Top 10 Stories

New figures from fraud prevention service Cifas show a 5% drop in identity fraud in the first six months of 2018 - the first time identity fraud has fallen since 2014. View full story ORIGINAL SOURCE: Financial Reporter

Oracle is advising customers to update their database software following the discovery and disclosure of a critical remote code execution vulnerability. The flaw, dubbed CVE-2018-3110 was given a CVSS base score of 9.9 (out of 10) and Oracle warns that successful exploit of the bug "can result in complete compromise of the Oracle Database and shell access to the underlying server." View full story ORIGINAL SOURCE: The Register

Google records users' locations even when they have asked it not to, a report from the Associated Press has suggested. The issue could affect up to two billion Android and Apple devices which use Google for maps or search. The study, verified by researchers at Princeton University, has angered US law-makers. View full story ORIGINAL SOURCE: BBC

A former Microsoft network engineer will be spending a sojourn behind bars after pleading guilty to conspiracy to commit money laundering. Raymond Odigie Uadiale was this week given an 18-month sentence and three years supervised release – after he agreed to a plea deal that saw him cop to a conspiracy charge in exchange for a second count of substantive money laundering being dropped. View full story ORIGINAL SOURCE: The Register

Researchers have found another serious security flaw in computer chips designed by Intel. Nicknamed Foreshadow, this is the third significant flaw to affect the company’s chips this year. The US government’s body for computer security said “an attacker could exploit this vulnerability to obtain sensitive information”. View full story ORIGINAL SOURCE: BBC

Once lauded as tools to enhance police accountability, body cameras have been facing increasing scrutiny from privacy advocates, and now one researcher has identified them as cybersecurity time bombs. Speaking to Wired ahead of a Def Con presentation, Josh Mitchell, a consultant at the security firm Nuix, demonstrated that many body cameras are vulnerable to hacking, making several different nightmare scenarios possible: officers themselves could be tracked while wearing the cameras, footage could be doctored or deleted entirely,...

Despite being the subject of an international takedown operation last year, traces of the Andromeda botnet can still be found on many PCs. The Andromeda botnet was associated with 80 different malware families and grew so large that it was at one point infecting a million new machines a month, distributing itself via social media, instant messaging, spam emails, exploit kits, and more. View Full Story ORIGINAL SOURCE: ZDNet

Hackers of all ages have been investigating America’s voting machine tech, and the results weren't great. For instance, one 11-year-old apparently managed to hack and alter a simulated Secretary of State election results webpage in 10 minutes. The Vote Hacking Village, one of the most packed-out locations at this year’s DEF CON hacking conference in Las Vegas, saw many of the most commonly used US voting machines hijacked using a variety of wireless and wired...

Cisco has pushed out an update for its internetwork operating system (IOS) and IOS XE firmware in advance of a Usenix presentation on circumventing cryptographic key protocol. The networking behemoth is advising all customers running hardware that uses IOS and IOS XE to get the updates that address CVE-2018-0131, a security bypass vulnerability stemming from a weakness in the Internet Key Exchange (IKEv1) protocol. View Full Story ORIGINAL SOURCE: The Register

Mobile device malware may still be far behind when it comes to the prevalence of threats crafted for traditional PC systems, but threat actors are seeking ways to compromise these important devices we use on a daily basis. View Full Story ORIGINAL SOURCE: ZDNet