Keyword: security

Brevity: Headers | « Text »
  • Federal Judge Strikes Down Security Buffer Zone for GOP Convention

    06/24/2016 7:20:49 AM PDT · by wtd · 20 replies
    Washington Free Beacon ^ | June 23, 2016 | Bryan Stascavage
    Federal Judge Strikes Down Security Buffer Zone for GOP Convention A federal judge found unconstitutional a heightened-security area proposed to surround the Republican National Convention in Cleveland, Ohio on Thursday, saying the 3.5 square mile “event zone” unfairly restricted free speech.
  • HTML5 Ads Aren't That Safe Compared To Flash, Experts Say

    06/23/2016 10:08:42 PM PDT · by Utilizer · 6 replies
    SOFTPEDIA® ^ | Jun 23, 2016 21:05 GMT | Catalin Cimpanu
    A study from GeoEdge, an ad scanning vendor, reveals that Flash has been wrongly accused as the root cause of today's malvertising campaigns, but in reality, switching to HTML5 ads won't safeguard users from attacks because the vulnerabilities are in the ad platforms and advertising standards themselves. The evidence exists to proclaim Flash as one of today's most vulnerable and insecure software applications. Targeted in cyber-espionage and malvertising campaigns, Flash has gotten a bad reputation, and for a good reason. HTML5 ads are replacing Flash ads in the industry Security researchers have discovered vulnerabilities in Flash almost every month, and...
  • Federal Judge Throws Out Cleveland’s GOP Convention Security Plan

    06/23/2016 11:25:53 AM PDT · by Sub-Driver · 64 replies
    Federal Judge Throws Out Cleveland’s GOP Convention Security Plan Byron Tau June 23, 2016 1:37 p.m. ET CLEVELAND—A federal judge on Thursday struck down the city of Cleveland’s rules limiting protests during next month’s Republican National Convention, finding the city’s strict security regulations violated the U.S. Constitution. U.S. District Court Judge James Gwin ruled the city’s establishment of a large zone around the July convention site within which protesters’ ability to demonstrate would be strictly limited contravened the Constitution’s guarantees of the freedom of speech and assembly. “Under the First Amendment, I do find that the city hasn't sufficiently, narrowly...
  • Emails: Key security features disabled on Clinton's server

    06/22/2016 1:59:31 PM PDT · by detective · 42 replies
    Yahoo News ^ | June 22, 2016 | MICHAEL BIESECKER and TED BRIDIS
    State Department staffers wrestled for weeks in December 2010 over a serious technical problem with then-Secretary Hillary Clinton's home email server, causing them to temporarily disable security features that left the server more vulnerable to hackers, according to emails released Wednesday. Just weeks later, according to previously disclosed emails, hackers attacked the server, forcing Clinton's staff to shut it down. The next day, one of Clinton's closest aides, Huma Abedin, wrote to other high ranking staff: "Don't email hrc (Clinton) anything sensitive. I can explain more in person." The emails were released under court order Wednesday to the conservative legal...
  • EMAILS: KEY SECURITY FEATURES DISABLED ON CLINTON'S SERVER

    06/22/2016 1:03:23 PM PDT · by safetysign · 130 replies
    Associated Press ^ | 07/22/2016 | Michael Biesecker and Ted Bridis
    <p>WASHINGTON (AP) -- Newly released emails show State Department staffers wrestled in December 2010 over a serious technical problem with then-Secretary of State Hillary Clinton's home email server. They temporarily disabled security features, which left the server more vulnerable to hackers. Weeks later, hackers attacked the server so seriously it was shut down.</p>
  • Online backup firm Carbonite tells users to change their passwords now

    06/21/2016 7:15:50 PM PDT · by Utilizer · 24 replies
    grahamcluley website ^ | June 21, 2016 8:32 pm | Graham Cluley
    Online backup company Carbonite is the latest firm to have issued a warning that hackers are attempting to break into its users accounts, and are prompting all users to change their passwords as a result. An email has been sent to Carbonite users explaining that the attackers are thought to be using passwords gleaned from other recent mega-breaches. ... Nobody is keen for a hacker to break into their online accounts, but it's especially important when what's being protected by your account is your computer backup. If a hacker were able to gain access to your online backup they could...
  • Citrix issues password reset after GoToMyPC hack

