Tuesday, February 10, 2015

Cyber Security and Privacy News of the Week, 3 - 10 Feb 2015

This Week in Cyber Security and Privacy


Links to stories/ pictures:
1. www.forbes.com/sites/thomasbrewster/2015/02/02/yet-another-adobe-flash-zero-day/

2. http://www.theguardian.com/us-news/2015/feb/05/millions-of-customers-health-insurance-details-stolen-in-anthem-hack-attack

3. http://www.reuters.com/article/2015/02/05/us-sony-pascal-idUSKBN0L92BG20150205

4. https://nakedsecurity.sophos.com/2015/02/06/facebooks-deepface-facial-recognition-technology-has-human-like-accuracy/

5. http://www.bbc.com/news/technology-31296188

6. http://thenextweb.com/insider/2015/02/10/uber-reportedly-left-lost-found-items-log-exposed-online/

Originally posted on Gadi Evron's blog, at: http://gadievron.blogspot.com/
Also on Facebook: http://www.facebook.com/gadioncyber
And on Twitter: http://twitter.com/gadievron

Gadi Evron.

Sunday, February 08, 2015

Anthem and the stock market post breach

This was the pre-trading situation with Anthem yesterday. Impressive, yet ups and downs are a regular thing, we'll see how they're doing in a couple of weeks.


(via Ram Levi)

Gadi Evron.

Wednesday, February 04, 2015

Cyber Security and Privacy News of the Week, 27 January - 3rd February, 2015

This Week in Cyber Security and Privacy


Links to stories/ pictures:
1. http://www.scmagazine.com/report-most-us-weapons-programs-contain-significant-vulnerabilities/article/394499/

http://element-y.com/wp-content/uploads/2013/01/pentagon.jpg

2. http://www.infosecurity-magazine.com/news/us-army-releases-cyberforensic/
3. http://www.cnet.com/news/chrome-becoming-tool-in-googles-push-for-encrypted-web/

4. https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-0235
https://cve.mitre.org/
5. http://www.spiegel.de/international/world/regin-malware-unmasked-as-nsa-tool-after-spiegel-publishes-source-code-a-1015255.html

6. http://www.pcworld.com/article/2878437/bmw-cars-found-vulnerable-in-connected-drive-hack.html
http://www.autoblog.com/2015/02/03/bmws-connected-drive-feature-vulnerable-to-hackers/

Originally posted on Gadi Evron's blog, at: http://gadievron.blogspot.com/
Also on Facebook: http://www.facebook.com/gadioncyber
And on Twitter: http://twitter.com/gadievron


Gadi Evron.

Where did they go wrong?

My experience was short lived but fascinating to me.

I rang the bell. The receptionist came out through an open door, tried for this combo biometric plus code authentication device on the main door, failed, asked me to wait and went in through the other door, walked around and opened the door from the inside.


Where did whoever designed this security go wrong? :)


Gadi Evron.

Wednesday, January 21, 2015

This Week in Cyber Security and Privacy, 13-20 January 2015

This Week in Cyber Security and Privacy, 5-12 January 2015.


Links to stories/ pictures:

1. http://www.gironsec.com/blog/2015/01/owning_modems_and_routers_silently/

2. http://itinsight.hu/en/posts/articles/2015-01-28-android-bypass/

3. http://thehackernews.com/2015/01/google-windows-vulnerability.html

4. http://www.theregister.co.uk/2015/01/18/snowden_doc_leak_confirms_china_stole_f35_data/

5. http://www.businessinsider.com/apple-touch-id-icloud-patent-2015-1

6. http://thehackernews.com/2015/01/microsoft-windows-7-support.html

Originally posted on Gadi Evron's blog, at: http://gadievron.blogspot.com/
Also on Facebook: http://www.facebook.com/gadioncyber
And on Twitter: http://twitter.com/gadievron

Gadi Evron.

Wednesday, January 14, 2015

This Week in Cyber Security and Privacy, 5-12 January 2015

This Week in Cyber Security and Privacy, 5-12 January 2015.


Links to stories/pictures:

1. http://www.darkreading.com/attacks-breaches/banking-trojans-disguised-as-ics-scada-software-infecting-plants/d/d-id/1318542
http://threatpost.com/is-it-time-for-certified-ics-security-specialists/104804
2. https://privacyassociation.org/news/a/obama-announces-legislation-on-student-id-consumer-privacy/
3. http://krebsonsecurity.com/2015/01/lizard-stresser-runs-on-hacked-home-routers/
4. http://www.engadget.com/2015/01/02/google-posts-unpatched-microsoft-bug/
5. http://motherboard.vice.com/read/you-can-now-install-the-north-korean-operating-system-redstar-30
6. http://www.morganstanley.com/about/press/articles/7f189537-f51c-40b0-a963-fc0dc6c65861.html

Originally posted on Gadi Evron's blog, at: http://gadievron.blogspot.com/
Also on Facebook: http://www.facebook.com/gadioncyber
And on Twitter: http://twitter.com/gadievron

Gadi Evron.

Tuesday, January 06, 2015

This Week in Cyber Security and Privacy, 28 Dec - 4 Jan 2015

This Week in Cyber Security and Privacy, 28 Dec - 4 Jan 2015


Links to stories and photos:
1. http://mashable.com/2014/12/31/sony-cyberattack-blackberrys/

2. http://uk.businessinsider.com/report-angela-merkels-office-hit-by-cyber-attack-2014-12?r=US

3. http://threatpost.com/cellular-privacy-ss7-security-shattered-at-31c3/110135

4. http://www.reuters.com/article/2014/12/27/hacking-tool-idUSL1N0UB00U20141227

5. http://venturebeat.com/2014/12/28/chaos-computer-club-claims-it-can-reproduce-fingerprints-from-peoples-public-photos/

6. http://mobile.nytimes.com/blogs/dealbook/2014/12/22/entry-point-of-jpmorgan-data-breach-is-identified/?_r=2&referrer

7. http://www.haaretz.com/news/diplomacy-defense/1.633119

8. http://www.healthcareinfosecurity.com/nist-to-address-medical-device-security-a-7718

Originally posted on Gadi Evron's blog, at: http://gadievron.blogspot.com/
Also on Facebook: http://www.facebook.com/gadioncyber
And on Twitter: http://twitter.com/gadievron

Gadi Evron.

Monday, December 22, 2014

Cyber is not "passwords" - it's about YOU - Sony experience

Cyber is personal, it is about your life, your business - your kids.

A story from an employee at Sony, following the hack. Worth reading:
http://fortune.com/2014/12/20/sony-pictures-entertainment-essay/

 
Gadi Evron.

Sony and PRNK, still a better love story than...

Gina from Cymmetria Research created another meme on Sony's incident.