Free Republic 2nd Quarter Fundraising Target: $88,000 Receipts & Pledges to-date: $54,101
61%  
Woo hoo!! And we're now over 61%!! Thank you all very much!! God bless.

Keyword: security

Brevity: Headers | « Text »
  • G7 Leaders Ask For Migrant Boats To Be Stopped During Their Visit Because Of Security Concerns

    05/28/2017 4:52:43 AM PDT · by davikkm · 8 replies
    IWB ^ | Mark Angelides
    As the G7 nations met in Sicily to discuss, among other things, what can be done about the mass influx of migrants to Europe and any potential security threat they may pose, they ordered that all migrant boat arrivals be shuffled along to other Italian ports because the arrival of migrants may cause security issues! Apparently, they see the arrival of these migrants as a potential threat and therefore do not want them arriving whilst they could themselves be in danger, but ignore the fact that they have allowed hundreds of thousands to arrive unvetted by this route and will...
  • A question for our network gurus.

    05/22/2017 9:23:15 AM PDT · by LouAvul · 15 replies
    I recently installed a Netgear Nighthawk X6 router. I've replaced the default passwords with 10 digit, random, unrelated characters. Two of my devices (a desktop and a laptop) are running Avast free virus protection. When I run an Avast scan, it says Service is vulnerable to attacks from within your network. When I click on their recommended solution, they say to update the firmware. I've gone to the Netgear website and it says all is updated. I recently vacationed in Colorado. I stayed at a private condo and used their wifi. I ran the Avast scan on my laptop. At...
  • Russian-linked Hackers Gang Reportedly Behind NHS Hack Using ....

    05/13/2017 8:04:39 AM PDT · by Ernest_at_the_Beach · 25 replies
    wccftech.com ^ | 1 hour ago May 13, 2017 | Zara Ali
    The massive cyber attack on NHS left the everyone thinking about the origin of hackers. Now, according to the latest report, the gang could have alleged links to Russia. The cyber attack is possibly a reprisal for attacks on Syria by the US.In April, a mysterious hacker group called Shadow Brokers went on claiming that it has stolen a ‘cyber weapon’ from an American spying agency. The group claimed that the tool would give it an open access to all the systems running Microsoft Windows operating system. Thes stolen cyber weapon belonged to the National Security Agency (NSA), which...
  • THE REAL PROBLEM OF MICHAEL FLYNN

    05/09/2017 6:36:35 AM PDT · by shortstop · 60 replies
    boblonsberry.com ^ | 05/09/17 | Bob Lonsberry
    It's not the 24 days Michael Flynn was a national security adviser that worry me, it's the 33 years he was an Army officer. How does a guy spend his entire adult life a commissioned soldier and still compromise himself and his position so completely and cavalierly? When a tree bears bitter fruit, you wonder about the tree. Michael Flynn clearly used his position to enrich himself, and he actively violated policy to do so. He failed to get permission to receive money from a foreign and hostile power, and then engaged in deception to conceal his conduct. In doing...
  • SPY PHONE Secret messages hidden in TV adverts can order smartphones to spy on people (TRUNC)

    05/08/2017 11:57:56 PM PDT · by Swordmaker · 30 replies
    The Sun (UK) ^ | 8th May 2017, 11:51 am | By Jasper Hamill
    Popular apps downloaded by millions of people are always on the look out for clandestine broadcasts which order them to begin snooping on citizens SECRET messages hidden in television adverts can order smartphones to quietly spy on their owners. That’s the shocking revelation in a new piece of research which exposes the scary snooping techniques corporations are using to pry into ordinary people’s lives in unprecedented detail. Television adverts can order a smartphone to begin surveilling its owner Television adverts can order a smartphone to begin surveilling its owner A team of German academics have noticed a huge growth in...
  • Disable Intel AMT on Windows (fix Intel's ME/AMT/SMT bug on vPro or consumer machine)

    05/08/2017 10:59:25 PM PDT · by CutePuppy · 9 replies
    Bartblaze / GitHub ^ | 2017 May 07 | bartblaze
    This is the Read.md file on the site, explaining how to use a standalone executable file (compiled from a batch file) to disable recently discovered Intel's bug, until Intel machines' firmware get fixed. Download the DisableAMT.exe (or DisableAMT.zip) from https://github.com/bartblaze/Disable-Intel-AMT --------------------------------------------- # Disable Intel AMT Tool to disable Intel AMT on Windows. Runs on both x86 and x64 **Windows** operating systems. Download: [DisableAMT.exe](DisableAMT.exe) [DisableAMT.zip](DisableAMT.zip) ## What? On 02 May 2017, Embedi [discovered](https://www.embedi.com/news/mythbusters-cve-2017-5689) "*an escalation of privilege vulnerability in Intel® Active Management Technology (AMT), Intel® Standard Manageability (ISM), and Intel® Small Business Technology versions firmware versions 6.x, 7.x, 8.x 9.x, 10.x,...
  • PSA: Russian-Backed Flash Trojan Ported to macOS

