October 18, 2017
Via: Security IntelligenceAs more companies suffer breaches and leak private data online, it becomes harder for organizations to be transparent and establish trust with their customers. Recent incidents have shown that many experts underestimated the total impact of a data breach in […]
Application security, Security
February 9, 2017
Via: Help Net SecurityFor companies that provide applications to their customers, keeping those applications secure is a must. Setting up an application security program is the next logical step, but there are many choices to be made when trying to make it as […]
December 2, 2016
Via: Naked SecurityLast year, Uber gave us a heads-up about its new privacy policy and how it had given itself permission to routinely track our locations even after we’ve left the car, following us as we sally forth into businesses, cross the […]
November 25, 2016
Via: Naked SecurityEvery Tesla model comes with a companion smartphone application for Android and iOS that allows owners to do basic things such as checking the battery level and the charging status, locate the vehicle, and flash the lights to find it […]
November 16, 2016
Via: Security WeekThe Mac version of the Shazam music discovery application keeps the device’s microphone active even after the user has switched off the app. While it doesn’t appear that Shazam is trying to spy on users, this behavior does have some […]
October 28, 2016
Via: Kaspersky BlogFacebook regularly changes security and privacy settings (some say they do so too often). That’s why it makes sense to check from time to time for any new or changed options. In this post, we explain Facebook security settings in […]
October 10, 2016
Via: Security AffairsSpotify users have been targeted by a malvertising campaign, the malicious advertising served to the victims could automatically open a web browser and redirect victims websites hosting malware. Spotify is a popular online music service that allows its users to listen […]
October 6, 2016
Via: Kaspersky BlogEarlier this week, Facebook introduced Marketplace, a service that helps users discover, buy, and sell items locally. Think of it as Facebook’s Groups (which permit the sale of items) meets Craigslist. As the parents of relatively young children, my wife […]
Application security, Mobile security
October 6, 2016
Via: Security AffairsThe WiFox mobile app was designed as a huge container of network names and passwords for Wi-Fi airports networks worldwide. Do you travel a lot? Probably you have already read about WiFox, it is a legitimate Android/iOS mobile app that includes indications of […]
Application security, Privacy protection
August 17, 2016
Via: Hep Net SecurityGoogle Duo is a simple 1-to-1 video calling app available for Android and iOS. In order to use Google Duo all you need is your phone number, no separate account is necessary. All Duo calls are end-to-end encrypted, and naturally, […]
Application security, Vulnerabilities
July 12, 2016
Via: TrendMicro BlogAs the virtual world of technology and the real world of our physical lives come into greater convergence, the chances for them to come together in bad and dangerous ways increases. Over the weekend, we’ve gotten to see the latest […]
Application security, Privacy protection
July 6, 2016
Via: Security WeekA third-party keyboard application for Android that had over 50 million installs was found to collect user data and send it to a remote server, Pentest Limited researchers reveal. Dubbed “Flash Keyboard” and developed by DotC United, the application was […]
Application security, Mobile security
May 26, 2016
Via: CSO OnlineEnterprise employees use mobile apps every day to get their jobs done, but when malicious actors start impersonating those apps, it spells trouble for IT departments. David Richardson, director of product at Lookout, and his team recently researched five families […]
Application security, Data loss
May 16, 2016
Via: Threat PostYahoo has forced a password reset on Tumblr account holders after it discovered that someone had accessed email addresses, and salted and hashed passwords from early 2013. A Tumblr spokesperson would not disclose who had accessed the data, where it […]
May 10, 2016
Via: Security IntelligenceConventional IT management calls for a means to visualize all activity, from the network and data center to the cloud, devices, users, apps and everything between. Without a security information and event management (SIEM) solution such as IBM QRadar, this […]
April 22, 2016
Via: Help Net SecurityWhen doing penetration testing, security professionals regularly have to deal with words that are specific to the task at hand, and many are not found in common wordlists. Another problem comes from popular tools, many of which are challenging to […]
March 17, 2016
Via: InfoSecurity LiveA researcher discovered an unprotected database storing the details of 198,000 users who had signed up for a now-defunct iOS application. A misconfigured MongoDB database associated with the iPhone app Kinotopic was discovered by Chris Vickery, a researcher who currently […]
March 1, 2016
Via: Kaspersky BlogWe talk a lot about phishing and how dangerous it is. At times we feel like we may talk about it too much to where people simply say, “yeah, yeah. That will never happen to me, I am too smart […]
March 1, 2016
Via: Help Net SecurityRemember when back in May 2015 the IRS took offline its Get Transcript app because it was misused by cyber-criminals to access sensitive personal information of more than 100,000 taxpayers? Well, the final number is much, much higher. In a […]
February 23, 2016
Via: Help Net SecurityThe new Volvo app enables the digital key on the customer’s mobile phone to do everything a physical key currently does, such as locking or unlocking the doors and starting the engine. Volvo is developing the application in-house, and customers […]