Credit to Author: Priyanka Shinde| Date: Tue, 03 Mar 2020 09:54:12 +0000
All of us, at some point in time, must have heard the story of Wolf and the flock of sheep. The fooling trick used by the wicked wolf of pretending to be a sheep is still in use by many malware authors. They pretend to be genuine processes to achieve…
Read more
Credit to Author: Danny Bradbury| Date: Tue, 03 Mar 2020 10:44:44 +0000
Thousands of active WordPress plugins have been hit with a swathe of XSS vulnerabilities that could give attackers complete control of the site.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/Bjh4-1ye-9E” height=”1″ width=”1″ alt=””/>
Read more
Credit to Author: Lucas Mearian| Date: Tue, 03 Mar 2020 03:00:00 -0800
Despite an increase in the number of companies hit by mobile attacks that led to compromises, four in 10 businesses sacrificed security to meet profit goals or avoid “cumbersome” security processes, according to Verizon’s third annual Mobile Security Index 2020.
It showed that 43% of organizations sacrificed security. More typical reasons for companies exposing themselves to risk, such as lack of budget and IT expertise, trailed “way behind” things such as expediency (62%), convenience (52%) and profitability targets (46%). Lack of budget and IT expertise were only cited by 27% and 26% of respondents, respectively.
Credit to Author: Evan Schuman| Date: Tue, 03 Mar 2020 03:00:00 -0800
Amazon is experimenting with a way to allow shoppers to use a palm-print biometric to authenticate payments and to do so in physical stores far beyond Amazon-owned brick-and-mortars, (Whole Foods, AmazonGo, AmazonBooks, Amazon 4-Star and Amazon Pop-Up). Amazon is reportedly looking at QSRs (quick-service restaurants), especially coffee shops.
Palm prints have several advantages over more popular mobile biometric methods, such as fingerprint (prescription drugs, cleaning chemicals, burns and various other things can interfere with fingerprint readings) and facial recognition (finicky method that requires the face to be a precise distance from the scanner — not an inch too close or too far — and can suffer from hair growth, lighting, cosmetic changes, some sunglasses, as well as giving false positives to close relatives). And unlike my favorite biometric for security (retina scan), it’s far less invasive. It’s fairly accurate, convenient and (other than forcing customers to remove gloves, which could be a problem with outdoor shops in the winter) should be well-received.
Credit to Author: BrianKrebs| Date: Mon, 02 Mar 2020 18:07:16 +0000
A large number of French critical infrastructure firms were hacked as part of an extended malware campaign that appears to have been orchestrated by at least one attacker based in Morocco, KrebsOnSecurity has learned. The individual thought to be involved has earned accolades from the likes of Apple, Dell, and Microsoft for helping to find and fix security vulnerabilities in their products.
Read moreCredit to Author: Malwarebytes Labs| Date: Mon, 02 Mar 2020 17:15:47 +0000
 | |
| We look at all the interesting security news from last week and also present the latest episode of our podcast, Lock and Code. Categories: Tags: lock and codemalwarepodcastscamssecuritythreatsweek in security |
The post Lock and Code S1Ep1: On RSA, the human element, and the week in security appeared first on Malwarebytes Labs.
Read more
Read the first installment of the new blog series, “Offense and Defense – A Tale of Two Sides,” for an analysis of the ever-popular tool: PowerShell.<img src=”http://feeds.feedburner.com/~r/fortinet/blog/threat-research/~4/xvj9txvRg6Q” height=”1″ width=”1″ alt=””/>
Credit to Author: Klint Finley| Date: Mon, 02 Mar 2020 12:00:00 +0000
The virtual private network software from security researcher Jason Donenfeld wins fans with its simplicity and ease of auditing.
Read more
Credit to Author: John E Dunn| Date: Mon, 02 Mar 2020 13:07:04 +0000
Researchers have demonstrated how voice assistants can be secretly activated without ever physically touching the device.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/d4GKhM4slSc” height=”1″ width=”1″ alt=””/>
Read more
Credit to Author: Danny Bradbury| Date: Mon, 02 Mar 2020 13:06:25 +0000
Thanks to this flood of free certificates, the web is a lot more encrypted than it was a few years ago.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/m_p5aVh50cI” height=”1″ width=”1″ alt=””/>
Read more