uTorrent vulnerabilities allow information disclosure and remote code execution

An easy but effective set of vulnerabilities turns uTorrent into swiss cheese.

technology news

Tesla falls victim to cryptomining scheme, minor breach

by Zaid Shoorbajee • 21 hours ago

Hackers used exposed elements of Tesla's cloud environment to mine cryptocurrency. They also gained access to sensitive company information.

Intel faces 32 class action suits stemming from Spectre and Meltdown

by Zaid Shoorbajee • 5 days ago

The company disputes the claims and says it is fighting all the lawsuits "vigorously."

There's a new 'text bomb' that will crash iPhones with a single symbol

by Michelai Graham • 5 days ago

An Apple bug in its latest software update is crashing applications that display a single letter from the south India language Telugu. The symbol could crash Mac, iOS and iPhone applications just by a person viewing it.

Indictments reveal how Russia's 2016 election information warfare worked

by Patrick Howell O'Neill • 5 days ago

Russian operatives were able to obfuscate their activities by stealing the identities of U.S. citizens, renting servers based in the U.S. and using a VPN all while posting targeted propaganda on social media, according to Robert Mueller's lengthy indictment.

Why GDPR is flipping the thought process around data ownership

by Greg Otto • 5 days ago

In a new podcast, CyberScoop gets experts to separate fact from fiction when it comes to GDPR.

Two Russians sentenced to prison for role in hacks against U.S. companies

by Patrick Howell O'Neill • 6 days ago

Just three of the corporate victims lost more than $300 million, according to prosecutors.

U.S. and U.K. blame Russia for infamous 'NotPetya' cyberattacks

by Michelai Graham • 6 days ago

The U.S. and United Kingdom's governments are blaming the Russian military for a famous cyberattack that took place last June.

New gaming and hospitality cybersecurity alliance formed by Retail ISAC

by Michelai Graham • 6 days ago

A new cybersecurity alliance has been assembled to provide better protection in the gaming and hospitality business sectors as cyberthreats increase.

U.S. Air Force pays out $103,883 to hackers in bug bounties

by Patrick Howell O'Neill • 6 days ago

Add up all the U.S. military's bug bounty programs and over 3,000 vulnerabilities have been found in federal government systems.

Why Salon is turning to cryptomining

by Patrick Howell O'Neill • 7 days ago

CyberScoop spoke with Salon Media Group CEO Jordan Hoffner: "I’m not sure if it’s a smart move, not sure if it’s a dumb move, but it’s a bold move."

Atos, IT provider for Winter Olympics, hacked months before Opening Ceremony cyberattack

by Chris Bing • 7 days ago

Hackers appear to have compromised the main IT service provider for the Winter Olympic Games months before last week's highly publicized cyberattack.

After litany of alleged lies, Israeli hacking firm Ability Inc. settles lawsuit for $3 million

by Patrick Howell O'Neill • 7 days ago

The settlement is a significant hit for a company with fast evaporating cash reserves and revenue — and little explanation as to why things have gone so badly.

White House official: Paul Nakasone nominated for NSA Director

by Chris Bing • 1 week ago

The Trump administration plans to nominate the head of Army Cyber Command, Lt. Gen. Paul Nakasone, to be the next NSA director and commander of U.S. Cyber Command.

Salon will use readers' CPUs to mine Monero

by Patrick Howell O'Neill • 1 week ago

Enjoy progressive politics? Have some free computing power? Have we got a deal for you!

Telegram zero day used to spread cryptomining malware

by Zaid Shoorbajee • 1 week ago

The zero day is exploitable through the way the app's Windows client manages a Unicode character that reverses the direction of text. A JavaScript file disguised as an image file is used to deploy malware.

Winter Olympics cyberattacks meant to 'send a message'

by Chris Bing • 1 week ago

Multiple cybersecurity firms now suggests that a hacking group equipped with "destructive" wiper malware may have been behind the disturbance.

Equifax names Home Depot infosec lead as new CISO

by Zaid Shoorbajee • 1 week ago

Jamil Farshchi has been hired as the credit monitoring company picks up the pieces from 2017's mega breach.

DataVisor raises $40 million Series C for machine-learning fraud detection

by Greg Otto • 1 week ago

The company, founded by two former Microsoft Research employees, uses unsupervised machine learning to discover malicious behavior.

Senators question Pentagon over workforce's use of data-leaking fitness app Strava

by Michelai Graham • 2 weeks ago

A bipartisan group of Senators have called on the Defense Department to answer for how a popular fitness app apparently used by some U.S. soldiers, intelligence analysts and Pentagon officials led to the disclosure of secret bases and facilities around the world.

Watchdog: Despite progress, IRS needs to improve electronic fraud detection

by Zaid Shoorbajee • 2 weeks ago

An auditor at the Treasury Department commended the IRS for improvements, but said there's still work to be done.

Continue to CyberScoop.com