Security

Mozilla look to reclaim some ground from the all-powerful Chrome with a new way to send and receive files securely from inside the browser. Firefox Send first emerged in 2017, promising an easy way to send documents without fuss. The training wheels have now come off and Send is ready to go primetime. Will it catch on with the masses, or will only a small, niche group use it to play document tennis?

How does it work?

D-Link, a provider of network-based home and business solutions, has added two new cameras to its Vigilance surveillance portfolio.

The DCS-4705E 5-Megapixel Outdoor Mini Bullet Camera and the DCS-4605EV 5-Megapixel Outdoor Dome Camera offer businesses of any size easy to install, 24/7 protection with modern features and capabilities.

Asia Pacific firms are feeling the financial impact from cyber breaches more than any other region in the world, according to new insights from Cisco’s 2019 CISO Benchmark Study.  

Last week at Cisco Live Melbourne, the company released new Asia Pacific statistics from the global report. The new insights show that 17% of companies across Australia, China, India, and Japan have felt the financial impact of more than US$5 million from their most severe breach in the last year. This is more than twice the global average of 8%.

Virtualization and software provider Citrix said its internal network was breached by international criminals who most likely exploited weak passwords to gain limited access before working to gain more privileged control.

Millions of car owners were left at risk of having their vehicles stolen, because of the poor security of third-party app-connected car alarms.

After-market car alarms, designed to add an additional layer of security for vehicles, have been found to be seriously lacking – even when sometimes marketed as “unhackable.”

Google has confirmed a recent update to Chrome was to patch a zero-day issue in the popular browser, an exploit that was actively used in attacks, and has recommended all Chrome users on Mac, Windows, and Linux update their installations as soon as possible.

A patch for Chrome shipped on March 1 consisting of a fix for a security flaw, identified as CVE-2019-5786. The update, which only fixed the issue without making other changes to the browser, brought Chrome on all three operating systems up to version 72.0.3626121.

Google security officials are advising Windows users to ensure they’re using the latest version 10 of the Microsoft operating system to protect themselves against a “serious” unpatched vulnerability that attackers have been actively exploiting in the wild.

It’s International Women’s Day, a day to celebrate the achievements of women around the world and throughout history. But the day is also about recognizing the hardships women face, and the continued urgency of the fight for gender equality.

In a security alert published today, Cisco has advised owners of Nexus switches to disable a feature called PowerOn Auto Provisioning (POAP) for security reasons.

POAP is currently enabled by default in NX-OS, the operating system running on Nexus --Cisco's line of data center and traffic-heavy switches. POAP is an automatic provisioning and zero-touch deployment feature that assists device owners in the initial deployment and configuration of Nexus switches.

At the RSA security conference today, the National Security Agency, released Ghidra, a free software reverse engineering tool that the agency had been using internally for well over a decade.

The tool is ideal for software engineers, but will be especially useful for malware analysts first and foremost.