'Uncategorized' Category Archives

Dangerous Apple iOS 8 Security Flaw Uncovered, Called ‘No iOS Zone’

by , on

Professional hackers at SkyCure have discovered a major security vulnerability in iOS, that allows a malicious WiFi hotspot to launch a DDoS (Distributed Denial-of-Service) attack.  The ‘No iOS Zone’ flaw, works by exploiting the SSL security certificate of iOS 8 that leaves a device wide open. The SkyCure CEO said, “This is not a denial-of-service […]

Continue Reading

Security Flaw Affects All Windows Versions, Including Windows 10

by , on

Security firm Cylance has discovered a security flaw in all versions of Windows (including Windows 10) that has existed for two decades, called the “Redirect to SMB” vulnerability.  Microsoft has downplayed the vulnerability, however, in theory it could allow for the theft of usernames and passwords from millions of PCs, servers and tablets. Read More

Continue Reading

Symantec Report: Cyber Breaches Increase by 23% Year-Over-Year

by , on

According to Symantec’s 2014 Internet threat report, organized cyber crime is on the rise.   Here are some statistics from the study: Cyber breaches increased by 23% year-over-year 37% of affected companies were in the healthcare sector, compared to 11% in retail and 10% in education 60% of all email is spam Read More

Continue Reading

YouTube Security Flaw Allowed Deletion of Anyone’s Videos

by , on

A security researcher, Kamil Hismatullin, discovered a major flaw in the YouTube API that allowed people to delete any videos on YouTube.   He was searching for YouTube vulnerabilities to report to Google for a cash reward when he found this code: POST https://www.youtube.com/live_events_edit_status_ajax?action_delete_live_event=1 event_id: ANY_VIDEO_ID session_token: YOUR_TOKEN   In order for someone to delete the video, all […]

Continue Reading

Slack Gets Hacked, Adds Two-Factor Authentication

by , on

The business chat application, Slack, has been hacked.  The data breach lasted about 3 days, during which hackers obtained access to usernames, email addresses and passwords.  The company said a “very small number of Slack accounts” were affected, but no specific numbers were released.  Since news of the hack, Slack has rolled out a new […]

Continue Reading

Biggest Corporate Data Breaches of 2014

by , on

CSO put together a list of the largest corporate data breaches in 2014.  They used 1 million records exposed as the cutoff for companies to make the list.  Included in the list are JPMorgan Chase, Nieman Marcus, Staples, Home Depot and the IRS.   View the list here on CSO Online.

Continue Reading

Premera Blue Cross Hacked, 11 Million Customers at Risk

by , on

Premara Blue Cross has been the target of a sophisticated cyberattack where unauthorized access was gained to the Premera Blue Cross IT systems.  A Premara spokesman confirmed that about 11 million individuals may be affected, and the data compromised may include Social Security Numbers and bank account information.   If you use Blue Cross insurance, we recommend contacting the […]

Continue Reading

Dropbox SDK Flaw Lets Hackers Bypass Authentication, Other Password Managers Vulnerable

by , on

IBM has discovered a security flaw that can leave file storage accounts of mobile users open to hackers.  The IBM researchers identified sloppy coding in Dropbox’s SDK Version 1.5.4 for Android that caused the vulnerability.   76% of the applications that link to Dropbox accounts using the Dropbox SDK are vulnerable, including other password managers.  Keeper does […]

Continue Reading

Apple Patches FREAK Security Bug with iOS 8.2 Update

by , on

Apple’s latest iOS release includes a fix for the FREAK exploit, which allows hackers to attack encrypted networks, including Secure Sockets Layer (SSL) and Transport Layer Security (TLS) connections.   Most iPhones and iPads were affected by the bug.   Read more here: http://www.zdnet.com/article/apple-fixes-freak-security-flaw-with-ios-8-2-update/

Continue Reading