Featured Slideshow

Security

Security

Hackers can raid networks with burnt Blu-Rays

Submitted by l33tdawg on Mon, 2015-03-02 07:27
http://regmedia.co.uk/2015/03/02/hackers_bluray.jpg?x=648&y=429&crop=1

British hacker Stephen Tomkinson has found two Blu-Ray-borne attacks.

His first exploit relies on a poor Java implementation in a product called PowerDVD from CyberLink. PowerDVD plays DVDs on PCs and creates menus using Java, but the way Oracle's code has been used allows naughty folk to circumvent Windows security controls.

Tags: 
Security

ZTE Grand S3 can be unlocked with eye-based biometric solution

Submitted by l33tdawg on Mon, 2015-03-02 02:26
http://www.androidcentral.com/sites/androidcentral.com/files/styles/larger_wm_brw/public/article_images/2015/03/zte-grand-s3-eye.jpg?itok=bEHSE-2H

Today at MWC 2015, we played with the ZTE Grand S3. ZTE's new flagship device lets users unlock their phones by looking at the front-facing camera. The cutting edge solution, called Eyeprint ID, works by scanning unique vein patterns in the human eye. See how it works in our brief hands-on video.

Swipe down from the top of the lock screen to bring up the eye scanner. You'll need to place the phone in front of your face so that both eyes appear in the box. It takes about 5 seconds from swiping down on the screen to unlock the Grand S3.

Tags: 
Security

Zero-day in Seagate NAS allows attacker to remotely get unauthorized root access

Submitted by l33tdawg on Mon, 2015-03-02 00:42
http://images.techhive.com/images/article/2015/03/got-root-100570720-primary.idge.jpg

Thousands of Seagate Network Attached Storage (NAS) devices are defenseless against a zero-day remote code execution (RCE) vulnerability. Back in October, security researcher OJ Reeves attempted to responsibly disclose the hole in Seagate’s Business Storage 2-Bay NAS products, which ironically use a tagline of “deadlines happen. Be ready.” But Seagate still hasn’t issued a firmware fix, so Reeves has now publicly disclosed the bug.

Tags: 
Security

Silent Circle targets enterprise users with 'world first' privacy ecosystem

Submitted by l33tdawg on Fri, 2015-02-27 10:32
http://zdnet1.cbsistatic.com/hub/i/r/2015/02/27/4fd3cc14-d7ed-4bae-babc-caf4c2038bfb/resize/370x370/fd154672ce04a53bad81409b0a7b27a6/screen-shot-2015-02-27-at-08-48-34.png

Encrypted communications provider Silent Circle has raised approximately $50 million in a funding round aimed at pushing the company forward in the enterprise market.

Announced on Thursday, Silent Circle said "strong demand" from enterprise customers seeking to keep communication private through the Blackphone product range led the firm to launch a private, common equity round in order to grow and cater for new clients.

Tags: 
Silent Circle
Security

Pages