Security Technology: December 2017

WhatsApp messaging service returns after global outage

(Reuters) - WhatsApp, a popular messaging service owned by Facebook Inc, suffered a global outage for about an hour on Sunday before the problem was fixed.

from Reuters: Technology News http://ift.tt/2CqDueX

The Worst Hacks of 2017, from Equifax to Crash Override

From Equifax to Crash Override, it was a banner year for cybersecurity fails.

from Security Latest http://ift.tt/2EpkU51

UK may use taxes to get tech giants to do more to fight extremism, minister says

LONDON (Reuters) - Britain may impose new taxes on tech giants like Google and Facebook unless they do more to combat online extremism by taking down material aimed at radicalizing people or helping them to prepare attacks, the country's security minister said.

from Reuters: Technology News http://ift.tt/2BZSAok

Infineon not vulnerable to takeover: CEO in Boersen-Zeitung

FRANKFURT (Reuters) - German chipmaker Infineon does not see itself as vulnerable to a takeover despite mega-mergers in the sector led by Broadcom's $103 billion offer for Qualcomm, its chief executive told Germany's Boersen-Zeitung.

from Reuters: Technology News http://ift.tt/2lvhp4t

Trolls, Bots, and Fake News Made 2017 a Terrible Year for Internet Freedom

Trolls, bots, and fake news posed a serious threat to internet freedom this year—and there's no easy answer in sight.

from Security Latest http://ift.tt/2DB5Rns

Trump wants Postal Service to charge 'much more' for Amazon shipments

WASHINGTON/SEATTLE (Reuters) - President Donald Trump called on the U.S. Postal Service on Friday to charge "much more" to ship packages for Amazon Amazon, picking another fight with the online retail giant he has criticized in the past.

from Reuters: Technology News http://ift.tt/2pWYHbd

Amazon ordered not to pull in customers who can't spell 'Birkenstock'

A German court has ordered Amazon not to lure internet shoppers to its online marketplace when they mistakenly search for "Brikenstock", "Birkenstok", "Bierkenstock" and other variations in Google.

from Reuters: Technology News http://ift.tt/2lojcrY

TippingPoint Threat Intelligence and Zero-Day Coverage – Week of December 25, 2017

Last Sunday, my day could be best described by the lyrics of Sammy Hagar’s song “I Can’t Drive 55.” I was issued a ticket for an alleged speeding infraction. I usually drive about 10 mph over the speed limit, but my “alleged” lead foot got the best of me and so did the Texas Highway Patrol. C’est la vie…

No one will ever get a ticket for their network performing at top speeds, and we’ll make sure that it’s secure at the same time. We recently launched our new TippingPoint TX Series, with our 8200TX delivering an unprecedented 40 Gbps of inline inspection throughput in just a single rack unit (1U) form factor. Need a little more oomph? You can stack three 8200TX devices to get up to 120 Gbps. Our 8400TX comes in a 2U form factor for those of you who need more port density. And, the 8400TX is recommended by NSS Labs in their 2017 NGIPS Group Test, with an overall security effectiveness rating of 99.6% and network latency tested at under 10 microseconds. You can learn more about the TippingPoint TX Series and all the great new features here.

One last thing! On a personal note, I’d like to thank all of you who take the time to read my little blog. I wish you all a happy and prosperous 2018!

3.2.0 Digital Vaccine Deployment

Customers with TippingPoint models 10/110/330 that are running TOS v3.6.6 or earlier must upgrade to TOS v3.6.7 at the earliest opportunity. Failure to upgrade will result in the inability to update Digital Vaccine (DV) packages released on and after January 16, 2018. The 3.2.0 DV package will be at a size that TOS v3.6.6 and earlier can no longer support. For complete details refer to the TOS v3.6.7 Release Notes found on Trend Micro TippingPoint Threat Management Center (TMC) website.

Zero-Day Filters

There are five new zero-day filters from three vendors in this week’s Digital Vaccine (DV) package. A number of existing filters in this week’s DV package were modified to update the filter description, update specific filter deployment recommendation, increase filter accuracy and/or optimize performance. You can browse the list of published advisories and upcoming advisories on the Zero Day Initiative website. You can also follow the Zero Day Initiative on Twitter @thezdi and on their blog.

