Risk Discovery

	[ News \| Blogs \| Reddits \| Lists \| Media \| ? ] HoneyDB

Dark Reading:

Cyber-Risks Hiding Inside Mobile App Stores

Four CVEs Describe SACKs of Linux and FreeBSD Vulnerabilities

Pledges to Not Pay Ransomware Hit Reality

Startup Raises $13.7M to Stop Breaches with Behavioral Analytics

Patrolling the New Cybersecurity Perimeter

Apply Military Strategy to Cybersecurity at Black Hat Trainings Virginia

Customers of 3 MSPs Hit in Ransomware Attacks

Florida Town Pays $600K to Ransomware Operators

'Democratizing' Machine Learning for Fraud Prevention & Payments Intelligence

Small Businesses May Not Be Security's Weak Link

Threatpost

MobOk Malware Hides in Photo Editors on Google Play, Siphons Cash

Microsoft Outlook for Android Open to XSS Attacks

Podcast: Dating App Privacy and NASA Cyberattack

Mozilla Fixes Second Actively-Exploited Firefox Flaw

Millions of Dell PCs Vulnerable to Flaw in Third-Party Component

Match, Tinder Swipe Right For Privacy Red Flags, Say Experts

Post-Ransomware Attack, Florida City Pays $600K

LoudMiner Cryptominer Uses Linux Image and Virtual Machines

DanaBot Adds Ransomware to its Arsenal

Tor Browser Issues Update for Critical System Takeover Flaw

HackRead

Hackers using pirated software to spread new cryptomining Mac malware

Hackers exploit Raspberry Pi device to hack NASA’s mission system

Samsung asks users to scan their Smart TVs for malware – Here’s how to

Death linked to prank – France seeks extradition of hacker from Israel

New Android malware bypass 2FA & steal one-time passwords

Cellebrite claims its new tool unlocks almost any iOS or Android device

How I Discovered My First Vulnerability

Actress Bella Thorne posts her nudes to tackle threats from hackers

Alex Jones claims malware planted child porn on InfoWars servers

EU accuses Russia of spreading misinformation on social media

CyberScoop

NSA technical director: Iran-linked operations are about espionage, not destruction

The NSA is experimenting with machine learning concepts its workforce will trust

Dell quietly patched a security vulnerability that affected millions of users

What happens when one APT hijacks another’s infrastructure

Commercial drones can give China critical intelligence on the U.S., witnesses tell Senate

How secure is that .zip file? One senator is urging NIST to weigh in

AMCA parent company files for bankruptcy amid data breach fallout

Key witness in press-release hacking case is sentenced to time served

Android-based espionage campaign in the Middle East targets military data

A bug in Wi-Fi ‘extenders’ could give a hacker full control over the devices

security – Ars Technica

The clever cryptography behind Apple’s “Find My” feature

Windows 10 May 2019 Update now rolling out to everyone… slowly

>20,000 Linksys routers leak historic record of every device ever connected

The radio navigation planes use to land safely is insecure and can be hacked

New speculative execution bug leaks data from Intel chips’ internal buffers

Bloomberg alleges Huawei routers and network gear are backdoored

Password1, Password2, Password3 no more: Microsoft drops password expiration rec

McAfee joins Sophos, Avira, Avast—the latest Windows update breaks them all

Hackers could read non-corporate Outlook.com, Hotmail for six months

To catch a drug thief, hospital secretly recorded births, women’s surgeries

CPO Magazine

New York Privacy Act Would Be Considerably Tougher Than California’s Bill

New Federal Data Strategy from U.S. Government Could Have Important Privacy and Security Implications

Cyber Crime Widely Underreported Says ISACA 2019 Annual Report on Cyber Security Trends

The Security Risks of Public Wi-Fi (And Why You Should Never Use It Without a VPN)

No CPO? No Problem!

