Tfun http://www.tfun.org IS Security News feed from around the world Tue, 23 May 2017 18:33:33 +0000 en-US hourly 1 Why Big Data, Machine Learning Are Critical to Security http://www.tfun.org/2017/05/23/why-big-data-machine-learning-are-critical-to-security/ http://www.tfun.org/2017/05/23/why-big-data-machine-learning-are-critical-to-security/#respond Tue, 23 May 2017 18:33:19 +0000 http://www.tfun.org/2017/05/23/why-big-data-machine-learning-are-critical-to-security/

Big data and machine learning will play increasingly critical roles in improving information security, predicts Will Cappelli, a vice president of research at Gartner, who describes the reasons why.

Source: Bank Info Security
Why Big Data, Machine Learning Are Critical to Security

]]>
http://www.tfun.org/2017/05/23/why-big-data-machine-learning-are-critical-to-security/feed/ 0
HSBC Experiences Voice Biometrics Telephone Banking Fail http://www.tfun.org/2017/05/23/hsbc-experiences-voice-biometrics-telephone-banking-fail/ http://www.tfun.org/2017/05/23/hsbc-experiences-voice-biometrics-telephone-banking-fail/#respond Tue, 23 May 2017 18:32:57 +0000 http://www.tfun.org/2017/05/23/hsbc-experiences-voice-biometrics-telephone-banking-fail/

Voice biometrics: Is it good enough to protect people’s bank accounts? Also, the ISMG Security Report goes to Belfast, Northern Ireland, for this year’s OWASP AppSec Europe conference, including a visit to the Titanic museum – hopefully not a metaphor for the discipline.

Source: Bank Info Security
HSBC Experiences Voice Biometrics Telephone Banking Fail

]]>
http://www.tfun.org/2017/05/23/hsbc-experiences-voice-biometrics-telephone-banking-fail/feed/ 0
News in brief: Dubai launches its first robocops; Samsung woes over iris recognition; IoT security criticised http://www.tfun.org/2017/05/23/news-in-brief-dubai-launches-its-first-robocops-samsung-woes-over-iris-recognition-iot-security-criticised/ http://www.tfun.org/2017/05/23/news-in-brief-dubai-launches-its-first-robocops-samsung-woes-over-iris-recognition-iot-security-criticised/#respond Tue, 23 May 2017 17:37:38 +0000 http://www.tfun.org/2017/05/23/news-in-brief-dubai-launches-its-first-robocops-samsung-woes-over-iris-recognition-iot-security-criticised/

Your daily round-up of some of the other stories in the news

Source: Naked Security Sophos
News in brief: Dubai launches its first robocops; Samsung woes over iris recognition; IoT security criticised

]]>
http://www.tfun.org/2017/05/23/news-in-brief-dubai-launches-its-first-robocops-samsung-woes-over-iris-recognition-iot-security-criticised/feed/ 0
New Product Allows Easy Addition of Multi-Factor Authentication to Any Application http://www.tfun.org/2017/05/23/new-product-allows-easy-addition-of-multi-factor-authentication-to-any-application/ http://www.tfun.org/2017/05/23/new-product-allows-easy-addition-of-multi-factor-authentication-to-any-application/#respond Tue, 23 May 2017 16:54:39 +0000 http://www.tfun.org/2017/05/23/new-product-allows-easy-addition-of-multi-factor-authentication-to-any-application/

New Multi-factor Authentication Offering Seeks Balance Between Strong Security and Ease of Use

read more



Source: Security Week
New Product Allows Easy Addition of Multi-Factor Authentication to Any Application

]]>
http://www.tfun.org/2017/05/23/new-product-allows-easy-addition-of-multi-factor-authentication-to-any-application/feed/ 0
Media Players Expose Millions of Systems to Subtitle Attacks http://www.tfun.org/2017/05/23/media-players-expose-millions-of-systems-to-subtitle-attacks/ http://www.tfun.org/2017/05/23/media-players-expose-millions-of-systems-to-subtitle-attacks/#respond Tue, 23 May 2017 16:37:54 +0000 http://www.tfun.org/2017/05/23/media-players-expose-millions-of-systems-to-subtitle-attacks/

Malicious actors could hijack millions of systems using specially crafted subtitle files that exploit vulnerabilities in some of the most popular media players, security firm Check Point warned on Tuesday.

read more



Source: Security Week
Media Players Expose Millions of Systems to Subtitle Attacks

]]>
http://www.tfun.org/2017/05/23/media-players-expose-millions-of-systems-to-subtitle-attacks/feed/ 0
CEOs and Coffee Shops Are Mobile Computing's Biggest Risks: Report http://www.tfun.org/2017/05/23/ceos-and-coffee-shops-are-mobile-computings-biggest-risks-report/ http://www.tfun.org/2017/05/23/ceos-and-coffee-shops-are-mobile-computings-biggest-risks-report/#respond Tue, 23 May 2017 16:23:39 +0000 http://www.tfun.org/2017/05/23/ceos-and-coffee-shops-are-mobile-computings-biggest-risks-report/

