A posting from CRN in there Security section: Law enforcement has made as many as 5,000 requests for data about Apple (NSDQ:AAPL) customers since Dec. 1, according to a disclosure Apple issued Monday. “We do not provide any government agency with direct access to our servers, and any government agency requesting customer content must get a court order,” […]
US law enforcers want to see a kill switch on our mobile phones
A posting from Dark Reading in there Vulnerability and Threat Section: The Food and Drug Administration last week warned that patient health could be threatened by the introduction of malware into medical equipment or unauthorized access to configuration settings in medical devices and hospital networks. In an alert posted last week, the FDA noted that many medical […]
A posting from Information Week in there Security Storage section: NSA investigators now “know how many documents he downloaded and what server he took them from,” a government official — speaking on condition of anonymity — told the paper. In general, the use of removable USB storage devices is prohibited inside the agency. “Of course, […]
Blackberry releases first security fixes for new Z10 smartphone
An interesting articles from NBC NEWs in there Technology section: Federal prosecutors in New Jersey on Wednesday unveiled criminal charges against eight people accused of trying to steal at least $15 million from U.S. customers in an international cybercrime scheme targeting accounts at 15 financial institutions and government agencies. U.S. Attorney Paul Fishman said the […]
A posting from Dark Reading in there Vulnerability Management Section: In 2012, there were 5,291 vulnerabilities documented by security researchers and software firms. Wait, no, make that 8,137. No, 9,184. Well, it could even be 8,168 or 5,281. In reality, the exact number of vulnerabilities reported in different databases each year varies widely–by as much […]
A posting from Dark in there Application Security section: The oft-cited and oft-debated OWASP Top 10 list of the most critical vulnerabilities in Web applications got an update this week with the most prevalent flaw—injection–remaining at the number one slot. Injection, broken authentication and session management, cross-site scripting (XSS), insecure direct object references, security misconfiguration, […]
A posting from Naked Security: As we mentioned last week, Microsoft recently fought back against more than 1,400 Citadel botnets by sinkholing their Command and Control (C&C) infrastructure. SophosLabs has been monitoring Citadel for some time, including individual botnets such as those targeting Canadian institutions, so I decided to take a closer look at the impact of the […]
A posting from Dark Reading in there Authentication Section: As July’s Black Hat US in Las Vegas nears, organizers have confirmed another trio of highlighted Briefings from the show, which all focus, in some way or other, on getting under the skin of key systems. Here’s the official rundown: – Technologies don’t get much more ubiquitous […]