    06/20/2016 7:55:43 PM PDT · by Utilizer · 21 replies
    iTnews (.com.au) ^ | Jun 21 2016 9:00AM (AUS) | uha Saarinen
    Software vendor Citrix is asking all customers to reset their passwords for the GoToMyPC remote access service after it suffered what appears to be a full credentials compromise. In its advisory, Citrix said the GoToMyPC service had "unfortunately" been targeted by "a very sophisticated password attack". Citrix provided no further details of the hack, but apologised "for the frustration this is causing".
  • Kill Flash now. Or patch these 36 vulnerabilities. Your choice

    06/18/2016 10:08:56 AM PDT · by Utilizer · 26 replies
    The Register ^ | 16 Jun 2016 at 18:50 | Shaun Nichols
    Adobe has released an update for Flash that addresses three dozen CVE-listed vulnerabilities. The update includes a fix for the CVE-2016-4171 remote code execution vulnerability that is right now being exploited in the wild to install malware on victims' computers. Adobe is recommending that users running Flash for Windows, macOS, Linux, and ChromeOS update the plugin as quickly as possible, giving the update the "Priority 1" ranking, a designation reserved for flaws that are, according to Adobe, "being targeted, or which have a higher risk of being targeted." Adobe credited security researchers at Cisco Talos, Google Project Zero, FireEye, Microsoft...
  • G4S (Orlando Terrorist Employer) contracts to 'protect' our Nuclear Power Plants

    06/15/2016 9:31:09 PM PDT · by ChiefJayStrongbow · 8 replies
    Searched in Google for G4S "nuclear power plant" and came back with a list of open slots. What's next? Below is an excerpt from one of the open positions (security officer at a nuclear power plant)... I wonder what they've already filled. The world’s leading private security organization, G4S, has an immediate job opportunity for a Custom Protection Officer. G4S is a security provider for the United States government, fortune 500 companies, nuclear power plants, oil and gas companies, airport, ports, banks, hospitals, factories, warehouses, commercial facilities, residential communities and much more. G4S offers job security, excellent pay and benefits,...
  • New Homeland Security Records Reveal Top Officials Were Exempted from Strict Ban Placed on Web-...

    06/16/2016 2:03:44 PM PDT · by jazusamo · 12 replies
    Judicial Watch ^ | June 16, 2016
    Full title: New Homeland Security Records Reveal Top Officials Were Exempted from Strict Ban Placed on Web-Based Personal Email Accounts Despite Heightened Security Concerns Jeh Johnson granted special waiver on first day of official ban. Practice Continued Even After Clinton Email Revelations. (Washington, DC) – Judicial Watch today announced it obtained 693 pages of Department of Homeland Security records revealing that Secretary Jeh Johnson and 28 other agency officials used government computers to access personal web-based email accounts despite an agency-wide ban due to heightened security concerns. The documents also reveal that Homeland Security officials misled Rep. Scott Perry (R-PA)...
  • Intel x86s hide another CPU that can take over your machine (you can't audit it)

    06/15/2016 7:43:51 PM PDT · by Utilizer · 44 replies
    Zicos ^ | Wednesday June 15, 2016. 02:48 PM | from BoingBoing
    The Intel Management Engine (ME) is a subsystem composed of a special 32-bit ARC microprocessor that's physically located inside the chipset. It is an extra general purpose computer running a firmware blob that is sold as a management system for big enterprise deployments. When you purchase your system with a mainboard and Intel x86 CPU, you are also buying this hardware add-on: an extra computer that controls the main CPU. This extra computer runs completely out-of-band with the main x86 CPU meaning that it can function totally independently even when your main CPU is in a low power state like...
  • 'BadTunnel' Bugs Left Every Microsoft Windows PC Vulnerable For 20 Years

    06/15/2016 6:01:38 PM PDT · by Utilizer · 45 replies
    Forbes ^ | Jun 14, 2016 @ 01:00 PM | Thomas Fox-Brewster
    Microsoft is today closing off a vulnerability that one Chinese researcher claims has “probably the widest impact in the history of Windows.” Every version of the Microsoft operating system going back to Windows 95 is affected, leaving anyone still running unsupported operating systems, such as XP, in danger of being surreptitiously surveilled. According to Yang Yu, founder of Tencent’s Xuanwu Lab, the bug can be exploited silently with a “near-perfect success rate”, as the problems lie in the design of Windows. The ultimate impact? An attacker can hijack all a target’s web use, granting the hacker ”Big Brother power”, as...
  • Vanity: Has Obama been "seeding" security companies with Muslims as per this article?

