App-based taxi firm Uber is once again attracting the wrong type of headlines after exposing internal data on user accounts and phone numbers through its lost and found database.
According to Motherboard, the internal database was accessible online for around 5 hours on Monday before being replaced with a 404 error message.
MongoDB, the open-source NoSQL company, faces a huge security alert after almost 40,000 of its customer databases were found unsecured on the internet, a document obtained by Information Age reveals.
One database alone – from an unnamed French telecommunications company – includes around 8 million customer phone numbers and addresses.
Facebook, Yahoo and other technology firms announced the creation of a "ThreatExchange" to share information to help thwart cyberattacks.
"ThreatExchange is built on the existing Facebook platform infrastructure... so that partner companies can query the available threat information and also publish to all or a subset of participating organisations," the social network said in a statement.
It turns out that hackers have figured out how to get past biometric fingerprint authentication by using photographs of a subject’s fingers and fingerprint identification software, according to Tech News World. But does this mean the idea of using the technology for secure authentication is over?
Security experts yesterday were still frustrated about Microsoft's decision last month to halt advance warnings of each month's patch slate, with one calling it a "blockade" and another arguing that it makes it difficult for IT administrators to do their job.
Another day, another cyberespionage campaign attributed to a Chinese hacking group. Today's newly identified hacking push is a watering hole attack against Forbes and other targets last November that's been attributed by iSIGHT Partners and Invincea to likely be the handiwork of a long-running group they call Codoso Team, but which has also been named as Sunshop Group. The campaign was made possible by a zero-day attack that strung together a now-patched Adobe vulnerability with a bypass vulnerability in Microsoft's ASLR technology for Internet Explorer that the company patched today.
Microsoft today released nine update bundles to plug at least 55 distinct security vulnerabilities in its Windows operating system and other software. Three of the patches fix bugs in Windows that Microsoft considers “critical,” meaning they can be exploited remotely to compromise vulnerable systems with little or no help from users, save for perhaps clicking a link or visiting a hostile Web site.
Pro tip for any would-be online drug kingpins: Don’t post vacation pictures on Facebook.
Ross Ulbricht was convicted in a Manhattan federal court last week for his role operating the Silk Road online marketplace. He could serve 30 years or more behind bars.
With smarter cars comes improved safety, better performance and all the benefits of a smartphone baked into your dashboard. Yet automakers have been slow to recognize how hackers can take advantage of on-the-road computers or how best to protect our privacy, according to a new report.
The report, released Monday by Sen. Edward Markey (D-Mass.), detailed lax cybersecurity that opens vehicles to potential hacking and drivers to privacy breaches as automakers collect more data on our driving habits.
President Barack Obama said the U.S. is confronting national security threats from violent extremism to Russian aggression that will take years to resolve.
The president’s approach is described in his National Security Strategy, a 33-page document to be released on Friday that offers a counterpoint to Republicans who say Obama has been too slow and timid in confronting global challenges.
