Top 10 Stories

Dueling Network shut down in 2016, but its site's forum carried on until recently. "Only our forum site was still up as a way for our users to communicate with each other (login used Dueling Network credentials). Now that is down and warns users to change passwords on any other sites they may have used the same password on," a site admin told Motherboard. View full story ORIGINAL SOURCE: Softpedia

The New York Post apologized early on Sunday hours after its app was apparently hacked with what was reported to be alerts about President Donald Trump. "The push alert system for our mobile app was compromised this evening. Please accept our apologies," the newspaper said on Twitter several hours after the alerts went out. View full story ORIGINAL SOURCE: Reuters

SMS messages made to look like they are coming from the Driver and Vehicle Licensing Agency (DVLA) are being flung at UK residents, in an attempt to trick them into sharing sensitive information. Even though it looks like it should take the recipients to an official .gov.uk domain, the link points to a website that is just made to look like the real thing. View full story ORIGINAL SOURCE: Help Net Security

McDonald's Canada said on Friday (31 March) that its career website was recently hacked, compromising the personal data of around 95,000 restaurant job applicants. The accessed information included names, addresses, email addresses, phone numbers, employment background and other standard job application information of people who applied online for a job at McDonald's Canada restaurants between March 2014 and March 2017. View full story ORIGINAL SOURCE: IBTimes

Splunk has patched a slip in its JavaScript implementation that leaks user information. The advisory at Full Disclosure explains that the leak happens if an attacker tricks an authenticated user into visiting a malicious Web page. It only leaks the username, and whether or not that user has enabled remote access; but this would provide enough for an attacker to try follow-up phishing attacks to try and get the user's credentials. View full story ORIGINAL SOURCE: The...

The Pentagon, known to be guarding some of the world's most well-kept secrets, is surprisingly still not using an encrypted email service, which could expose a trove of military data to potential hackers. The Defense Information Systems Agency (DISA), the Pentagon's branch that oversees digital communications, failed to adopt an encrypted email service as per a letter written by Senator Ron Wyden who warned the agency for taking such a risk. DISA is responsible for...

Microsoft will not patch a critical security hole recently found and exploited in IIS 6 on Windows Server 2003 R2 – the operating system it stopped supporting roughly two years ago. The buffer overflow bug can be exploited to inject malicious code into a vulnerable machine and execute it, allowing an attacker to gain control of the computer. It requires WebDAV to be enabled. If you have such a machine exposed to or reachable from...

Today, March 31, is supposed to be World Backup Day. Where did that one come from? Isn't every day a backup day? We did a bit of poking around. There is a World Backup Day website. Its legal section states: "World Backup Day and the Globe and Arrow are registered trademarks of 614a ltd." View full story ORIGINAL SOURCE: The Register

Technology giants have pledged to join forces in efforts to tackle terrorist content online following a summit with the Home Secretary. Facebook, Google, Twitter and Microsoft committed to explore options for a cross-industry forum and step up collaboration on technical tools that aim to identify and remove extremist propaganda. View full story ORIGINAL SOURCE: Daily Mail

New research from specialist cyber-insurance provider, CFC Underwriting reveals that over a quarter of UK-based SMEs (27 percent) are still failing to educate and train their staff on the threat of a cyber-attack. Phishing scams caused 38 percent of CFC's claims in 2016, meaning that they could arguably have been avoided if staff were trained properly. View full story ORIGINAL SOURCE: SC Magazine