Security

Security news, trends, analysis and practical advice

8 small business security
connected nodes network

microsoft stock campus building

Google discloses unpatched IE flaw after Patch Tuesday delay

Google's Project Zero team has disclosed a potential arbitrary code execution vulnerability in Internet Explorer because Microsoft has not acted within Google's 90-day disclosure deadline.

13959900047 bede3e5ba4 o

FCC puts the brakes on ISP privacy rules it passed in October

The new chairman of the U.S. Federal Communications Commission will seek a stay on privacy rules for broadband providers that the agency just passed in October.

security code big data cyberespionage byte

Cloudflare bug exposed passwords, other sensitive website data

For months a bug in Cloudflare's content optimization systems exposed sensitive information sent by users to websites including passwords, session cookies, authentication tokens and even private messages.

Digital Key encryption

The SHA1 hash function is now completely unsafe

Security researchers have achieved the first real-world collision attack against the SHA-1 hash function, producing two different PDF files with the same SHA-1 signature.

ransomware data laptop

Ransomware 'customer support' chat reveals criminals' ruthlessness

Finnish security vendor F-Secure released 34 pages of transcripts from the group chat used by the crafters of the Spora ransomware family. The transcripts give a whole new meaning to tech support.

0 shadow it intro

8 steps to regaining control over shadow IT

Learn how to discover those employees who went roaming for outside services.

Uber
video

Breaking and protecting devops tool chains

Ken Johnson, CTO of nVisium, and Chris Gates, Senior Security Engineer at Uber talk to CSO Online's Steve Ragan about working with devops tool chains.

Still
video

Bruce Schneier and the call for "public service technologists"

Bruce Schneier, CTO of IBM Resilient on the increasing importance of technologist's presence in education and policy-making.

dl speedport hybrid

Police arrest man suspected of building million-router German botnet

Last year, someone turned a German internet service provider into a million-router botnet. German police think they will soon have the culprit.

Security online

Eleven-year-old root Linux kernel flaw found and patched

Linux system administrators should watch for kernel updates for their distributions and apply them as soon as possible because they fix a local privilege escalation flaw that could lead to a full system compromise.

20140926 campus indoors 004 1

Amid cyberattacks, ISPs try to clean up the internet

If your computer’s been hacked, Dale Drew might know about it. His company, Level 3 Communications, is a major internet backbone provider that is routinely on the lookout for cyberattacks on the network level. From what they can...

img 20160625 202609

A hard drive's LED light can be used to covertly leak data

The seemingly harmless blinking lights on servers and desktop PCs may give away secrets if a hacker can hijack them with malware.

3147352

What to expect from the Trump administration on cybersecurity

Look for the Trump administration to push for increased cybersecurity spending in government, but also for increased digital surveillance and encryption workarounds.

Digital Key encryption

New macOS ransomware spotted in the wild

A new file-encrypting ransomware program for macOS is being distributed through bit torrent websites, and users who fall victim to it won't be able to recover their files -- even if they pay.

windows trouble controversy crash problem hacked

What’s up with Windows patching, Microsoft?

A month late? Seriously? It’s both outrageous and unsurprising.

President Donald Trump and Vice President Mike Pence

Indiana joins Idaho in claiming DHS tried to hack their election systems

Indiana claims DHS scanned the state's electoral system tens of thousands of times without permission.

03 patch

Microsoft pushes out critical Flash Player patches after one-week delay

After deciding to postpone its February patches for a month, Microsoft released one critical security update for Windows on Tuesday that contains Flash Player patches released by Adobe Systems last week.

satya nadella wdg event 2016

LinkedIn will help people in India train for semi-skilled jobs

Microsoft has launched Project Sangam, a cloud service integrated with LinkedIn that will help train and generate employment for middle and low-skilled workers.

Load More