HITBSecConf2017 Amsterdam (April 10th - 14th)
Register Online Now!
Google is planning to appeal a ruling made Friday that it must comply with search warrants involving customer data stored on servers outside of the United States. The case is similar to an earlier case involving Microsoft. In July 2016, the 2nd U.S. Circuit Court of Appeals in New York said Microsoft could not be forced to turn over emails stored on a server outside of the US. Now, however, Magistrate Judge Thomas Rueter in Philadelphia has taken the opposite view with Google.
It’s safe to say that any digital privacy bill written more than three years before the invention of the World Wide Web is probably due for an overhaul. But the Electronic Communications Privacy Act has persisted intact for more than three decades, including its anachronistic loophole that allows the warrantless collection of emails from US citizens. Now, in its second attempt in two years, Congress is poised to reform the most outdated elements of ECPA. With Trump’s incoming Justice Department, that reform seems more urgent than ever.
While developing a tool for evaluating mobile application security, researchers at Sudo Security Group Inc. found out something unexpected. Seventy-six popular applications in Apple's iOS App Store, they discovered, had implemented encrypted communications with their back-end services in such a way that user information could be intercepted by a man-in-the-middle attack. The applications could be fooled by a forged certificate sent back by a proxy, allowing their Transport Layer Security to be unencrypted and examined as it is passed over the Internet.
Norwegian intelligence revealed on Friday that the country's foreign ministry, defence ministry and other institutions have been targeted by hackers believed to have ties with Russian authorities.
The group suspected to be behind the cyberattack - APT 29, also known as Cozy Bear - has been previously been linked to the attack on the Democratic National Committee (DNC) during the US presidential election campaign last year.
The website for Donald Trump's chain of hotels appears to be under attack from hackers trying to DDoS the website.
According to reports from the Daily Dot, the Trump Hotels website was displaying a notice that it was “Checking your browser before accessing Trumphotels.com” when visitors tried to access the home page. Such notifications are a strong indication that a site is struggling from a massive amount of traffic that a DDoS attack brings.