    06/15/2016 3:23:39 PM PDT · by ResisTyr · 41 replies
    15 June 2016 | ResisTyr
    I'm not certain of the reliability of Conservative Tribune, as they quite anonymous White House sources, however it does seem plausible to believe that Obama has been "leaning on" certain companies to hire Muslims across the country and that's a VERY scary prospect! :( "Perhaps more damning, another White House official, also described by our contact as “senior,” added that the administration didn’t want anyone to look into the matter very closely. When asked why, the official pointed out that Mateen had been hired by G4S, a company that, along with other security firms, had been “leaned on” by the...
  • Obama Makes Statement Following National Security Meeting (BARF)

    06/14/2016 9:22:03 AM PDT · by Biggirl · 189 replies
    FoxNews.com ^ | June 14, 2016 | FoxNews.Com
    President Obama gives another speech.
  • See Something, Say Nothing A Homeland Security Officer Exposes the Govt. Submission to Jihad

    06/14/2016 5:40:40 AM PDT · by KeyLargo · 15 replies
    WND books.wnd.com ^ | May 24, 2016 | Phillip Haney, Art Moore
    See Something, Say Nothing A Homeland Security Officer Exposes the Govt. Submission to Jihad One day after a prominent U.S. Muslim leader reacted to the November 2015 Paris attacks with a declaration that the Islamic State, also known as ISIS, has nothing to do with Islam, President Obama made the same assertion. Who exactly is the enemy we face, not only in the Middle East but also within our borders? Is it “murderers without a coherent creed” or “nihilistic killers who want to tear things down,” as some described ISIS after 130 people were brutally slain and another 368 injured...
  • Vigils held, security increased in Boystown (Obama's old haunts in Chicago)

    06/13/2016 10:26:36 PM PDT · by 2ndDivisionVet · 7 replies
    WLS-TV ^ | June 13, 2016 | Michelle Gallardo , Leah Hope and Eric Horng
    Chicago is among the cities around the nation and the world holding vigils almost around the clock. It was also flooded with extra police presence. The Chicago Police Department announced that it is increasing security in the 19th Police District, which includes Lakeview, Lincoln Park and Boystown, in the wake of the massacre at a gay club in Orlando in which 50 people were killed Sunday. "Individuals can also expect to see increased police visibility today at special events throughout the city and along the lakefront," Chicago police spokesman Anthony Guglielmi said. "Officers will also pay special attention to CTA...
  • Homeland Security Instructed To Combat Violent Extremism With Political Correctness

    06/13/2016 5:33:31 PM PDT · by orchestra · 21 replies
    The Daily Caller ^ | 6/13/2016 | Peter Hasson
    Less than a week before Omar Mateen walked into an Orlando gay club and killed or wounded more than 100 people, the Homeland Security Advisory Council (HSAC) submitted its Countering Violent Extremism report to Department of Homeland Security (DHS) Secretary Jeh Johnson. The report instructs the DHS not to use any language that might be “disrespectful” to Muslims, including (but not limited to) the words “jihad,” “sharia” and “takfir.” The report was crafted by an HSAC subcommittee that Secretary Johnson created in November 2015. The head of that subcommittee, Farah Pandith, was appointed by Johnson in May 2015. The subcommittee...
  • BUILD BRIDGES, NOT WALLS HILLARY SAID, SO THEY BUILT A FENCE

    06/11/2016 10:42:03 AM PDT · by SJackson · 18 replies
    Hillary told Univision (the Mexican Cable TV Station) that we should be “building bridges, not walls.” Of course in reference to Donald Trump’s stand that we need to secure our borders with a ‘wall.’ So in preparation for the DNC Convention in Philadelphia, they are erecting a huge fence to keep out…Sanders supporters? Wait, isn’t a fence like a wall? If they can build one, why can’t we? “I think the idea of building walls as an answer to issues that confront our country is just not the right approach. We should be building bridges, we should be building understanding.”...
  • State Department deliberately cut embarrassing questions from press briefing video

    06/10/2016 7:04:17 PM PDT · by Lorianne · 15 replies
    Washington Post ^ | 01 June 2016 | Carol Morello
    The State Department acknowledged Wednesday that someone in its public affairs bureau made a “deliberate” request that several minutes of tape be cut from the video of a 2013 press briefing in which a reporter asked if the administration had lied about secret talks with Iran. The embarrassing admission by State Department spokesman John Kirby came three weeks after another spokesperson insisted that a “glitch” had caused the gap, discovered only last month by the reporter whose questioning had mysteriously disappeared. “This wasn’t a technical glitch, this was a deliberate step to excise the video,” Kirby told reporters. Kirby said...
  • Wells Fargo Center, Xfinity Live! to Be Inside DNC Security Perimeter