Adobe (3)

• 29946: ZDI-CAN-5152: Zero Day Initiative Vulnerability (Adobe Acrobat Pro DC)

• 29947: ZDI-CAN-5153: Zero Day Initiative Vulnerability (Adobe Acrobat Pro DC)

• 29950: ZDI-CAN-5204: Zero Day Initiative Vulnerability (Adobe Acrobat Pro DC)

Advantech (1)

• 30100: HTTP: Advantech WebAccess RtspVapgDecoderNew2 Vulnerable ActiveX Method Usage(ZDI-17-531,ZDI-17-563)

Trend Micro (1)

• 30099: HTTP: Trend Micro Control Manager CCGIServlet SuspiciousThreat parameters SQL Injection (ZDI-17-089)

Missed Last Week’s News?

Catch up on last week’s news in my weekly recap.

from Trend Micro Simply Security http://ift.tt/2C8QdDU

AT&T says all U.S. states will use its public safety netwowrk

NEW YORK (Reuters) - AT&T Inc said on Friday that all 50 U.S. states had decided to participate in the nationwide broadband network it is building for first responders as part of a $6.5 billion government contract.

from Reuters: Technology News http://ift.tt/2CmrWa0

The Most-read WIRED Security Stories of 2017

Numerous tales of hacking and breaches proves just how permeable the digital membrane can be.

from Security Latest http://ift.tt/2lpTfsd

Trump targets Amazon in call for postal service to hike prices

WASHINGTON (Reuters) - U.S. President Donald Trump on Friday targeted online retailer Amazon in a call for the country's postal service to raise prices of shipments in order to recoup costs.

from Reuters: Technology News http://ift.tt/2pRAO5a

Critical "Same Origin Policy" Bypass Flaw Found in Samsung Android Browser

A critical vulnerability has been discovered in the browser app comes pre-installed on hundreds of millions of Samsung Android devices that could allow an attacker to steal data from browser tabs if the user visits an attacker-controlled site. Identified as CVE-2017-17692, the vulnerability is Same Origin Policy (SOP) bypass issue that resides in the popular Samsung Internet Browser version

from The Hacker News http://ift.tt/2pYIaE3

Cryptojacking Has Gotten Out of Control

The practice of using a website visitor's device to mine cryptocurrency has expanded—and evolved—at an alarming rate.

from Security Latest http://ift.tt/2C9dqFY

China's Huawei flags slower smartphone and overall revenue growth

HONG KONG (Reuters) - China's Huawei Technologies Co Ltd [HWT.UL] on Friday flagged overall and smartphone revenue figures for 2017 that represented its slowest growth in four years, and vowed to extend its global reach with more premium products next year.

from Reuters: Technology News http://ift.tt/2C6NudY

Two Romanians Charged With Hacking Police CCTV Cameras Before Trump Inauguration

Remember how some cybercriminals shut down most of Washington D.C. police's security cameras for four days ahead of President Donald Trump's inauguration earlier this year? Just a few days after the incident, British authorities arrested two people in the United Kingdom, identified as a British man and a Swedish woman, both 50-year-old, on request of U.S. officials. A United States federal

from The Hacker News http://ift.tt/2CfFczP

India's Reliance Jio to buy RCom's wireless assets in $3.75 billion deal: sources

MUMBAI (Reuters) - Debt-laden Reliance Communications has signed a deal to sell its wireless assets to Reliance Jio Infocomm, for a total value of nearly 240 billion rupees ($3.75 billion), two sources familiar with the matter told Reuters on Friday.

from Reuters: Technology News http://ift.tt/2E8NxDm

China's Huawei flags slowest revenue growth in four years

HONG KONG (Reuters) - China's Huawei Technologies Co Ltd expects 2017 revenue to rise 15 percent to 600 billion yuan ($92.08 billion), its rotating chief executive, Ken Hu, said in a New Year's message to staff posted on its official WeChat account on Friday.

from Reuters: Technology News http://ift.tt/2DtAviS

China's Huawei says expects 2017 revenue up 15 percent to $92 billion

HONG KONG (Reuters) - China's Huawei Technologies Co Ltd [HWT.UL] expects 2017 revenue to rise 15 percent to 600 billion yuan ($92.08 billion), its rotating chief executive, Ken Hu, said in a New Year's message to staff posted on its official WeChat account on Friday.

from Reuters: Technology News http://ift.tt/2DuC6oj

Hong Kong eyes blockbuster China tech IPO queue, led by Xiaomi

HONG KONG (Reuters) - Hong Kong bankers are eyeing a slew of blockbuster IPOs from Chinese technology firms with a total market capitalization of some $500 billion over the next two years, in a sharp contrast to 2017 - the city's worst year for raising equity in a decade.

from Reuters: Technology News http://ift.tt/2lpwXXd