f1tym1

VPN Filter uses known vulnerabilities to infect home office routers made by Linksys, MikroTik, NETGEAR, and TP-Link. Once in place, the malware reports back to a command-and-control infrastructure that can install purpose-built plug-ins, according to the researchers. One plug-in lets the hackers eavesdrop on the victim’s Internet traffic to steal website credentials; another targets a protocol used in industrial control networks, such as those in the electric grid. A third lets the attacker cripple any or all of the infected devices at will.

Classic Bond villain, Elon Musk, has a new plan to create a website dedicated to measuring the credibility and adherence to “core truth” of journalists. He is, without any sense of irony, going to call this “Pravda”. This is not simply wrong but evil.

You’ll soon have more options for staying secure on Facebook with two-factor authentication.

Tinder will now help you find matches with those people you may cross paths with in your day-to-day life. As promised earlier, the company today is announcing the launch of a new location-based feature that will narrow your list of potential dating prospects to those who hit up your same bar for after-work drinks, or who stop by your favorite coffee shop for their daily caffeine fix, or who work out at your same gym.

Tinder will now help you find matches with those people you may cross paths with in your day-to-day life. As promised earlier, the company today is announcing the launch of a new location-based feature that will narrow your list of potential dating prospects to those who hit up your same bar for after-work drinks, or who stop by your favorite coffee shop for their daily caffeine fix, or who work out at your same gym.

Ongoing digital transformation has carried us right into the data-centric age: personal data is everywhere. Data subjects do not always realize how their data is handled, or who has access to it. What is even worse, organizations are sometimes careless about how they handle this data — and how they bring it online. That creates a surge of opportunities for data hunters of all kinds. The EU General Data Protection Regulation is an attempt to address those problems.

A hacker group with suspected ties to the Russian government has infected more than 500,000 routers and other devices with highly sophisticated malware, possibly in preparation for future large-scale attacks.

On 22 and 23 May 2018, the EU-U.S. Ministerial Meeting on Justice and Home Affairs was hosted by the Bulgarian Presidency of the EU Council in Sofia, Bulgaria. The meeting reaffirmed the long-standing, fruitful cooperation between the United States of America and the European Union in the areas of justice and home affairs, as well as the importance of jointly addressing common security threats.

A bipartisan pair of House lawmakers have introduced legislation aimed at strengthening U.S. infrastructure ahead of midterm elections this fall.

Screengrab: YouTube. Composition: Author

Most tech conferences bore me out of my mind. But in cryptocurrency, where big personalities tend to clash, things can get intense quickly. This is especially the case whenever Craig Wright—the Australian businessman who is currently chief scientist of nChain, and who once (unsuccessfully) claimed to be pseudonymous Bitcoin inventor Satoshi Nakamoto—is in the mix.

Forward Secrecy’s day has come – for most. The cryptographic technique (sometimes called Perfect Forward Secrecy or PFS), adds an additional layer of confidentiality to an encrypted session, ensuring that only the two endpoints can decrypt the traffic.  With forward secrecy, even if a third party were to record an encrypted session, and later gain access to the server private key, they could not use that key to decrypt a session protected by forward secrecy. Neat, huh?

Advertisement

Editor’s Picks

On average, there about 10 million active sessions a day on Taiwan’s version of reddit, a 25-or-so-year-old bulletin board system called PTT. That’s a respectable number considering Taiwan’s total population is 24 million. But lately the platform has been hit with many of the same problems that have muddied other social media sites—and now, its leaders are taking extreme measures to wipe it clean.

Unknown hackers have reportedly infected at least 500,000 routers and other network devices all over the world with sophisticated and potentially destructive malware—and the Ukrainian government believes Russian hackers may use this botnet in an attack ahead of the Champions League soccer final this week in Kiev.

Ahead of VivaTech, 50 tech CEOs came to Paris to have lunch with French President Emmanuel Macron. Then, they all worked together on “tech for good”. The event was all about leveraging tech around three topics — education, labor and diversity.

This post is authored by Gilad Mittelman, Senior Program Manager, SQL Data Security. 

A massive hacking operation that’s co-opted more than 500,000 routers into a botnet looms over Ukraine, according to cybersecurity researchers and people familiar with the matter who spoke with CyberScoop.

“Attached please find our DPA. Please have this document signed by an authorized signatory and send the completed agreement back to us at […]”

Developers are usually the focus of blame when software vulnerabilities cause organizational breaches. (Sometimes, quality assurance engineers are included in the flame.) Interestingly, though, hardly anyone looks at why bad coding habits form in the first place.

Okta, Inc., the leading independent provider of identity for the enterprise, today announced that organisations can replace passwords with stronger authentication for employees, partners, and customers with the launch of Okta’s new contextual access management features. By combining signals such as device, location, and network context, with threat intel from across Okta’s ecosystem through Okta’s new ThreatInsight functionality, organisations will be able to use Okta’s contextual access management to eliminate the login password as a primary factor of authentication. ThreatInsight will be available in both Okta’s new Adaptive Single Sign-On (SSO) and enhanced Adaptive Multi-Factor Authentication (MFA) products.

We are now less than 48 hours away from the Europe’s General Data Protection Regulation (GDPR) becoming enforceable on 25 May. And unless you’ve been living under a rock for the last two years, you don’t need me to tell you that this new regulation promises to put power back into the hands of consumers, giving them more control over how their data is used.