News

News

• January 26, 2018 26 Jan'18

  A series of new IoT botnets plague connected devices

  News roundup: New IoT botnets compromise tens of thousands of devices worldwide. Plus, Kaspersky Lab filed an injunction against DHS, mobile POS gets a PCI standard, and more.

• January 26, 2018 26 Jan'18

  Blizzard security flaw should put game developers on notice

  A newly-discovered Blizzard security bug, which affected all of the company's popular PC games including Overwatch, should serve as a warning for the video game industry.

• January 25, 2018 25 Jan'18

  Electron framework flaw puts popular desktop apps at risk

  The Electron framework -- used to develop desktop apps using web code -- included a remote code execution flaw that was passed on to popular apps like Slack.

• January 25, 2018 25 Jan'18

  Comodo calls out Symantec certificate issues, applauds Google

  Bill Conner and Bill Holtz, who recently joined Comodo CA as chairman and CEO, respectively, discuss Symantec's certificate issues and their effect on the certificate market.

• January 24, 2018 24 Jan'18

  Risk & Repeat: Backdoor access, strong encryption debate rolls on

  In this week's Risk & Repeat podcast, SearchSecurity editors discuss the FBI's continued criticism of encrypted devices and the risks of vendor-created backdoor access points.

• Sponsored News

  • Closing Your App Gap with Business Dashboards and Analytics

    Sponsored by IBM - What you don’t know about your apps can hurt you—costing you time, money and productivity. With the right UEM solution, you can use AI to gain actionable insight into app usage, performance and security to quickly and easily get your apps in gear. See More

  • Meeting GDPR Compliance with Endpoints and Mobile Devices

    Sponsored by IBM - May 25, 2018 has passed, but that doesn’t mean your GDPR work is done. Compliance demands constant vigilance, particularly for endpoints and mobile devices. Learn why UEM is the modern approach to meeting ongoing compliance requirements. See More

  • Configure Security Policies for Endpoints & End-Users with Confidence

    Sponsored by IBM - Imagine a way to configure and enforce policies for all endpoints, guided by AI, real-time analytics and best practices from your industry and peer usage. Imagine no longer. With the right UEM solution, you can do all of that—and much more. See More

  • Is Your UEM Solution Tough Enough for Ruggedized Devices?

    Sponsored by IBM - Ruggedized devices have unique characteristics, but they still need to be managed, secured, tracked and updated—same as other endpoints. With UEM you can simply and securely manage all devices using the same platform. Here’s what to look for. See More

  View All Sponsored News
• January 23, 2018 23 Jan'18

  Gemalto Sentinel flaws could lead to ICS attacks

  Security researchers found 14 vulnerabilities in Gemalto Sentinel hardware tokens, which could allow dangerous ICS attacks, including full-system takeover.

• January 23, 2018 23 Jan'18

  Intel Meltdown patches pulled with little explanation

  Intel claims it has determined why the Spectre and Meltdown patches caused issues on some chips. The vendor is working on a fix and suggests users don't patch for now.

• January 19, 2018 19 Jan'18

  Okiru malware puts billions of connected devices at risk

  News roundup: Okiru, a new Mirai variant, could put over 1.5 billion devices at risk of a botnet. Plus, G Suite Enterprise now comes with a security center, and more.

• January 19, 2018 19 Jan'18

  Trisis ICS malware was publicly available after attack

  The Trisis ICS malware used in a cyberattack on an oil and gas company in Saudi Arabia in December has been publicly available for weeks after being copied by unknown actors.

• January 18, 2018 18 Jan'18

  The strange case of the 'HP backdoor' in Lenovo switches

  Lenovo's discovery of an authentication bypass, literally titled "HP backdoor," within its networking switches brings unsettling implications for the IT industry.

• January 17, 2018 17 Jan'18

  Skygofree Android spyware is a powerful surveillance tool

  A new Android spyware tool called Skygofree was described as one of the most powerful surveillance tools and can even capture encrypted messages from WhatsApp.

• January 17, 2018 17 Jan'18

  Risk & Repeat: Let's Encrypt certificates offer pros, cons

  In this week's Risk & Repeat podcast, SearchSecurity editors discuss Let's Encrypt certificates and weigh the positives and negatives the free certificate authority provides.

• January 16, 2018 16 Jan'18

  CIA attributes NotPetya attacks to Russian spy agency

  The CIA reportedly concluded that Russia's foreign intelligence agency created and was responsible for the NotPetya attacks against Ukraine in June.

• January 12, 2018 12 Jan'18

  Intel Meltdown patch causes issues with Broadwell and Haswell

  Customers reported the firmware Intel Meltdown patch caused reboot issues on Broadwell and Haswell chipsets, leading to a patch review by Intel.

• January 12, 2018 12 Jan'18

  AMD backtracks on Spectre vulnerabilities, plans microcode updates

  AMD initially believed the Spectre vulnerabilities posed "near zero risk" to its chip, but the company this week reversed course and is planning microcode updates for its products.