Security Technology

Original release date: June 30, 2018 VMware has released security updates to address vulnerabilities in VMware ESXi, Workstation, and Fusion. An attacker could exploit these vulnerabilities to obtain sensitive information. NCCIC encourages users and administrators to review the VMware Security Advisory VMSA-2018-0016 and apply the necessary updates. This product is provided subject to this Notification and this Privacy & Use policy. from US-CERT: The United States Computer Emergency Readiness Team https://ift.tt/2tSiNCq

Data leaks, NSA secrets, and more of this week's top security news. from Security Latest https://ift.tt/2N9bz5M

If your mobile carrier offers LTE, also known as the 4G network, you need to beware as your network communication can be hijacked remotely. A team of researchers has discovered some critical weaknesses in the ubiquitous LTE mobile device standard that could allow sophisticated hackers to spy on users' cellular networks, modify the contents of their communications, and even can re-route them to from The Hacker News https://ift.tt/2KylwYJ

Typeform, the popular Spanish-based online data collection company specializes in form building and online surveys for businesses worldwide, has today disclosed that the company has suffered a data breach that exposed partial data of its some users. The company identified the breach on June 27th, and then quickly performed a full forensic investigation of the incident to identify the source of from The Hacker News https://ift.tt/2Kz7ERc

(Reuters) - Apple Inc is rebuilding the widely used mapping application on its iPhones from the ground up with its own dataset, but Amsterdam-based TomTom NV will continue to be a data provider for Apple's maps app, Cupertino, California-based Apple told Reuters on Friday. from Reuters: Technology News https://ift.tt/2IEgYyi

A team of security researchers has discovered a new set of techniques that could allow hackers to bypass all kind of present mitigations put in place to prevent DMA-based Rowhammer attacks against Android devices. Dubbed RAMpage, the new technique (CVE-2018-9442) could re-enable an unprivileged Android app running on the victim's device to take advantage from the previously disclosed Drammer from The Hacker News https://ift.tt/2tM6aK3

Trend Micro recently asked a simple question on Twitter, “Are you worried about the safety of your data when using social media?” More than 33,000 responses later and the answer is a toss up. The discussions in response to our tweet didn’t provide a clear answer either. This is despite months of high profile Facebook scandals and years of massive data breach headlines. So what’s going on? The Question Posing a poll question is tricky. The question needs to be approachable enough to generate a lot of answers. It also needs to be a simple multiple choice, with only a few words per answer. This will almost always result in a straightforward poll. Not so this time. The answers are almost evenly divided across the three possible responses. Digging deeper, one of the challenges is how respondents chose to define the “safety” of their data. As a security professional, I use one definition, but in my experience most people have their own idea when it comes to the “safety” of their dat

STOCKHOLM/LONDON (Reuters) - Tencent-backed strategy and simulation games publisher Paradox Interactive expects more acquisitions and mobile gaming to help it meet sky-high investor expectations. from Reuters: Technology News https://ift.tt/2lJWafS

(Reuters) - U.S. chipmaker Qualcomm Inc on Friday extended the tender offer for its proposed $44 billion deal to buy NXP Semiconductors NV for the 29th time as it awaits clearance from the Chinese government. from Reuters: Technology News https://ift.tt/2KkR9ZV

I have never reverse engineered anything, but I did dismantle a Betamax VCR and put it back together without an instruction manual. My little brother liked to use the tape slot as a garage for his Hot Wheels® toy cars. We were usually able to take out the cars without any issues, but one day, he finally jammed enough cars in the tape slot and made it impossible to get them out. So, at the age of 10, I pulled out some tools, took the VCR apart, threw the cars at my little brother, and managed to rebuild the VCR so that it worked again. While I can only boast about my useless skill of repairing obsolete video players, Jasiel Spelman, also known as @WanderingGlitch , does know a thing or two about reverse engineering. Earlier this week, he posted a blog on the Zero Day Initiative (ZDI) web site covering the topic of variant hunting as part of the MindshaRE blog series that provides insight on various reversing techniques to security researchers and reverse engineers. In his blog, he exp

The ACLU has been trying to challenge the NSA's bulk surveillance for years. A hearing in *Wikimedia v. NSA* Friday could mark a breakthrough. from Security Latest https://ift.tt/2Mz0QAu

CORUCHE, Portugal (Reuters) - A Portuguese tech firm is uncorking an Android smartphone whose case is made from cork, a natural and renewable material native to the Iberian country. from Reuters: Technology News https://ift.tt/2KjyRIw

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, House lawmakers approved legislation for securing technology used to power critical infrastructures from cyberattacks. Read on to learn more.   The New Face of Necurs: Noteworthy Changes to Necurs’ Behaviors Six years after it was first spotted in the wild, the Necurs malware botnet is still out to prove that it’s a malware chameleon.  We recently discovered noteworthy changes to the way Necurs makes use of its bots, such as pushing infostealers on them and showing a special interest in bots with specific characteristics. Cryptocurrency-Mining Bot Targets Devices With Running SSH Service via Potential Scam Site The practicality of cryptocurrency mining on devices connected to the internet of things (IoT) is often a questionable matter in terms of computing power. Be that as it may, we’ve nonetheless seen miscreants targeting

SHENZHEN, China/HONG KONG (Reuters) - Chinese telecoms giant ZTE Corp announced a new board on Friday in a radical management shakeup as part of a $1.4 billion deal with the United States, moving it closer toward getting a devastating American supplier ban lifted. from Reuters: Technology News https://ift.tt/2tMcTTi

LONDON (Reuters) - Bitcoin's value slid to its lowest level since November on Friday, as waning investor interest and recent negative headlines from global regulators weakened demand for the cryptocurrency and most of its rivals. from Reuters: Technology News https://ift.tt/2yUwaI2

HONG KONG (Reuters/IFR) - China's Xiaomi Corp priced its Hong Kong initial public offering (IPO) at the bottom of an indicative range, raising $4.72 billion in the world's biggest tech float in four years, people close to the transaction said on Friday. from Reuters: Technology News https://ift.tt/2lHdSjR

LONDON (Reuters) - Facebook is continuing to be evasive in its answers to a British parliamentary committee examining a scandal over misuse of the social media company's data by Cambridge Analytica, the committee's chair said on Friday. from Reuters: Technology News https://ift.tt/2lKqM0G

Downloaded anything from Gentoo's GitHub account yesterday? Consider those files compromised and dump them now—as an unknown group of hackers or an individual managed to gain access to the GitHub account of the Gentoo Linux distribution on Thursday and replaced the original source code with a malicious one. Gentoo is a free open source Linux or FreeBSD-based distribution built using the from The Hacker News https://ift.tt/2yUwd6t

SHENZHEN, China/HONG KONG (Reuters) - Chinese telecoms giant ZTE Corp is expected to announce a radical management overhaul following a shareholder meeting on Friday, in line with conditions laid out in a $1.4 billion settlement deal to lift a crippling U.S. supplier ban. from Reuters: Technology News https://ift.tt/2tPxshJ

Cape Canaveral, Fla. (Reuters) - A science fiction-inspired robot hardwired to assist astronauts will launch from Florida early Friday morning to become the first personal, artificial intelligence-powered companion in space.  from Reuters: Technology News https://ift.tt/2lJwTCy

TOKYO (Reuters) - Japan's Sharp Corp scrapped a plan to issue up to $2 billion in new shares, changing its mind in a matter of weeks after the initial announcement prompted investors to dump its shares on fears of earnings per share dilution. from Reuters: Technology News https://ift.tt/2KibdMx