23 Sep 2019

The Most Common And Insecure Password Revealed—It’s Not 123456 Or Admin

Internet of Things (IoT) devices are know for their poor security, including the presence of default login credentials that make many of these devices laughably easy to hack. While weak default passwords like “admin” and “123456” are notoriously common, a new study by Avira shows that the most common weak

Read More
23 Sep 2019

Organizations struggle to manage cyberthreats without automation

Executives at one in two (49%) companies do not have complete visibility into their IT assets or are not aware of their level of visibility, a new report by Fidelis indicates. Because 69% of organizations say that their cyber terrain is growing, visibility issues are likely to increase in the

Read More
23 Sep 2019

WeWork’s weak Wi-Fi security leaves sensitive documents exposed

The Wi-Fi networks offered to freelancers and businesses by shared workspace provider WeWork are so poorly secured that they expose highly sensitive information including devices, financial records, client databases, emails and business transactions to everyone on the network. The Wi-Fi security issues were discovered by an employee of one of

Read More
23 Sep 2019

Facebook suspended tens of thousands of apps from 400 developers

Facebook has suspended tens of thousands of apps as the result of an investigation into the data handling practices of third-party apps on the social media platform. The investigation was launched in response to the Cambridge Analytica scandal. Ime Archibong of Facebook stressed that the suspended apps from around 400

Read More
23 Sep 2019

Ransomware Strikes 49 School Districts & Colleges in 2019

So far this year, 182 US organizations have been at the receiving end of a ransomware attack, new figures released by Armor show. The victims include 70 municipalities, 49 US school districts and colleges, as well as 27 healthcare organizations. According to Chris Hinkley of Armor, organizations in the government,

Read More
23 Sep 2019

Windows 7 Voting Systems to Get Free Security Updates Through 2020 Elections

Even though Windows 7 will reach end-of-life on January 14th, 2020, Microsoft will continue to provide security updates for US voting systems running this operating system. The extended support will cover voting systems used for the 2020 US presidential election as well as local US elections and national elections in

Read More
23 Sep 2019

Iran Denies Successful Cyber Attacks on Oil Sector

Iran’s cyber security office on Saturday denied what it referred to as “Western media claims,” about a cyberattack on the country’s oil sector. Earlier that day, NetBlocks, a non-governmental organization monitoring Internet outages, had reported “intermittent disruptions to internet connectivity in [Iran]” that affected “online industrial and government platforms” and

Read More
23 Sep 2019

Remember that security probe that ended with a sheriff cuffing the pen testers? The contract is now public so you can decide who screwed up

Two security experts who were hired by the state of Iowa to test the IT security of the Iowa court system were arrested at the county courthouse of Dallas, Iowa earlier this month as the result of a disagreement between the security firm and local authorities about the scope of

Read More
23 Sep 2019

VPN apps with 500M+ installs caught serving disruptive ads to Android users

Google Play has once again made the news because a security researcher discovered malicious apps on the official Android app store. Four VPN and antivirus apps by developers from Hong Kong and China were found serving ads in a malicious ways, such as running ads in the background or displaying

Read More
20 Sep 2019

Payment Card Breach Hits 8 Cities Using Vulnerable Bill Portal

Two years after a vulnerability in payment software used by municipalities across the United Sates resulted in a breach exposing the payment card details of hundreds of thousands of US citizens, threat actors have managed to attack the Click2Gov software one again. In August of this year, attackers exploited another

Read More