The balance between encouraging mobility for business purposes and controlling it for security remains as tricky today as ever. Ninety-three percent of organizations are now somewhat or very concerned that the mobile workforce is presenting an increasing number of security challenges. Of these, 47% are ‘very concerned’; a figure that has grown from 36% a year ago.

read more



Source: Security Week
CEOs and Coffee Shops Are Mobile Computing’s Biggest Risks: Report

]]>
http://www.tfun.org/2017/05/23/ceos-and-coffee-shops-are-mobile-computings-biggest-risks-report/feed/ 0
Flashpoint Enhances Risk Intelligence Platform http://www.tfun.org/2017/05/23/flashpoint-enhances-risk-intelligence-platform/ http://www.tfun.org/2017/05/23/flashpoint-enhances-risk-intelligence-platform/#respond Tue, 23 May 2017 16:13:50 +0000 http://www.tfun.org/2017/05/23/flashpoint-enhances-risk-intelligence-platform/

Just as global intelligence firm Stratfor extracts and presents geopolitical intelligence from the noise of available information, so now does Flashpoint extract cyber business risk intelligence (BRI) from the noise of deep and dark web conversations.

read more



Source: Security Week
Flashpoint Enhances Risk Intelligence Platform

]]>
http://www.tfun.org/2017/05/23/flashpoint-enhances-risk-intelligence-platform/feed/ 0
Digital watermark leads police straight to Bollywood pirates http://www.tfun.org/2017/05/23/digital-watermark-leads-police-straight-to-bollywood-pirates/ http://www.tfun.org/2017/05/23/digital-watermark-leads-police-straight-to-bollywood-pirates/#respond Tue, 23 May 2017 14:49:13 +0000 http://www.tfun.org/2017/05/23/digital-watermark-leads-police-straight-to-bollywood-pirates/

Digital signing led police to the would-be extortionists – a welcome turnaround for the movie industry after a run of thefts

Source: Naked Security Sophos
Digital watermark leads police straight to Bollywood pirates

]]>
http://www.tfun.org/2017/05/23/digital-watermark-leads-police-straight-to-bollywood-pirates/feed/ 0
Hackers Defeat Samsung Galaxy S8 Iris Scanner http://www.tfun.org/2017/05/23/hackers-defeat-samsung-galaxy-s8-iris-scanner/ http://www.tfun.org/2017/05/23/hackers-defeat-samsung-galaxy-s8-iris-scanner/#respond Tue, 23 May 2017 13:57:21 +0000 http://www.tfun.org/2017/05/23/hackers-defeat-samsung-galaxy-s8-iris-scanner/

Hackers of the Chaos Computer Club (CCC) in Germany have managed to defeat the iris recognition system on Samsung’s flagship Galaxy S8 smartphones.

read more



Source: Security Week
Hackers Defeat Samsung Galaxy S8 Iris Scanner

]]>
http://www.tfun.org/2017/05/23/hackers-defeat-samsung-galaxy-s8-iris-scanner/feed/ 0
Average Patching Time for SCADA Flaws Is 150 Days: Report http://www.tfun.org/2017/05/23/average-patching-time-for-scada-flaws-is-150-days-report/ http://www.tfun.org/2017/05/23/average-patching-time-for-scada-flaws-is-150-days-report/#respond Tue, 23 May 2017 13:19:35 +0000 http://www.tfun.org/2017/05/23/average-patching-time-for-scada-flaws-is-150-days-report/

Supervisory control and data acquisition (SCADA) systems, particularly human-machine interfaces (HMI), can be a tempting target for malicious actors, but it takes vendors, on average, 150 days to patch vulnerabilities in these types of products, according to a new report from Trend Micro and the Zero Day Initiative (ZDI).

read more



Source: Security Week
Average Patching Time for SCADA Flaws Is 150 Days: Report

]]>
http://www.tfun.org/2017/05/23/average-patching-time-for-scada-flaws-is-150-days-report/feed/ 0
Man jailed for stealing images and details from more than 50 women http://www.tfun.org/2017/05/23/man-jailed-for-stealing-images-and-details-from-more-than-50-women/ http://www.tfun.org/2017/05/23/man-jailed-for-stealing-images-and-details-from-more-than-50-women/#respond Tue, 23 May 2017 12:40:56 +0000 http://www.tfun.org/2017/05/23/man-jailed-for-stealing-images-and-details-from-more-than-50-women/

When someone like this is caught and jailed it’s a sobering reminder to check our own digital footprint – here are some tips to help you secure your information

Source: Naked Security Sophos
Man jailed for stealing images and details from more than 50 women