    05/07/2017 9:38:28 AM PDT · by Swordmaker · 5 replies
    The Mac Observer ^ | May 7, 2017 | By Bryan Chaffin
    A Russian-backed bit of malware called Snake has been ported to macOS, according to security blog Fox-IT (via Malwarebytes Labs). Snake is a trojan disguised to look like a Flash installer, and it’s been around on Windows since 2008 and Linux since 2014.Snake Trojan on macOS Snake Trojan on macOS While malware, Snake is technically a Trojan, so it relies on tricking the user into installing it with their own password. It’s in the wild in a file named Install Adobe Flash Player.app.zip. The Snake Trojan on macOS installer is signed by a (currently) legit developer certificate issued to a...
  • Dozens of popular iPhone apps are still exposing your login details

    05/05/2017 1:56:08 PM PDT · by Swordmaker · 9 replies
    ZDNet ^ | May 4, 2017 | By Zack Whittaker
    Strafach, chief executive at Sudo Security Group (verify.ly), surveyed thousands of apps and found dozens that had badly implemented code that allowed the app to accept any certificate to establish an encrypted connection without properly validating it. That means a hacker within close range of a vulnerable device -- such as the same Wi-Fi network -- could trick the app into accepting a rogue certificate. The app doesn't know any better, and the hacker can steal your username and password.Strafach disclosed the names of dozens of low-risk apps, but held off on disclosing the banking and medical apps in...
  • Are consumer PCs safe from the Intel ME/AMT exploit? (Intel says don't worry?)

    05/04/2017 7:16:27 PM PDT · by Ernest_at_the_Beach · 2 replies
    semiaccurate.com ^ | May 3, 2017 | by Charlie Demerjian
    Analysis: Here are SemiAccurate’s thoughts TLDR; There is a remote control mechanism in hardware that cannot be fully disabled and you cannot get Intel hardware without it.  So while this patch may fix the current vulnerability this situation points to the urgent need for hardware diversity.Monday SemiAccurate brought you news of a critical remote exploit in all 2008+ Intel CPU’s. Today we will walk you through a chain of thought based on further investigation on how it could be exploited.Confidence Levels:While this is only analysis we will note that we believe this is in the wild right now. We would like to...
  • Microsoft asks Windows 10 Enterprise customers to test new anti-exploit tech (Preview 16188)

    05/04/2017 6:12:05 PM PDT · by dayglored · 10 replies
    ComputerWorld ^ | May 4, 2017 | Gregg Keizer
    Microsoft today asked enterprise customers to test a new anti-malware, anti-exploit technology in Windows 10's baked-in browser. Windows 10's latest preview, tagged as build 16188 and released Thursday, includes Windows Defender Application Guard, a virtualization-based feature that isolates the contents of a tab in Edge, the OS's default browser, from the rest of the system. While Application Guard was announced in September, and went through limited testing in the months since, today marked its first appearance to all Insiders running Windows 10 Enterprise. Users must manually toggle on Application Guard from a setting dialog, then open a tab within Edge...
  • Reality TV star must unlock iPhone in ‘sextortion’ case

    05/04/2017 5:54:50 PM PDT · by Swordmaker · 82 replies
    heraldMiami ^ | May 4, 2017 | BY DAVID OVALLE
    A reality TV actress accused in an extortion case involving sex videos must give up her iPhone password to police, a Miami judge ruled on Wednesday. In a case being closely watched in legal and tech circles, Miami-Dade Circuit Judge Charles Johnson ruled that Hencha Voigt, and a man charged with being her accomplice, must unlock phones police believe were used in a plot to extort a social-media celebrity. He ruled that unlocking their phones would not violate their constitutional right against self-incrimination. “For me, this is like turning over a key to a safe-deposit box,” Johnson said. Voigt and...
  • Remote security exploit in all 2008+ Intel platforms

    05/01/2017 10:03:01 PM PDT · by Ernest_at_the_Beach · 32 replies
    semiaccurate.com ^ | May 1, 2017 | by Charlie Demerjian
    Every Intel platform from Nehalem to Kaby Lake has a remotely exploitable security hole. SemiAccurate has been begging Intel to fix this issue for literally years and it looks like they finally listened. Update May 1, 2017 # 3:35pm: Intel just confirmed it, but not to SemiAccurate. You can read their advisory here.The short version is that every Intel platform with AMT, ISM, and SBT from Nehalem in 2008 to Kaby Lake in 2017 has a remotely exploitable security hole in the ME (Management Engine) not CPU firmware. If this isn’t scary enough news, even if your machine doesn’t have...
  • New macOS malware OSX/Dok requires a lot of manual steps

    05/01/2017 10:29:18 AM PDT · by Swordmaker · 5 replies
    MacWorld ^ | May 1, 2017 | By Glenn Fleishman
    OSX/Dok is now blocked, but it didn’t rely on any system exploits to install. Check Point, a security analysis firm, posted an alarming blog entry on Thursday about a new malicious macOS Trojan horse that appeared able to bypass Apple’s protections and could hijack and sniff all the traffic entering and leaving a Mac without a user’s knowledge. This would include SSL/TLS encrypted connections, because the malware installs a local digital certificate that overrides normal man-in-the-middle warnings and protections. The malware, called OSX/Dok by Check Point, spreads via a phishing attack that Check Point says mostly targets European users. One...
  • The Left wants to defund the wall, let's defund THEIR security ~ Vanity

