News

McAfee researchers have uncovered two new vulnerabilities within connected devices that allow hackers access to the personal lives of consumers. A vulnerability within BoxLock smart padlock enables hackers to unlock the device within a few seconds, and a vulnerability within the Mr. Coffee brand coffee maker with Wemo grants hackers access to home networks. As the Internet of Things (IoT) grows and smart devices gain popularity, McAfee warns consumers and businesses alike that cybercriminals will...

Avast (LSE:AVST), the global leader in digital security products, today announced that two out of five digital households are vulnerable to cyber attacks. The Avast Smart Home Report 2019 contains insights from over 16 million smart home networks, revealing that 40.3% of homes worldwide have more than five smart devices connected, and 40.8% of these digital homes worldwide contain at least one vulnerable connected device. This illustrates how many homes are at risk from Internet...

In collaboration with other members of the Industrial Internet Consortium (IIC), Kaspersky Lab experts have formulated the Security Maturity Model (SMM) Practitioner’s Guide. This helps IoT operators define the level of security maturity they need to achieve based on their security goals and objectives, as well their appetite for risk. The SMM builds on concepts identified in the IIC Industrial Internet Security Framework published in 2016. The SMM is the first of its kind, discussing...

Half (49%) of the UK's 5.7m businesses are leaving themselves vulnerable to cyber-attacks by having unknown devices on their network, new research from Forescout has revealed today. This marks a significant increase of 2%, or 110,000, of businesses since April 2018. The survey conducted by Censuswide found that 85% of CIOs and IT decision makers understand that a lack of visibility and control of the devices on their network poses a real risk to their...

The number of adverts selling logins for hacked accounts on adult websites doubled in 2018. The number of detections for malware strains that hunt for login credentials on adult-themed websites tripled in 2018, while the number of adverts selling access to hacked accounts on porn portals doubled, according to a report published today by Kaspersky Labs. Source: ZDNet

California officials proposed legislation that, if passed, would set stricter guidelines for when companies need to inform customers of a data breach. The bill would require companies to notify California residents when their passport, passport card or green card numbers are compromised in data breaches. It would also require customers be notified of compromised biometric information such as fingerprints. The legislation goes further than the state's current consumer protections, which require companies to inform their...

Plus: How Microsoft Edge helps Facebook Flash files dodge click-to-play rules in Edge. Adobe is taking a second crack at patching security bugs in its Acrobat and Reader PDF apps. The APSB19-13 release, out today, attempts to completely kill off vulnerability CVE-2019-7089, which a software update earlier this month tried to address but was found to have insufficiently covered the security hole. In other words, Adobe's earlier update didn't fully fix the issue, and so now people...

A vulnerability in both the Bigscreen virtual reality app and the Unity game development platform on which it's built makes it possible for hackers to listen to conversations and access user computers, according to researchers at the University of New Haven. "Our research shows hackers are able to monitor people day in and day out – listen to what they are saying and see how they are interacting in virtual reality," Ibrahim Baggili, founder and...

Labour Party claims MP contacted its supporters after quitting for the Independent Group. Labour has reported its former MP Joan Ryan to the Information Commissioner’s Office, though she strongly denies accessing party systems to contact members after resigning from the party on Tuesday to join the breakaway Independent Group. It is understood the party has informed the commissioner about the alleged breach and that it intends to submit a full report. Suspicions about the breach prompted party officials to...

Aquilai has launched their cloud based Ajax Intelligence solution to combat all forms of email phishing prevalent on Microsoft Exchange, Office 365 and G Suite emails. Shaped in collaboration with GCHQ and National Cyber Security Centre staff, Ajax Intelligence is the most effective solution against email phishing available on the market. The architecture is optimised and validated as being effective against current and evolving phishing threats that will continue to impact all types of business,...