    06/10/2016 8:13:25 AM PDT · by DEEP_e · 13 replies
    NBC10.com ^ | Brian X. McCrone
    Security at the Sports Complex during the Democratic National Convention next month will include “no-scale fencing” to enclose the Wells Fargo Center and Xfinity Live!, the Secret Service special agent in charge said in an interview Thursday.
  • Big DDoS attacks reach record levels: Akamai

    06/07/2016 9:14:33 PM PDT · by Utilizer
    iTnews (.com.au) ^ | Jun 8 2016 8:45AM (AUS) | Juha Saarinen
    Nineteen distributed denial-of-service (DDoS) attacks exceeded 100 Gbps during the first three months of the year, hitting a new record, according to researchers from Akamai. The year prior, just eight attacks were over 100 gigabit per second, the firm said. In its latest state of the internet report [pdf], the content delivery network provider analysed more than two petabytes of threat intelligence data and found the total number of DDoS attacks increased by over 125 per cent year on year in the first quarter of 2016. Most of the attacks were achieved through abusing vulnerable network time protcol (NTP) servers,...
  • Albright: 'Nobody is going to die' from Clinton emails

    06/03/2016 6:02:50 AM PDT · by C19fan · 101 replies
    Politico ^ | June 3, 2016 | Nick Gass
    Hillary Clinton's use of a private email server while at the State Department will not kill anyone, former Secretary of State Madeleine Albright said Friday. But Donald Trump's rhetoric might, the Clinton ally suggested. "She has said she made a mistake, and nobody is going to die as a result of anything that happened on emails," Albright told CNN's Chris Cuomo on "New Day," after the host broached the multifaceted criticism and concerns about Clinton's foreign policy from opponents and supporters alike.
  • Lenovo tells users to remove its unsafe bloatware

    06/02/2016 11:52:22 PM PDT · by Utilizer · 9 replies
    iTnews ^ | Jun 2 2016 8:50AM (AUS) | Juha Saarinen
    PC maker Lenovo is advising its customers to remove bundled software from its laptops and desktops due to its potential to be used for remote code execution. The software is the Lenovo Accelerator Application. The company warned that an attacker with man in the middle position on a network could exploit the vulnerable update mechanism, and run arbitrary code on users' systems. The vulnerability is rated as high risk by Lenovo. To protect against the vulnerability, Lenovo said users should uninstall the Accelerator Application, which is bundled on a large number of the company's retail notebooks and desktop computers.
  • Mysterious Stuxnet copycat discovered

    06/02/2016 10:29:27 PM PDT · by Utilizer · 12 replies
    iTnews (AUS) ^ | Jun 3 2016 9:43AM (AUS) | Allie Coyne
    Security researchers have uncovered new malware targeting industrial control systems that uses similar techniques to those employed by the infamous Stuxnet worm. Infosec firm FireEye today published a report on the 'Irongate' malware it discovered at the end of last year. The researchers found the malware within the database of the Google-owned VirusTotal website, which allows users and security researchers to submit suspicious files for scanning by antivirus software. Two samples of Irongate had been uploaded in 2014 by different sources, the researchers said, but had not been flagged as malicious by any antivirus vendors' scanners. FireEye only discovered the...
  • "My Private Server" - A Parody of "I Shot the Sheriff"

    06/02/2016 3:28:25 PM PDT · by mononymous · 4 replies
    Mononymous1/Wordpress ^ | 6/2/2016 | Mononymous
    A parody of Bob Marley's “I Shot the Sheriff" as performed/interpreted by Eric Clapton, here: https://www.youtube.com/watch?v=tRgcwT9X2J8 To the imaginary vocal style of the Hopeless Reprobate, Clinton (HRC): (My private server, but no one breached its security My private server, but no one breached its security) All around in my home towns, They're tryin' to track me down, They say they want to bring me in guilty For this breach of security For the breach of security, but I say (My private server) But I swear it was in self-interest (My private server) And they say it is a capital offense...
  • Precision Medicine Initiative and Data Security | whitehouse.gov (05/25/2016 White house decree)