    04/25/2017 3:40:19 PM PDT · by GraceG · 7 replies
    4-25-2017 | GraceG
    So the left thinks the United States should be paying "The federal version of ADT" for building a security perimeter on the southern border.... Well so glad it is so nice an peaceful these days that nobody needs security anymore, i mean IF we needed Security these days they would fund a wall, RIGHT? So why do democrats need to keep paying for private security around their houses? I think Nancy Pelosi could give a LOT more money to Charity if she didn't keep having to pay for personal security which is obviously a waste of her money. "Hello, ADT,...
  • Uber’s C.E.O. Plays With Fire

    04/24/2017 7:36:47 AM PDT · by Swordmaker · 18 replies
    New York Times ^ | APRIL 23, 2017 | By MIKE ISAAC
    Travis Kalanick’s drive to win in life has led to a pattern of risk-taking that has at times put his ride-hailing company on the brink of implosion. SAN FRANCISCO — Travis Kalanick, the chief executive of Uber, visited Apple’s headquarters in early 2015 to meet with Timothy D. Cook, who runs the iPhone maker. It was a session that Mr. Kalanick was dreading. For months, Mr. Kalanick had pulled a fast one on Apple by directing his employees to help camouflage the ride-hailing app from Apple’s engineers. The reason? So Apple would not find out that Uber had been secretly...
  • That apple.com link you clicked on? Yeah, it's actually Russian

    04/18/2017 1:46:27 PM PDT · by Swordmaker · 19 replies
    The Register ^ | April 18, 2017 | By Kieren McCarthy
    Didn't we fix this back in 2005? Apparently not Click this link (don't fret, nothing malicious). Chances are your browser displays "apple.com" in the address bar. What about this one? Goes to "epic.com," right?Wrong. They are in fact carefully crafted but entirely legitimate domains in non-English languages that are designed to look exactly the same as common English words. The real domains for the two above links are: xn--80ak6aa92e.com and xn--e1awd7f.com.In quick testing by El Reg, Chrome 57 on Windows 10 and macOS 10.12, and Firefox 52 on macOS, display apple.com and epic.com rather than the actual domains. We're told...
  • Turns Out Microsoft Has Already Patched Exploits Leaked By Shadow Brokers

    04/15/2017 7:43:23 AM PDT · by rarestia · 15 replies
    The Hacker News ^ | Friday, April 14, 2017 | Swati Khandelwal
    The latest dump of hacking tools allegedly belonged to the NSA is believed to be the most damaging release by the Shadow Brokers till the date. But after analyzing the disclosed exploits, Microsoft security team says most of the windows vulnerabilities exploited by these hacking tools, including EternalBlue, EternalChampion, EternalSynergy, EternalRomance and others, are already patched in the last month's Patch Tuesday update. "Most of the exploits that were disclosed fall into vulnerabilities that are already patched in our supported products. Customers still running prior versions of these products are encouraged to upgrade to a supported offering," Microsoft Security Team...
  • Man who filmed the United Airlines passenger: 'I don't blame the security guards at all'

    04/13/2017 3:37:45 AM PDT · by Zakeet · 190 replies
    Washington Examiner ^ | April 11, 2017 | Sean Langille
    The person who filmed the video of a man being forcibly removed from a United Airlines flight over the weekend says security is not to blame for the situation. "It's clearly the man's fault that security had to drag him off. He was resisting. I don't blame the security guards at all," Tyler Bridges, who captured the moment on his cellphone, told Fox Business on Tuesday.
  • Church Can Start Its Own Police Force, Alabama Senate Says

    04/12/2017 4:35:50 PM PDT · by 2ndDivisionVet · 44 replies
    National Public Radio ^ | April 12, 2017 | Bill Chappell
    A large church in Alabama is one step closer to creating its own police force, a move that seems to be without precedent in the U.S. The state's Senate has approved legislation that would give church police officers the same powers other law enforcement officers have in Alabama. After being approved by Alabama's Senate on a 24-4 vote, the bill now heads to the state House of Representatives, where an identical bill was sent to the Public Safety and Homeland Security committee in February. Both chambers' legislation specifically names Briarwood Presbyterian Church, a Birmingham megachurch that "says it needs its...
  • Internal BLM Memo Leaked: Trump’s Plan to Make America Great by Expediting Oil, Gas (T)

    04/12/2017 7:42:37 AM PDT · by rktman · 25 replies
    breitbart.com ^ | 4/12/2017 | Penny Starr
    A Bureau of Land Management (BLM) internal working document that was leaked and reported on by the liberal Greenwire website spells out in detail President Donald Trump’s plan for making America great again. It lists expanding production of domestic energy resources, supporting law enforcement, the military, and enhancing border security.