17 Sep 2019

LastPass Patches Bug Leaking Last-Used Credentials

The Chrome and Opera browser extensions for the freemium password manager LastPass contained a vulnerability that could be exploited to make the application leak login credentials, a security researcher with Google recently discovered. In order to exploit the bug, threat actors needed to get victims to visit a malicious website

Read More
17 Sep 2019

Asus, Lenovo and Other Routers Riddled with Remotely Exploitable Bugs

New research by Independent Security Evaluators has uncovered a total of 125 security vulnerabilities in small office/home office (SOHO) routers and network-attached storage devices (NAS). The researchers tested 13 devices in total, from vendors including Asus, Lenovo and Netgear. The report warns that all of the devices under scrutiny “had

Read More
16 Sep 2019

U.S. imposes sanctions on North Korean hackers accused in Sony attack, dozens of other incidents

The U.S. Department of Treasury imposed sanctions on three North Korean hacking groups controlled by the state’s primary intelligence agency, the Reconnaissance General Bureau. Officials claim the Lazarus Group, Bluenoroff, and Andariel used ransomware and attacks on banks, ATM networks, gambling sites, online casinos, and cryptocurrency exchanges to fund Pyongyang’s

Read More
16 Sep 2019

Cyberattacks On IOT Devices Surge 300% In 2019, ‘Measured In Billions’, Report Claims

A new report by F-Secure warns that cyberattacks on IoT devices are accelerating at an unprecedented rate. The company uses a network of honeypots to attract everyday attacks and discovered more than 2.9 billion attack events in the first half of 2019. Security researchers noted that the honeypots were dominated

Read More
16 Sep 2019

New Cyber Warning: ISIS Or Al-Qaeda Could Attack Using ‘Dirty Bomb’

Lt.-Gen Vincent Stewart, former deputy chief of U.S. Cyber Command and director of the Pentagon’s Defense Intelligence Agency, warns that the West continues to underestimate al-Qaeda or ISIS’ cyberattack capabilities. He says that while much of the cyber threat has rightly been focused on Russia, China, North Korea, and Iran,

Read More
16 Sep 2019

Cybercriminals shop for admin access to healthcare portals

A report by cybersecurity firm IntSight identifies hackers are increasingly targeting healthcare institutions with lax security measures. IntSight chief security officer Etay Maor said historically, the healthcare industry has not had as robust security as high profile targets like the financial sector. “Once cybercriminals started realizing that financial institutions are

Read More
16 Sep 2019

Could hackers gain a global ‘kill click’?

Congress claims the internet cables that connect the world are vulnerable to cyberattacks and it is unclear who is in charge of protecting them. The question of jurisdiction remains murky, largely due to the vast amounts of private-sector ownership of the internet architecture. However, the Department of Homeland Security (DHS)

Read More
13 Sep 2019

The Pentagon Needs to Make More Software Open Source, Watchdog Says

The Department of Defense is not fully abiding by a federal mandate to implement an open source software pilot program and make common code more readily available to other agencies, according to a recent Government Accountability Office report. In 2016, Congress required the Department of Defense to initiate the pilot

Read More
13 Sep 2019

Vulnerabilities Exposed 2 Million Verizon Customer Contracts

Want more insight? This content is restricted to OODA Network members only. Members get access to all site content plus access to exclusive reports and events. Please consider becoming a member. For more information please click here. Thanks! Already a member?  Sign in to your account.

Read More
13 Sep 2019

Researchers invent cryptocurrency wallet that eliminates ‘entire classes’ of vulnerabilities

Researchers from the Massachusetts Institute of Technology’s Computer Science and Artificial Intelligence Laboratory (MIT CSAIL) have invented a new form of hardware wallet designed to eradicate classes of vulnerabilities affecting cryptocurrencies. MIT CSAIL has developed “Notary”, a USB form-factored wallet that incorporates hardware fail-safes to mitigate successful cyberattacks. Known as

Read More