Newsmaker Interview: Tom Kellermann on Hacking the Midterm Elections
Concerns over midterm election tampering reach a boiling point in the days leading up to actual voting. Go to Source
PortSmash Side-Channel Attack Siphons Data From Intel, Other CPUs
An exploit was released for a flaw existing in a process in CPUs called Simultaneous Multithreading (SMT). Go to Source
Passwords: Here to Stay, Despite Smart Alternatives?
“Password-killing” authentication efforts may be on a road to nowhere. Go to Source
Facebook Blames Malicious Extensions in Breach of 81K Private Messages
Investigators posed as buyers and were offered the messages at 10 cents per Facebook account. Go to Source
Cisco Security Appliance Zero-Day Found Actively Exploited in the Wild
A high severity zero-day flaw exists in Cisco System’s SIP inspection engine. Go to Source
ThreatList: Fewer Big DDoS Attacks in Q3, Overall Rate Holds Steady
Meanwhile, Saturday now is the most “dangerous” day of the week for DDoS attacks. Go to Source
Yi IoT Home Camera Riddled with Code-Execution Vulnerabilities
Five of them allow remote compromise of the IoT gadgets, so attackers can intercept video feeds and more. Go to Source
GDPR’s First 150 Days Impact on the U.S.
Weighing the impact of GDPR and how the historic legislation has shaped privacy protection measures in the U.S., so far. Go to Source
Utilities, Energy Sector Attacked Mainly Via IT, Not ICS
Stealing administrative credentials to carry out months-long spy campaigns is a top threat. Go to Source
PoC Exploit Compromises Microsoft Live Accounts via Subdomain Hijacking
Poor DNS housekeeping opens the door to account takeover. Go to Source