    05/27/2016 11:59:49 AM PDT · by MarchonDC09122009 · 26 replies
    whitehouse.gov ^ | 05/25/2016 | Obama, HHS Secretary Sylvia Mathews Burwell
    Precision Medicine Initiative and Data Security | whitehouse.gov (05/25/2016 White house decree) https://www.whitehouse.gov/blog/2016/05/25/precision-medicine-initiative-and-data-security?mkt_tok=eyJpIjoiTVRFNE1Ua3laRGRqTlRZMyIsInQiOiJ1R1VHbTk3M2o5NmhHSFQrOHNYdXZKakE4OW1tWTJlSUszSThzbnRnRkNlSGZjK2VCREJGWG5xemdyanpIQUdLU3pJSjBHYTdZd2hPUERUdmliaVBMZjA3SjNUYVY2WUt2Z1pTS0xXdTNqcz0ifQ%3D%3D Precision Medicine Initiative and Data Security May 25, 2016 at 3:00 PM ET by Secretary Sylvia Mathews Burwell, Lisa O. Monaco Twitter Facebook Email Summary: Today, we are pleased to release the final Data Security Policy Principles and Framework (Security Framework) for President Obama’s Precision Medicine Initiative (PMI).     “We’re going to make sure that protecting patient privacy is built into our efforts from day one.”     - President Barack Obama, January 30th 2015 The health care system of the future is taking shape right now, and...
  • The long lines at airports are a problem for Hillary Clinton

    05/26/2016 8:49:37 AM PDT · by Biggirl · 11 replies
    The Washington Post ^ | May 26,2016 | Ed Rogers
    The long security lines at U.S. airports are another problem for Hillary Clinton. A lot of Americans interact with the Transportation Security Administration, and they expect that agency to function properly. And when there is a problem, they want it fixed. Does anyone think of Clinton as a problem-solver? Answer: No. Can anyone think of a problem she has ever solved?
  • Airport screening made 70,000 miss American Airlines flights this year

    05/26/2016 7:56:42 AM PDT · by Biggirl · 18 replies
    Reuters.com ^ | May 26,2016 | Reuters And Eduardo Munoz
    Airport screening delays have caused more than 70,000 American Airlines (AAL.O) customers and 40,000 checked bags to miss their flights this year, an executive for the airline told a U.S. congressional subcommittee on Thursday.
  • Exclusive: Nuclear Plant Guards Asleep On The Job

    09/25/2007 4:28:34 PM PDT · by Roberts · 11 replies · 215+ views
    wcbstv.com ^ | 9/25/07 | Scott Weinberger
    CBS) PEACH BOTTOM TOWNSHIP, Pa. They're on duty and fast asleep, security guards that are supposed to be protecting a major terrorist target in the United States. CBS 2 HD's three-month investigation into the security gap at our nation's nuclear facilities yielded some shocking information and video, and now officials have told CBS 2 first that the contract with the major security firm that hired the guards will be terminated. The video shows the inside of the nation's largest nuclear facilities. There are images of security officers responsible for protecting the plant against a terrorist attack, an attack that could...
  • Damning State Dept report: Yep, Hillary basically ignored all of our security directives

    05/25/2016 9:33:04 AM PDT · by Sean_Anthony · 43 replies
    Canada Free Press ^ | 05/25/16 | Robert Laurie
    Busted. At this point, the Hillary Clinton email scandal is so bad that it’s getting difficult to find new ways for it to get any worse. However, the State Department has managed to do so. According to the results of a newly released internal audit, Hillary basically ignored the agency’s well-codified security regulations. ...And thanks to “comprehensive directives” it’s clear she knew exactly what she was doing..
  • State Dept. sets single-day record for Syrian refugee approvals, renewing security fears

    05/24/2016 4:43:00 PM PDT · by Nachum · 72 replies
    washington times ^ | 5/24/2016 | Stephen Dinan
    The State Department admitted 80 Syrian refugees on Tuesday and 225 on Monday, setting a new single-day record, as President Obama surges to try to meet his target of 10,000 approvals this year — sparking renewed fears among security experts who say corners are being cut to meet a political goal. Officials insisted they’re moving faster because they’re getting better at screening, and say they’re still running all the traps on applicants. But the new spike in numbers is stunning, with more people accepted on Monday alone than were approved in the entire months of January or February.
  • IPhone, iPad Owners Must Enter Their Passwords More Often (FLASH video at source)

    05/20/2016 2:37:13 PM PDT · by Swordmaker · 37 replies
    FORTUNE ^ | May 19, 2016 | by Don Reisinger
    Apple has quietly changed a policy that has resulted in iPhone and iPad owners having to more frequently enter passwords to unlock their devices.Users must now enter a passcode anytime the device’s Touch ID fingerprint sensor hasn’t been used in the past eight hours or when the device hasn’t been unlocked with a passcode in the last six days. In such cases, Touch ID is turned off until users enter passcodes.Apple-tracking site Macworld noted the little-noticed change and investigated the reason behind it. It found users who claimed that Apple’s passcode requests had become increasingly frequent.Apple has long required that...
  • Two Hours in Line... and Other Tales of Unlimited Government

