RSS Reader for Computer Security Articles
I had gum graft surgery earlier this week to cover an almost-exposed root due to my aggressive brushing over the years. As part of the recovery process, I was told to limit the movement of my mouth. That means no talking. Me? Okay. I quickly realized how much we take our voice for granted. How…
RadiTo hopes to bring forbidden audio to Iran’s growing audience of smartphone users—and stay a step ahead of the country’s internet filters. The post A Pirate Podcast App Takes on Iran’s Hardline Censors appeared first on WIRED.
Read More
The internet is what made IoT happen, providing a common protocol to take the place of separate, specialized networks. But the public internet itself may not always be the best path between a connected device and the cloud.
Enterprises can now connect cellular IoT devices to back-end systems via NetBond, a private network service from AT&T, instead of the Internet. The NetBond service sets up a VPN (virtual private network) from an edge device to the cloud. It can connect to 16 different public clouds, including Amazon Web Services and Microsoft Azure, or a private or hybrid cloud.
To read this article in full or to leave a comment, please click here
Sanctions imposed by former President Obama on Russia for hacking during the U.S. election had an unintended side effect: they essentially barred U.S. tech firms from selling new IT products in the country.
Part of last month’s sanction order was designed to block U.S. companies from doing business with Russia’s Federal Security Service, also known as the FSB, because of its suspected role in influencing last year’s election.
But the FSB isn’t just an intelligence agency. It’s also a crucial regulator in Russia that clears new IT products, including smartphones and tablets, for sale in the country.
To read this article in full or to leave a comment, please click here
Cisco Systems has fixed a critical vulnerability that could allow hackers to take over servers used by telecommunications providers to remotely manage customer equipment such as routers.
The vulnerability affects Cisco Prime Home, an automated configuration server (ACS) that communicates with subscriber devices using the TR-069 protocol. In addition to remotely managing customer equipment, it can also “automatically activate and configure subscribers and deliver advanced services via service packages” over mobile, fiber, cable, and other ISP networks.
“A vulnerability in the web-based GUI of Cisco Prime Home could allow an unauthenticated, remote attacker to bypass authentication and execute actions with administrator privileges,” Cisco said in its advisory.
To read this article in full or to leave a comment, please click here
Developers of the widely used WordPress content management system released an update last week, but intentionally delayed announcing that the patch addressed a severe vulnerability.
WordPress version 4.7.2 was released on January 26 as a security update, but the accompanying release notes mentioned only fixes for three moderate risk vulnerabilities, one of which did not even affect the platform’s core code.
On Wednesday, a week later, the WordPress security team disclosed that a fourth vulnerability, much more serious than the others, was also patched in version 4.7.2.
To read this article in full or to leave a comment, please click here
Opinion: Lawmakers should craft privacy regulations to ensure protection of citizens’ amendment rights. The post Police Could Get Your Location Data Without a Warrant. That Has to End appeared first on WIRED.
Read More