In this election security drill, Massachusetts cops battle hackers to protect the vote

Police in Massachusetts gathered last Thursday to practice responding to cyberattacks from an adversary bent on disrupting the democratic process.

technology news

Twitter API bug leaked private data to other accounts

by Patrick Howell O'Neill • 3 days ago

A bug in Twitter’s account activity API inadvertently leaked sensitive data to other developers, including direct messages and protected tweets, Twitter announced on Friday.

Wyden: Tech company has told multiple senators of foreign hacking attempts

by Sean Lyngaas • 4 days ago

A major tech company has informed “a number of senators and Senate staff members” that hackers have targeted their personal email accounts, according to Sen. Ron Wyden.

Sen. Rubio wants answers from Apple on privacy-violating app

by Sean Lyngaas • 5 days ago

On Wednesday, Sen. Marco Rubio, R-Fla., wrote to Apple demanding answers on why it reportedly took the tech giant weeks to address security issues in a popular app.

NSS Labs files antitrust suit against multiple cybersecurity vendors

by Sean Lyngaas • 5 days ago

The company alleges that CrowdStrike, Symantec and ESET as well as the Anti-Malware Testing Standards Organization conspired to restrict testing of products.

Magecart strikes again, this time at electronics retailer Newegg

by Greg Otto • 5 days ago

Researchers say the hacking group is getting better at finding ways to leverage faults in Javascript to hide and carry out breaches of credit card payment systems.

Chinese-speaking cybercrime group launches destructive malware family

by Patrick Howell O'Neill • 6 days ago

Iron, also known as Rocke, is a Chinese-speaking hacking group that have gained a spotlight this year for its use of cryptojacking malware using a backdoor from HackingTeam's leaked code.

Pegasus spyware active in 45 countries, Citizen Lab says

by Sean Lyngaas • 6 days ago

An infamous brand of mobile spyware may be operating in 45 countries as part of a sprawling footprint that could enable human rights abuses, according to a new report.

Fidelis Cybersecurity gets $25 million investment for detection and response services

by Zaid Shoorbajee • 6 days ago

Fidelis says the infusion will help boost its flagship product as well as a new managed detection and response service it announced earlier this summer.

Proofpoint: One month out from deadline, half of agency domains are DMARC compliant

by Zaid Shoorbajee • 7 days ago

Proofpoint predicts that no more than 70 percent will have full DMARC implementation by the Oct. 16 deadline.

Zero day in popular video surveillance technology goes public, unpatched

by Patrick Howell O'Neill • 7 days ago

"The Peekaboo flaw is extremely concerning because it exploits the very technology we rely on to keep us safe," Tenable chief technology officer Renaud Deraison said in a statement.

SCYTHE raises $3 million for attack simulation platform

by Zaid Shoorbajee • 1 week ago

SCYTHE says its platform lets enterprises simulate attacks on its own system in order to assess their own readiness.

Deterrence or waste of time? Experts at odds over DOJ's actions on North Korea

by Greg Otto • 1 week ago

There's a rift among legal and cybersecurity experts over the way in which government handled the recent complaint against North Korea.

Cryptojacking campaign targets add-ons for popular streaming app Kodi

by Patrick Howell O'Neill • 1 week ago

SET discovered that add-ons for Kodi were part of a cryptojacking campaign extending back to at least December 2017.

Lawmakers ask intelligence community for 'deepfakes' assessment

by Sean Lyngaas • 2 weeks ago

Rep. Adam Schiff and others have asked the intelligence community to assess how foreign governments could use the technology — video, audio, and images fueled by machine-learning algorithms and other tools — to harm national security interests.

Bomgar to acquire fellow access management company BeyondTrust

by Zaid Shoorbajee • 2 weeks ago

The combined entity will use the name of BeyondTrust, even though it's the company being acquired. It will be led by Bomgar CEO Matt Dircks.

How to combat the long lives of zero-day vulnerabilities

by cyber_admin • 2 weeks ago

Nyotron CTO Nir Gaist talks about how to deal with misconceptions around zero day vulnerabilities and what enterprises can do to guard against them.

Sysdig raises $68.5 million for container security solutions

by Greg Otto • 2 weeks ago

The company specializes in platforms that help developers monitor and protect their containers and microservices.

Trend Micro blames data collection issue on code library re-use

by Greg Otto • 2 weeks ago

Cybersecurity giant Trend Micro has apologized after researchers discovered that a number of the company's consumer-facing apps were collecting users’ browser history.

Religious groups find their calling in threat sharing

by Sean Lyngaas • 2 weeks ago

Citing growing threats to donor data and religious websites, the FB-ISAO’s backers said it will fill a void by working with technology vendors to offer faith-based groups threat analysis.

Corelight raises $25 million to grow Bro-based business

by Greg Otto • 2 weeks ago

Corelight has built its products on top of the Bro network security monitor, giving government agencies and large enterprises a way to make sense of the traffic they see on a daily basis.