    05/18/2016 5:15:49 PM PDT · by jfd1776 · 29 replies
    Illinois Review ^ | May 17, 2016 AD | John F. Di Leo
    A traveler with a camera filmed a scene at Chicago’s Midway Airport: a three-hour-plus TSA security line that snaked across the terminal, out the door, and around the building… and uploaded it to YouTube. The fury of the day, in an age beset with furies, is therefore an anger directed against the TSA for our often unforgivably-long airport security lines. The DHS secretary even took to the podium to answer complaints, and to assure us that his system is not in fact "a national crisis." Sure, in this case, there was an alleged excuse – Chicago had seen hundreds of...
  • Chicago Airports Recommend 3-Hour Cushion For Security Lines Tuesday

    05/17/2016 7:15:38 AM PDT · by C19fan · 29 replies
    CBS Chicago ^ | May 17, 2016 | Staff
    While the Transportation Security Administrationhas announced plans to hire 800 new officers, the wait for security at Chicago’s airports could be getting worse. Tuesday morning, the city’s Aviation Department advised anyone flying out of O’Hare or Midway airports to show up three hours before their flight’s scheduled departure time. That’s even longer than the two-hour cushion the TSA has suggested for domestic flights.
  • Nightmarish Lines Continue At Airport Security Checkpoints

    05/16/2016 10:18:59 AM PDT · by C19fan · 60 replies
    CBS Chicago ^ | May 16, 2016 | Staff
    Travelers flying out of Chicago just can’t catch a break. With increasingly long lines to get through security at the city’s airports, many travelers have been missing their flights, and some ended up sleeping at O’Hare International Airport on Sunday. American Airlines put out cots for fewer than 100 travelers who missed their flights Sunday night due to the long lines at TSA security checkpoints.
  • Feds open Texas border to 4,000 Cubans, security interview lasts just 1 hour before release

    05/12/2016 6:17:54 AM PDT · by Zakeet · 37 replies
    Washington Examiner ^ | May 11, 2016 | Paul Bedard
    U.S. Border Patrol officials are opening up the Texas border to let 4,000 Cubans in, taking about an hour to interview them and check their criminal background, before letting them enter the United States on their own where most will stay for life. Aware that Panama had airlifted nearly 250 of 4,000 Cubans to the Mexican border near El Paso, the U.S. Customs and Border Protection agency said it stands ready to process the new immigrants with speed, in fact faster it takes many Americans to get a drivers license or buy a gun.
  • Comey rebuffs Clinton claim FBI only conducting ‘security inquiry’ on emails

    05/11/2016 11:47:02 AM PDT · by twister881 · 91 replies
    FoxNews.com ^ | May 11, 2016 | Fox News
    Hillary Clinton for months has downplayed the FBI investigation into her private email server and practices as a mere “security inquiry.” But when asked Wednesday by Fox News about Clinton's characterization of the bureau's probe, FBI Director James Comey said he doesn’t know what "security inquiry" means -- adding, “We’re conducting an investigation. … That’s what we do.” The FBI director reiterated that he’s “not familiar with the term security inquiry” when told that is the phrase Clinton has used.
  • Microsoft Security Bulletin for May (Windows Updates! Look out! It's Patch Tuesday!)

    05/10/2016 11:38:23 AM PDT · by dayglored · 30 replies
    Microsoft TechNet ^ | May 10, 2016 | Microsoft TechNet Team
    https://technet.microsoft.com/en-us/security/bulletin/ Download an Excel file containing detailed information, such as affected components, bulletin replacements, reboot requirements, and related Common Vulnerabilities and Exposures (CVEs). Additionally, bulletin information in the Common Vulnerability Reporting Framework (CVRF) format is available. Date Bulletin Number KB Number Title Bulletin Rating 5/10/2016 MS16-067 3155784 Security Update for Volume Manager Driver Important 5/10/2016 MS16-066 3155451 Security Update for Virtual Secure Mode Important 5/10/2016 MS16-065 3156757 Security Update for .NET Framework Important 5/10/2016 MS16-064 3157993 Security Update for Adobe Flash Player Critical 5/10/2016 MS16-062 3158222 Security Update for Windows Kernel-Mode Drivers Important 5/10/2016 MS16-061 3155520 Security Update for Microsoft...
  • Ivy League economist ethnically profiled, interrogated for doing math on American Airlines flight

