AMCA Healthcare Hack Widens Again, Reaching 20.1M Victims
OPKO subsidiary BioReference joins Quest and LabCorp in the supply-chain incident. Go to Source
High-Severity Bug in Cisco Industrial Enterprise Tool Allows RCE
Bug allows for a remote attacker to execute arbitrary code on industrial, enterprise tools. Go to Source
Streaming Video Fans Open to TV Hijacking
Critical bugs impact a widely deployed streaming platform, common in the U.S. and elsewhere. Go to Source
IoT Security Regulation is on the Horizon
Ken Munro of Pen Test Partners hopes to see regulation for connected-device security in 2020. Go to Source
Buggy Phishing Kits Allow Criminals to Cannibalize Their Own
The vulnerable kits also offer a point of entry to compromise legitimate website servers. Go to Source
440 Million Android Users Plagued By Extremely Obnoxious Pop-Ups
The mobile ad plugin, found in hundreds of Google Play apps, uses well-honed techniques from malware development to hide itself. Go to Source
Mozilla and Google Browsers Get Security, Anti-Tracking Boosts
Both FireFox and Chrome have received updates to better guard users against privacy and security threats, such as tracking by Facebook. Go to Source
BlueKeep ‘Mega-Worm’ Looms as Fresh PoC Shows Full System Takeover
A working exploit for the critical remote code-execution flaw shows how an unauthenticated attacker can achieve full run of a victim machine in about 22 seconds. Go to Source
Why Election Trust is Dwindling in a Post-Cambridge Analytica World
As more data is collected, shared and sold, people are growing increasingly distrustful of technology, an expert said at Infosecurity Europe Wednesday. Go to Source
Is ‘Sign in with Apple’ Marketing Spin or Privacy Magic? Experts Weigh In
The login scheme promises it won’t share data — and will be required for all developers using third-party sign-ins. Go to Source