U.S. Customs and Border Protection Data Breach Result of Supply Chain Attack

GDPR, PIPEDA, DETOUR: It’s Time to Take the Complexity Out of Consumer Consent

Polymorphic Phishing Attacks Now Make Up Almost Half of All Phishing Attempts

New Academic Study Highlights How Dark Net Hacking Services Pose Threat to the Enterprise

Top Tech Companies Condemn GCHQ Proposal to Listen in on Encrypted Chats

GBHackers On Security

Critical DLL Hijacking Vulnerability in PC-Doctor For Windows Let Hackers Attack Hundreds of Million DELL Computers

Hackers Take Complete Control of Your Android Device by Launching MobOk Malware via Fake Photo Editing Apps in Google Play

NASA Hacked Through an Unauthorized Raspberry Pi Computer Connected to the NASA Servers

Tor Browser 8.5.3 Released With Fixes for Critical Zero-day Security Update in Firefox

Nmap – A Detailed of Explanation Penetration Testing Tool to Perform Information Gathering

U.S Launched Cyber Attack on Iranian Military Computers After U.S Military Drone Shot Down by Iran

New Google Dorks List Collection for SQL Injection – SQL Dorks 2019

Top 10 Best iOS Emulator to Run iOS Apps on Windows – 2019

Memory Corruption Flaw in macOS Let Hackers run Malicious Code with Root Privileges

Critical Vulnerabilities in VLC Player Let Hacker Stream Untrusted Video To Hack Your PC – 200 Million Computers at Risk

HITBSecNews - Keeping Knowledge Free for Over a Decade

Study finds that a GPS outage would cost $1 billion per day

Hackers behind dangerous oil and gas intrusions are probing US power grids

This $3.2 Billion Industry Could Turn Millions of Surveillance Cameras Into an Army of Robot Security Guards

How Close Are We to Self-Driving Cars, Really?

It's Time to Switch to a Privacy Browser

BGP event sends European mobile traffic through China Telecom for 2 hours

iPadOS Isn't Just a Name. It's a New Direction for Apple

How to Stop Robocalls—or At Least Slow Them Down

VLC 3.0.7 is Biggest Security Release Due to EU Bounty Program

Microsoft reveals first details on “Project Scarlett” game console for 2020

The Register - Security

Cisco cleans up critical flaws, Florida city forks out $600k to ransomware scumbags, and more from infosec land

Driving Xtreme Cuts: DXC Technology waves bye bye to 45% of Americas Security divison

Good old British 'fair play' is the answer to vexed Huawei question, claims security minister

Millions of Windows Dell PCs need patching: Give-me-admin security gremlin found lurking in bundled support tool

Digi-dosh exchange Coinbase: Someone tried to pwn our staff via this week's Firefox zero-day security hole

Shut the barn door: UK data watchdog tells MPs mass slurping by firms is a huge risk to privacy

If Uncle Sam could quit using insecure .zip files to swap info across the 'net, that would be great, says Silicon Ron Wyden

Google takes the PIS out of advertising: New algo securely analyzes shared encrypted data sets without leaking contents

Using Oracle WebLogic? Put down your coffee, drop out of Discord, grab this patch right now: Vuln under attack

NASA's JPL may be able to reprogram a probe at the arse end of the solar system, but its security practices are a bit crap

The Hacker News

Important Flaw in Outlook App for Android Affects Over 100 Millions Users

PoC Released for Outlook Flaw that Microsoft Patched 6 Month After Discovery

OpenSSH Now Encrypts Secret Keys in Memory Against Side-Channel Attacks

Beware! Playing Untrusted Videos On VLC Player Could Hack Your Computer

Tor Browser 8.5.2 Released — Update to Fix Critical Firefox Vulnerability

Firefox 67.0.4 Released — Mozilla Patches Second 0-Day Flaw This Week

This Cryptomining Malware Launches Linux VMs On Windows and macOS

Firefox Releases Critical Patch Update to Stop Ongoing Zero-Day Attacks

Security Flaw in Pre-Installed Dell Support Software Affects Million of Computers

MongoDB 4.2 Introduces End-to-End Field Level Encryption for Databases

Network World Security

How the Huawei ban could become a security threat | TECH(feed)

Report: Mirai tries to wrap its tentacles around SD-WAN

IoT security vs. privacy: Which is a bigger issue?

Free course - Ethical Hacking: Hacking the Internet of Things

Cisco to buy IoT security, management firm Sentryo

What do recent public SAP exploits mean for enterprises? | TECH(talk)