    05/07/2016 9:46:45 AM PDT · by Republic_Venom · 78 replies
    Washington Post ^ | May 7, 2016 | Catherine Rampell
    On Thursday evening, a 40-year-old man — with dark, curly hair, olive skin and an exotic foreign accent — boarded a plane. It was a regional jet making a short, uneventful hop from Philadelphia to nearby Syracuse. Or so dozens of unsuspecting passengers thought. The curly-haired man tried to keep to himself, intently if inscrutably scribbling on a notepad he’d brought aboard. His seatmate, a blond-haired, 30-something woman sporting flip-flops and a red tote bag, looked him over. He was wearing navy Diesel jeans and a red Lacoste sweater – a look he would later describe as “simple elegance” –...
  • Exclusive: Big data breaches found at major email services - expert (video at site)

    05/06/2016 9:54:24 PM PDT · by Swordmaker · 8 replies
    Reuters ^ | May 5, 2016 | BY ERIC AUCHARD
    Hundreds of millions of hacked user names and passwords for email accounts and other websites are being traded in Russia's criminal underworld, a security expert told Reuters. Mail.ru logo is seen in front of a displayed binary code in this illustration taken, May 4, 2016. REUTERS/DADO RUVIC/ILLUSTRATION The discovery of 272.3 million stolen accounts included a majority of users of Mail.ru (MAILRq.L), Russia's most popular email service, and smaller fractions of Google (GOOGL.O), Yahoo (YHOO.O) and Microsoft (MSFT.O) email users, said Alex Holden, founder and chief information security officer of Hold Security. It is one of the biggest stashes of...
  • FBI’s ‘No Data is New Data’ iPhone Spin Stinks

    04/21/2016 11:55:36 AM PDT · by Swordmaker · 7 replies
    Mac Observer ^ | April 21, 2016 | By Jeff Gamet
    The FBI says it has new data from Syed Farook's iPhone, and that new data is that there isn't any data, or at least no data that's of any use to the San Bernardino mass shooting investigation. The FBI is saying their analysis shows Mr. Farook didn't communicate with anyone during an 18 minute window that's unaccounted for following the shooting spree—something they should've known long before hacking into the phone. iCloud backups from the iPhone had been in the FBI's hands since early January, and agents had access to the device's phone carrier records, too. Critics to the FBI's...
  • Apple, Google, Microsoft, and others express ‘deep concerns’ over controversial encryption bill

    04/20/2016 10:14:22 AM PDT · by Swordmaker · 18 replies
    The Verge ^ | April 20, 2016 04:37 am | By Amar Toor
    Coalitions representing major tech companies warn of 'unintended consequences' in letter to US senators Four coalitions representing Apple, Microsoft, Google, Amazon, and other major tech companies have published an open letter expressing their concerns over a controversial US bill that would require smartphone makers to decrypt data on demand. The letter, published this week, is addressed to the bill's sponsors, Senators Richard Burr (R-NC) and Dianne Feinstein (D-CA), and signed by four industry groups: Reform Government Surveillance, the Computer and Communications Industry Association, the Internet Infrastructure Coalition, and the Entertainment Software Association. In addition to Apple, Microsoft, Google, and Amazon,...
  • Hackers use Congressman’s iPhone to demo ability to listen into calls, monitor texts, track location

    04/18/2016 6:31:09 PM PDT · by Swordmaker · 21 replies
    9 to 5 Mac ^ | April 18, 2016 | By Ben Lovejoy
    CBS correspondent Sharyn Alfonsi, left, with hacker Karsten Nohl Update: Rep. Ted Lieu has now written to the Chairman of the House Committee on Oversight and Government Reform requesting a formal investigation into the vulnerability. In his letter, the Congressman says that the flaw threatens ‘personal privacy, economic competitiveness and U.S. national security.’ The full text of his letter can be found at the bottom of the piece.Apple may take iOS security so seriously that it’s willing to do battle with the FBI over it, but German hackers have demonstrated that all phones – even iPhones – are susceptible...
  • Line by line, how the US anti-encryption bill will kill our privacy, security

    04/14/2016 5:19:22 PM PDT · by Swordmaker · 11 replies
    The Register ^ | 13 Apr 2016 at 22:18, | By Iain Thomson
    El Reg takes latest Burr-Feinstein legislation apart Not feeling Feinstein—Senators propose crappy legislation Analysis In the wake of the FBI's failed fight against Apple, Senators Richard Burr (R-NC) and Dianne Feinstein (D-CA) have introduced a draft bill that would effectively ban strong crypto.The bill would require tech and communications companies to allow law enforcement with a court order to decrypt their customers' data. Last week a draft copy of the bill, dubbed the Compliance with Court Orders Act of 2016, was leaked, but the new version is even worse than the discussion draft. The bill would apply to "device manufacturers,...
  • California phone decryption bill defeated

