purchasing Windows XP support, at least through this year, so odds are our military still has XP systems running to this very day.

To read this article in full or to leave a comment, please click here

ComputerWorld Independent

July 10, 2017 admin

With Patch Tuesday imminent, make sure you have Automatic Update turned off

Credit to Author: Woody Leonhard| Date: Mon, 10 Jul 2017 04:17:00 -0700

In case you hadn’t noticed, Microsoft has had a tough time with patches this year. From a total lack of patches in February (except for a late IE patch), to yanked and reissued botched patches that followed, to a jumble of problems with Windows and Office patches — including seven admitted bugs in last month’s Office patches — Microsoft has proved itself adept at Jack-in-the-box patching. You don’t have to join the legions of unpaid patch beta testers.

To read this article in full or to leave a comment, please click here

ComputerWorld Independent

July 10, 2017 admin

Unclear on the concept, plastic edition

Credit to Author: Sharky| Date: Mon, 10 Jul 2017 03:00:00 -0700

This IT pilot fish tries to practice good data security in his personal life as well as on the job — but that doesn’t always work out.

“My wife was going to charge some travel expenses on my credit card during her break at work,” says fish. “So as not to give up my card for the day, I wrote the number, expiration date and security code on a piece of paper.

“As I wrote the 16 digits out, I realized that she was taking this piece of paper to work, and who knows who might see it or what might happen if she were to throw it out? So instead of writing the last four digits, I wrote “xxxx,” and texted them to her instead.

“I thought I had done a decent job in protecting my credit card information — until later that morning, when she texted me saying that there was an issue with one of the charges. Would I mind calling, since she was unable? No problem, I responded. Can you send me the number to call?

To read this article in full or to leave a comment, please click here

Independent Krebs

July 8, 2017 admin

Self-Service Food Kiosk Vendor Avanti Hacked

Credit to Author: BrianKrebs| Date: Sat, 08 Jul 2017 15:09:48 +0000

Avanti Markets, a company whose self-service payment kiosks sit beside shelves of snacks and drinks in thousands of corporate breakrooms across America, has suffered of breach of its internal networks in which hackers were able to push malicious software out to those payment devices, the company has acknowledged. The breach may have jeopardized customer credit card accounts as well as biometric data, Avanti warned.

Independent Krebs

July 7, 2017 admin

B&B Theatres Hit in 2-Year Credit Card Breach

Credit to Author: BrianKrebs| Date: Fri, 07 Jul 2017 15:26:07 +0000

B&B Theatres, a company that owns and operates the 7th-largest theater chain in America, says it is investigating a breach of its credit card systems. The acknowledgment comes just days after KrebsOnSecurity reached out to the company for comment on reports from financial industry sources who said they suspected the cinema chain has been leaking customer credit card data to cyber thieves for the past two years.

Independent Securiteam

July 6, 2017 admin

SSD Advisory – Skype For Business XSS

Credit to Author: SSD / Maor Schwartz| Date: Thu, 06 Jul 2017 05:45:53 +0000

Vulnerability Summary The following advisory describes an XSS vulnerability found in Skype for Business. Credit An independent security researcher has reported this vulnerability to Beyond Security’s SecuriTeam Secure Disclosure program. Vendor response The vendor has released patches to address this vulnerability and has only provided these details in response to our query on the status: … Continue reading SSD Advisory – Skype For Business XSS