Blog

If the US President Can’t Secure His IoT Devices, Can You?

People’s homes are full of cameras and microphones, which in theory allow attackers to do more than just hijack your IoT devices for a DDoS attack. The extent of IoT security problems should worry everyone, especially since many homes lack essential protection. And few service providers can offer this kind of protection.

Continue reading “If the US President Can’t Secure His IoT Devices, Can You?”

Belgian Hospital Reroutes Critical Patients after Cyberattack

On Sunday evening, the CHwapi hospital in Belgium suffered a cyberattack that prompted the facility to redirect emergency patients to other hospitals and delay surgical procedures. As reported by local media group L’Avenir, 80 of the hospital center’s 300 servers were affected by the attack, forcing staff and nurses to abandon digital entries and turn to pen and paper for patient assessments. Patient data was not compromised, according to CHwapi.

Continue reading “Belgian Hospital Reroutes Critical Patients after Cyberattack”

Texas Security Technician Who Hacked Security Cams to Watch Couples Having Sex Faces 5 Years Behind Bars

A former ADT employee entrusted with maintaining home security cameras has pleaded guilty to hacking into video feeds to watch couples having sex. ADT Inc provides residential, small and large business electronic security, fire protection, and other related alarm-monitoring services throughout the United States.

Continue reading “Texas Security Technician Who Hacked Security Cams to Watch Couples Having Sex Faces 5 Years Behind Bars”

Hackers release over 4,000 files stolen from Scottish environment agency in ransomware attack

SEPA was hit by ransomware attack on Christmas Eve Corporate plans and contracts published after organisation refused to give in to ransom demand Thereand#8217;s more bad news for the Scottish Environment Protection Agency (SEPA) which was hit by a ransomware attack on Christmas Eve – a serious security breach that has continued to impact its internal systems and forced its email offline.

Continue reading “Hackers release over 4,000 files stolen from Scottish environment agency in ransomware attack”

President Joe Biden Likely Won’t Be Able to Bring His Peloton Bike Due to Security Concerns

Joe Biden, the new US president, will have to renounce his Peloton smart bike because it presents significant security concerns, showing that IoT security problems are not limited to regular users. Peloton bikes are, in fact, smart IoT devices that feature online connectivity, cameras and microphones. Imagine the risk of placing this type of device, which can’t be properly secured, inside the president’s private residence.

Continue reading “President Joe Biden Likely Won’t Be Able to Bring His Peloton Bike Due to Security Concerns”

New Phishing Attack Impersonates PayPal with Threats of ’Flagged‘ Profiles

Security researchers identified a phishing attack impersonating PayPal that allowed criminals to access people’s credentials, their PayPal account, and then their finances. Credentials for access to financial resources will always be a target for criminals, and since PayPal is one of the largest companies of its kind, it has a bullseye painted on it.

Continue reading “New Phishing Attack Impersonates PayPal with Threats of ’Flagged‘ Profiles”

NSA Offers Sysadmins Guidance on Eliminating Obsolete TLS Configurations

The US National Security Agency (NSA) has released a security advisory warning network administrators and security analysts that “new attacks against Transport Layer Security (TLS) and the algorithms it uses have been discovered.” Primarily aimed at government entities, the notice instructs IT admins to “make a plan on how to weed out obsolete TLS configurations in the environment by detecting, prioritizing, remediating, and then blocking obsolete TLS versions, cipher suites, and finally key exchange methods.”

Continue reading “NSA Offers Sysadmins Guidance on Eliminating Obsolete TLS Configurations”

Obsolete Adult Social Media App Exposes Lewd Photos of Users

Researchers have recently stumbled upon an unsecure database belonging to Fleek, an X-rated social media app Fleek that ceased operations in 2019. The app was apparently popular on college campuses, offering an unfiltered alternative to all-too-familiar Snapchat. Users could upload unfiltered and unmoderated content including nudity, drugs and alcohol use, among others.

Continue reading “Obsolete Adult Social Media App Exposes Lewd Photos of Users”

Some FiberHome GPON FTTH Devices Are Full of Backdoors and Vulnerabilities, Research Reveals

A security researcher discovered a host of vulnerabilities and various backdoors in FiberHome HG6245D devices, amountintg to a severe security problem in countries where ISPs deploy this hardware. The FiberHome device is a GPON (Gigabit Passive Optical Networks) FTTH (fiber-to-the-home). It’s a device that transforms the optical network into Ethernet, allowing for deployment in large buildings, for example.

Continue reading “Some FiberHome GPON FTTH Devices Are Full of Backdoors and Vulnerabilities, Research Reveals”

OpenWRT Reveals Forum Data Breach; Users Advised to Reset Passwords

OpenWRT open-source project says someone used an administrator’s credentials to breach their forum and stole a list of list user names, email addresses, and various other statistical data. Forum data breaches are not uncommon, as threat actors take advantage of vulnerabilities or employ other methods to gain access.

Continue reading “OpenWRT Reveals Forum Data Breach; Users Advised to Reset Passwords”