    04/14/2016 1:50:05 PM PDT · by Swordmaker · 9 replies
    The Sacramento Bee (AP) ^ | April 13th, 2016 | BY JEREMY B. WHITE
    A Sacramento woman uses her phone on Thursday, Sept. 11, 2014. Hector Amezcua hamezcua@sacbee.com A national debate over smartphone encryption arrived in Sacramento on Tuesday as legislators defeated a bill penalizing companies that don’t work with courts to break into phones, siding with technology industry representatives who called the bill a dangerous affront to privacy. The bill did not receive a vote, with members of the Assembly Committee on Privacy and Consumer Protection worrying the measure would undermine data security and impose a logistically untenable requirement on California companies. Disagreement over the balance between privacy and public safety exploded into...
  • Line By Line, How The US Anti-Encryption Bill Will Kill Our Privacy, Security

    04/14/2016 7:59:33 AM PDT · by Cyberman · 9 replies
    The Register ^ | 04/13/2016 | Iain Thomson
    Analysis In the wake of the FBI's failed fight against Apple, Senators Richard Burr (R-NC) and Dianne Feinstein (D-CA) have introduced a draft bill that would effectively ban strong crypto. The bill would require tech and communications companies to allow law enforcement with a court order to decrypt their customers' data. Last week a draft copy of the bill, dubbed the Compliance with Court Orders Act of 2016, was leaked, but the new version is even worse than the discussion draft.... The senators want to have their cake--by requiring tech companies to protect their customers' data--and eat it too--by insisting...
  • OPM Seeks Social Media Tracking for Background Checks

    04/13/2016 8:14:50 AM PDT · by detective · 3 replies
    Nextgov ^ | April 11, 2016 | By Jack Moore
    The Office of Personnel Management is preparing for a pilot program to automatically track public social media postings of people applying for security clearances. OPM is conducting market research to find companies that can perform automated social media tracking and other types of Web crawling as part of the background investigation process, according to an April 8 request for information posted online. Responses from interested companies are due by April 15.
  • Microsoft, Samba Badlock flaw not critical, but serious enough

    04/13/2016 2:06:43 PM PDT · by Mannaggia l'America
    Computerworld ^ | 04/13/2016 | Lucian Constantin
    Microsoft and the Samba project fixed a vulnerability in their implementation of the SMB/CIFS protocol after the flaw was initially announced three weeks ago under the name Badlock. The vulnerability, covered by Microsoft in its MS16-047 security bulletin published Tuesday, was also fixed in Samba 4.4.2, 4.3.8 and 4.2.11. It could allow a man-in-the-middle attacker to impersonate an authenticated user and execute arbitrary network calls to the server, possibly with administrative privileges. Badlock's existence was announced on March 22 by a company called SerNet, which offers Samba consulting, support and development services. It employs the person who found the flaw:...
  • Obama Administration Weighs Nixing 'Confidential' Classification

    04/13/2016 1:08:39 PM PDT · by Oldeconomybuyer · 30 replies
    NBC News ^ | April 13, 2016 | by Ken Dilanian
    The nation's top intelligence official is considering letting spy agencies drop the lowest level of classification, "confidential," in an effort to shrink the gusher of secret documents flowing out of their offices. The proposal by James Clapper, the director of national intelligence, comes amid a simmering controversy over classified information that found its way on to the home email system used by Democratic presidential candidate Hillary Clinton when she was secretary of state. In a memorandum sent last month to directors of the CIA and four other intelligence agencies, Clapper told them to "to take a leading role in reducing...
  • Mac Users Attacked Again by Fake Adobe Flash Update

    04/12/2016 10:31:56 PM PDT · by Swordmaker · 11 replies
    Intego ^ | April 12th, 2016 | by Graham Cluley
    Mac users are once again being urged to exercise caution when installing updates to Adobe Flash Player, after a fake update was discovered infecting computers.Intego security experts have identified the rogue package installer as a variant of OSX/InstallCore, and have updated Intego VirusBarrier definitions to provide protection.The in-the-wild attack has been spread in the form of a Mac Package installer .pkg file, also known a flat package, and has been signed with a legitimate Developer ID certificate — effectively tricking OS X's built-in Gatekeeper security to believe that the files can be trusted and are not malicious.Curiously, if the Mac Package...