Welcome

Apple says Uighurs targeted in iPhone attack – Security

Apple has confirmed that China’s Uighurs, a mostly Muslim minority group considered a security threat by Beijing, had been the target of attacks due to iPhone security flaws, but disputed rival Google’s description of the effort to track users of the smartphone in real time. Google Project Zero researchers said last week that five security […]

Get Active Directory Security At 80% In 20% Of The Time

The risk level regarding Active Directory security has changed. Several vulnerabilities have been made popular with tools like mimikatz or sites likes adsecurity.org.Ping Castle is a tool designed to assess quickly the Active Directory security level with a methodology based on risk assessment and a maturity framework. It does not aim at a perfect evaluation […]

Mondoo – Cloud-Native Security And Vulnerability Risk Management

Mondoo – Cloud-Native Security And Vulnerability Risk Management By administrator September 6, 2019  CloudNative, Management, Mondoo, risk, security, Vulnerability Quick StartInstall mondoo:Workstation export MONDOO_REGISTRATION_TOKEN=’changeme’curl -sSL http://mondoo.io/download.sh | bash Service export MONDOO_REGISTRATION_TOKEN=’changeme’curl -sSL http://mondoo.io/install.sh | bash For other installation methods, have a look at our documentation.Run a scan: # scan a docker image from remote registrymondoo […]

Facebook, Microsoft launch contest to detect deepfake videos – Cloud – Networking – Security – Software

Facebook Inc is teaming up with Microsoft Corp , the Partnership on AI coalition and academics from several universities to launch a contest to better detect deepfakes, the company said in a blog post on Thursday. The social media giant is putting US$10 million into the “Deepfake Detection Challenge,” which aims to spur detection research. […]

NSW Police issue warning about TeamViewer enabled remote access scams – Security – Software

NSW Police have issued a warning that scammers are increasingly using TeamViewer’s remote access software to target personal and business computers to capture banking and email data. Cybercrime Squad commander, detective superintendent Matt Craft, urged the public to remain vigilant when downloading software online after the police force became aware of the increasing number of […]

New cyber security principles provide strategic guidance for government agencies

A significant revamp of a key cyber security document is designed to provide government agencies with strategic guidance on protecting their data. The Australian Cyber Security Centre (ACSC), which is part of the Australian Signals Directorate (ASD), has released an updated version of the government’s Information Security Manual (ISM). The ISM now includes a series […]

Android exploits now pay more than iOS ones – Security

Controversial exploit trader Zerodium now pays more for unpatched vulnerabilities affecting Google’s Android operating system than Apple’s iOS equivalent, for the first time. An Android zero-click full-chain exploit that persists on compromised mobile devices can earn sellers up to US$2.5 million. In comparison, Zerodium pays up to US$2 million for an equivalent iOS exploit chain. […]

Europe should ignore ‘treacherous promises’ of Facebook’s Libra currency, says central banker – Finance – Networking – Security

Facebook’s proposed Libra currency could undermine the European Central Bank’s ability to set monetary policy and Europe should ignore its siren call of “treacherous promises” ECB board member Yves Mersch said has warned. Facebook announced Libra — a new digital coin backed by four official currencies and available to billions of social network users around […]

Secret penetration tests, fines for banks under PayID security crackdown – Finance – Hardware – Security – Software

Australian banks and credit unions will have their transactional systems secretly penetration tested to arrest deficiencies and stop fraud and abuse of institutional infrastructure plugged into to the New Payments Platform after two PayID look-up attacks. The NPP on Monday confirmed it was quickly taking its own steps to look for security holes among participants, […]

US and Poland may sign 5G network security agreement on Pence visit – Security – Telco/ISP

The United States and Poland may sign an agreement aimed at securing 5G networks when US Vice President Michael Pence visits Warsaw in the coming days, a senior White House official said on Friday. Pence leaves on Saturday night on a trip to Poland, Ireland, Iceland and Britain. President Donald Trump had planned to make […]