Subscribe: Zero Day
http://blogs.zdnet.com/security/wp-rss2.php
Preview: Zero Day

ZDNet | security RSS



ZDNet | security RSS



Published: Mon, 20 Nov 2017 16:32:24 +0000

Last Build Date: Mon, 20 Nov 2017 16:32:24 +0000

Copyright: 2017 CBS Interactive Inc. All rights reserved
 



Linus Torvalds: 'I don't trust security people to do sane things'

Mon, 20 Nov 2017 10:46:02 +0000

The prominent Linux engineer has suggested models used to approach kernel security are entirely wrong.



Bug bounty hunter reveals DJI SSL, firmware keys have been public for years

Fri, 17 Nov 2017 10:40:00 +0000

Opinion: The researcher has discarded $30,000 to ensure there is full public disclosure of the drone maker's poor security and revealing how not every bug bounty hunt ends well.



Oracle pushes emergency patch for critical Tuxedo server vulnerabilities

Thu, 16 Nov 2017 15:28:00 +0000

Two of the vulnerabilities have achieved a rating of 10 and 9.9 in severity.



Parity shakes up wallet audits, but funds remain frozen

Thu, 16 Nov 2017 11:09:00 +0000

After a user accidentally stole and froze funds in over 500 wallets, a solution is yet to be found.



McAfee's own anti-hacking service exposed users to banking malware

Wed, 15 Nov 2017 22:00:00 +0000

The purportedly safe link pointed users to a malicious Word document, laden with Emotet banking malware.



Trump administration releases rules on disclosing security flaws

Wed, 15 Nov 2017 16:17:00 +0000

The White House's cybersecurity coordinator said the rules are "vital" to ensuring a balance between public disclosure and retaining flaws for intelligence operations.



Fileless attacks surge in 2017, security solutions are not stopping them

Wed, 15 Nov 2017 15:00:00 +0000

By 2018, they are expected to account for 35 percent of all cyberattacks.



Adobe patches 67 vulnerabilities in Flash, Reader

Wed, 15 Nov 2017 11:26:00 +0000

The round of patches fixes critical issues, many of which lead to remote code execution.



Forever 21 investigating possible data breach

Wed, 15 Nov 2017 09:16:00 +0000

The retailer says that some customer credit cards may have been compromised.



Lenovo says AI crucial for enterprise as it announces new tech for training machine-learning systems

Tue, 14 Nov 2017 13:00:21 +0000

Lenovo releases new hardware and software for streamlining machine-learning on a high-performance computer systems.



How criminals clear your stolen iPhone for resale

Tue, 14 Nov 2017 13:00:00 +0000

Criminals have dedicated themselves to compromising iCloud accounts to wipe clean stolen devices using a set of interesting tools.



Equifax, Yahoo fail to answer the most basic questions during Senate hearing

Wed, 08 Nov 2017 20:16:00 +0000

Senators were left frustrated as Yahoo didn't know how it was hacked, and Equifax still didn't know who.



FBI says it can't access Texas gunman's encrypted iPhone

Wed, 08 Nov 2017 16:31:00 +0000

Early conversations were had between the Apple and the FBI, but no formal request for assistance was made.



IoT devices are an enterprise security time bomb

Wed, 08 Nov 2017 11:00:00 +0000

The majority of enterprise players cannot identify IoT devices on their networks -- but that's only the beginning.



Ethereum user accidentally exploits major vulnerability, locks wallets

Wed, 08 Nov 2017 10:14:00 +0000

Wallets are frozen while Parity works on a solution.



Google fixes KRACK vulnerability in Android

Tue, 07 Nov 2017 17:40:00 +0000

The KRACK vulnerability is said to be "exceptionally devastating" for Android users.



Locky ransomware used to target hospitals evolves

Tue, 07 Nov 2017 17:00:00 +0000

The malware's authors have added a few new tricks to avoid detection.



As local elections loom, voters drown in political text message spam

Tue, 07 Nov 2017 14:00:00 +0000

As local and state elections roll around, so do the unsolicited political text messages.



How Cloudflare uses lava lamps to encrypt the Internet

Tue, 07 Nov 2017 09:39:00 +0000

Cloudflare's encryption secret? Gelatinous floating blobs.



Cisco patches DoS vulnerability in IOS XE

Tue, 07 Nov 2017 08:57:52 +0000

Exploiting the vulnerability can lead to denial-of-service (DoS) attacks.