Cyber-criminals around the world are increasingly focusing their attention on job seekers. According to the security firm Flashpoint, there has been a notable uptick in ploys involving phony job listings that attempt to get job seekers to give up personal information. Perhaps the biggest surprise is the fact that this is only now becoming a growing threat. After all, from the cyber-criminal's point of view, it's low hanging fruit. Job seekers expect that they'll be asked for all types of … Read more
Study Shows Employee Satisfaction Is Higher With Technology Improvements
A new study recently published by HPE Aruba called "The Right Technologies Unlock The Potential Of The Digital Workplace," reveals some interesting details about technology in the workplace that's worth paying attention to. The study was conducted by collecting feedback from more than seven thousand companies of various sizes around the globe. These were broken broadly into two groups: "Digital Revolutionaries," which made more and better use of cutting edge technology, and "Digital … Read more
Embedded Sound Waves Could Damage Your Computer
It seems like a new attack vector emerges on a weekly basis, and this week is no exception. The latest threat: Emails containing specialized audio files whose acoustic vibrations can damage your computer's hard drive. This is possibly damaging to the point of causing system failure, data corruption, and making it impossible to successfully reboot your machine. As the researchers point out, "Intentional acoustic interference causes unusual errors in the mechanics of magnetic hard disk drives … Read more
T-Mobile Site Leaked Data On Millions Of Customers
ZDNet Researcher Ryan Stevenson recently found a big problem on T-Mobile's website regarding an unprotected API. As a result of the flaw, untold millions of T-Mobile's customers' account information was left exposed and completely unprotected. Literally anyone who stumbled across the site and tried to abuse it could access a wide range of customer information with no password required. This includes, but is not limited to: Customer name Phone number Mailing Address Account … Read more
New Vulnerability May Expose Encrypted Emails
Security researchers at the Electronic Frontier Foundation (EFF) have discovered a dangerous new email vulnerability called "Efail." Exploiting this new email vulnerability would allow hackers to decrypt emails encrypted with either PGP or S/MIME - including emails that were sent several years earlier. Both of these encryption tools are commonly used by politicians, journalists and other professionals who need a secure means of electronic communication. Since the standards are so well … Read more
Chili’s Is The Latest To Suffer A Credit Card Breach
Brinker International (the parent company of the Chili's restaurant chain) formally announced that on May 11, they discovered malware on an undisclosed number of their point of sales terminals. Details are sketchy at this point, because the investigation is still ongoing, but the company had the following to say about the incident: "If you used your payment card at a Chili's restaurant between March and April 2018, it does not mean you were affected by this incident. However, out of an … Read more
Vega Stealer Malware Goes After Your Saved Credentials
There's a new security threat to be worried about, and security professionals are warning that it could be very bad indeed. The new malware is known as the "Vega Stealer," and is currently being used in a relatively simplistic phishing campaign designed to harvest financial data that has been saved in both Google Chrome and Firefox browsers. Unfortunately, based on an analysis of the code, it could be a much more serious threat. Vega Stealer isn't 100 percent original work, but rather, is a … Read more
Your Kids’ Personal Info May Have Been Compromised
An identity threat company called 4iQ has recently published a report called "Identities in the Wild: The Tsunami of Breached Identities Continues." Unfortunately, the information in the report contains all bad news. Some of the details are simply confirmations of things we already knew, and some are shocking statistics that will leave you feeling dismayed. For instance: Cybercriminals and hackers are getting increasingly sophisticated - This isn't new, but it's even worse than that. … Read more
Some VW and Audi Cars May Be Hacked Through WiFi
Thanks to researchers Daan Keuper and Thijs Alkemade (who work at the Dutch cyber-security firm Computest), newly produced Golf GTE and Audi A3 vehicles are a little bit safer, and a lot less vulnerable to remote hacks. The duo found that by taking advantage of these vehicles' WiFi connection, they could access the cars' IVI, (in-vehicle infotainment system) and from there, gain access to other systems as well. The researchers had this to say about their work: "Under certain conditions, … Read more
Hackers Can Use PDF Files To Access Windows Credentials
Security researcher Assaf Baharav from Check Point Security has discovered a new twist on an old, fairly well-known attack. He was able to essentially "weaponize" PDFs to steal Windows credentials stored in NTLM hashes. Unfortunately, no action other than simply opening the PDF is required for the hacker to gain access to the information. Baharav used the same methodology that hackers have used in the past, which amounts to instantiating SMB requests from inside the document. Hackers have … Read more
