RSS Reader for Computer Security Articles
Credit to Author: Andy Greenberg| Date: Thu, 23 Feb 2017 12:00:49 +0000
Google subsidiary Jigsaw is now offering developers access to an API for its AI-based detector for abusive comments. The post Now Anyone Can Deploy Google’s Troll-Fighting AI appeared first on WIRED.
Read More
Credit to Author: Michael Kan| Date: Thu, 23 Feb 2017 03:40:00 -0800
The seemingly harmless blinking lights on servers and desktop PCs may give away secrets if a hacker can hijack them with malware.
Researchers in Israel have come up with an innovative hack that turns a computer’s LED light into a signaling system that shows passwords and other sensitive data.
The researchers at Ben-Gurion University of the Negev demonstrated the hack in a YouTube video posted Wednesday. It shows a hacked computer broadcasting the data through a computer’s LED light, with a drone flying nearby reading the pattern.
The researchers designed the scheme to underscore vulnerabilities of air-gapped systems, or computers that have been intentionally disconnected from the internet.
To read this article in full or to leave a comment, please click here
Credit to Author: Grant Gross| Date: Wed, 22 Feb 2017 11:39:00 -0800
Look for President Donald Trump’s administration to push for increased cybersecurity spending in government, but also for increased digital surveillance and encryption workarounds.
That’s the view of some cybersecurity policy experts, who said they expect Trump to focus on improving cybersecurity at federal agencies while shying away from new cybersecurity regulations for businesses.
Trump is likely to look for ways for the National Security Agency and other agencies to assist the government and companies in defending against cyberattacks, said Jeffrey Eisenach, a visiting scholar at the American Enterprise Institute and a tech adviser during Trump’s presidential transition.
To read this article in full or to leave a comment, please click here
Credit to Author: Lucian Constantin| Date: Wed, 22 Feb 2017 11:09:00 -0800
A new file-encrypting ransomware program for macOS is being distributed through bit torrent websites, and users who fall victim to it won’t be able to recover their files — even if they pay.
Crypto ransomware programs for macOS are rare. This is the second such threat found in the wild so far, and it’s a poorly designed one. The program was named OSX/Filecoder.E by the malware researchers from antivirus vendor ESET who found it.
OSX/Filecoder.E masquerades as a cracking tool for commercial software like Adobe Premiere Pro CC and Microsoft Office for Mac. It is written in Apple’s Swift programming language by what appears to be an inexperienced developer, judging from the many mistakes made in its implementation.
To read this article in full or to leave a comment, please click here
Credit to Author: Steven J. Vaughan-Nichols| Date: Wed, 22 Feb 2017 08:36:00 -0800
Well, here’s something different. Microsoft, for the first time since it started its monthly Patch Tuesdays in October 2003, has completely blown a deadline. There will be no major patch release in February. Instead, the patch package will be released on March 14.
Why? We don’t know and Microsoft isn’t saying.
Color me concerned.
I have reason to be. Greg Lambert, chairman of Qompat, who covers software patches like paint, had hoped Microsoft would delay the patches by only a week. After all, Lambert observed, “This month’s update cycle from Microsoft is especially important as a now critical zero-day vulnerability (CVE867968) has been reported related to how a component of the Microsoft SMB [Server Message Block] protocol handles traffic. This was initially reported as a denial of service attack, but now looks like to be rated as critical by Microsoft as it may lead to a more serious (RCE) remote code execution scenario.”
To read this article in full or to leave a comment, please click here
Credit to Author: Lucian Constantin| Date: Wed, 22 Feb 2017 07:29:00 -0800
After deciding to postpone its February patches for a month, Microsoft released one critical security update for Windows on Tuesday that contains Flash Player patches released by Adobe Systems last week.
The new security bulletin, identified as MS17-005, is rated critical for Windows 8.1, Windows RT 8.1, Windows 10 and Windows Server 2016, and moderate for Windows Server 2012 and Windows Server 2012 R2. On these Windows versions, Flash Player is bundled by default with Internet Explorer 11 and Microsoft Edge, so Microsoft delivers patches for it through Windows Update.
To read this article in full or to leave a comment, please click here
Credit to Author: Andy Greenberg| Date: Wed, 22 Feb 2017 12:00:48 +0000
Israeli researchers show that innocent LED indicator on your computer can leak your deepest secrets. The post Malware Lets a Drone Steal Data by Watching a Computer’s Blinking LED appeared first on WIRED.
Read More
Credit to Author: John Ribeiro| Date: Wed, 22 Feb 2017 04:18:00 -0800
Microsoft has launched Project Sangam, a cloud service integrated with LinkedIn that will help train and generate employment for middle and low-skilled workers.
The professional network that was acquired by Microsoft in December has been generally associated with educated urban professionals, but the company is now planning to extend its reach to semi-skilled people in India.
Having connected white-collared professionals around the world with the right job opportunities and training through LinkedIn Learning, the platform is now developing a new set of products that extends this service to low- and semi-skilled workers, said Microsoft CEO Satya Nadella at an event on digital transformation in Mumbai on Wednesday.
To read this article in full or to leave a comment, please click here