]]>
http://www.tfun.org/2017/05/23/man-jailed-for-stealing-images-and-details-from-more-than-50-women/feed/ 0
WannaCry 'Highly Likely' Work of North Korean-linked Hackers, Symantec Says http://www.tfun.org/2017/05/23/wannacry-highly-likely-work-of-north-korean-linked-hackers-symantec-says/ http://www.tfun.org/2017/05/23/wannacry-highly-likely-work-of-north-korean-linked-hackers-symantec-says/#respond Tue, 23 May 2017 11:11:31 +0000 http://www.tfun.org/2017/05/23/wannacry-highly-likely-work-of-north-korean-linked-hackers-symantec-says/

North Korea-linked Lazarus Hacking Group is “Highly Likely” to be Responsible for the Global “WannaCry” Ransomware Attack, Symantec Says

read more



Source: Security Week
WannaCry ‘Highly Likely’ Work of North Korean-linked Hackers, Symantec Says

]]>
http://www.tfun.org/2017/05/23/wannacry-highly-likely-work-of-north-korean-linked-hackers-symantec-says/feed/ 0
Warning after WannaCry sets off fake BT phishing attack http://www.tfun.org/2017/05/23/warning-after-wannacry-sets-off-fake-bt-phishing-attack/ http://www.tfun.org/2017/05/23/warning-after-wannacry-sets-off-fake-bt-phishing-attack/#respond Tue, 23 May 2017 10:30:10 +0000 http://www.tfun.org/2017/05/23/warning-after-wannacry-sets-off-fake-bt-phishing-attack/

It’s a sad fact that we end up seeing warnings about warnings in the aftermath of a major cybersecurity event

Source: Naked Security Sophos
Warning after WannaCry sets off fake BT phishing attack

]]>
http://www.tfun.org/2017/05/23/warning-after-wannacry-sets-off-fake-bt-phishing-attack/feed/ 0
Russian Hackers Infected 1 Million Phones With Banking Trojan http://www.tfun.org/2017/05/23/russian-hackers-infected-1-million-phones-with-banking-trojan/ http://www.tfun.org/2017/05/23/russian-hackers-infected-1-million-phones-with-banking-trojan/#respond Tue, 23 May 2017 09:51:21 +0000 http://www.tfun.org/2017/05/23/russian-hackers-infected-1-million-phones-with-banking-trojan/

Russia Dismantles Major Cybercrime Operation Targeting Bank Accounts via Android Malware

The Russian Interior Ministry announced on Monday that authorities dismantled a major cybercrime gang that had stolen nearly $900,000 from bank accounts after infecting more than one million Android smartphones with a Trojan.

read more



Source: Security Week
Russian Hackers Infected 1 Million Phones With Banking Trojan

]]>
http://www.tfun.org/2017/05/23/russian-hackers-infected-1-million-phones-with-banking-trojan/feed/ 0
Yahoo Ditching ImageMagick Highlights Issues in Bug Responsibility Ecosystem http://www.tfun.org/2017/05/23/yahoo-ditching-imagemagick-highlights-issues-in-bug-responsibility-ecosystem/ http://www.tfun.org/2017/05/23/yahoo-ditching-imagemagick-highlights-issues-in-bug-responsibility-ecosystem/#respond Tue, 23 May 2017 02:38:02 +0000 http://www.tfun.org/2017/05/23/yahoo-ditching-imagemagick-highlights-issues-in-bug-responsibility-ecosystem/

ImageMagick, an open source command line graphics file editor, has been retired by one of its major consumers: Yahoo. The product has been beset by flaws and bugs for several years, but this appears to have been one too many for Yahoo. Following discovery of a bleed vulnerability, Yahoo fixed it by retiring the product.

read more



Source: Security Week
Yahoo Ditching ImageMagick Highlights Issues in Bug Responsibility Ecosystem

]]>
http://www.tfun.org/2017/05/23/yahoo-ditching-imagemagick-highlights-issues-in-bug-responsibility-ecosystem/feed/ 0
After Outlasting Sweden, WikiLeaks Founder's Fate Murky http://www.tfun.org/2017/05/22/after-outlasting-sweden-wikileaks-founders-fate-murky/ http://www.tfun.org/2017/05/22/after-outlasting-sweden-wikileaks-founders-fate-murky/#respond Mon, 22 May 2017 21:52:54 +0000 http://www.tfun.org/2017/05/22/after-outlasting-sweden-wikileaks-founders-fate-murky/ Trump Administration Has Expressed Renewed Interest in Julian Assange
Sweden has ended a seven-year rape investigation against WikiLeaks founder Julian Assange. But it’s far from the end of the legal troubles for the man whose spilling of secrets has shaped world politics.

Source: Bank Info Security
After Outlasting Sweden, WikiLeaks Founder’s Fate Murky

]]>
http://www.tfun.org/2017/05/22/after-outlasting-sweden-wikileaks-founders-fate-murky/feed/ 0
WannaCry Ransomware: Tools Decrypt for Free http://www.tfun.org/2017/05/22/wannacry-ransomware-tools-decrypt-for-free/ http://www.tfun.org/2017/05/22/wannacry-ransomware-tools-decrypt-for-free/#respond Mon, 22 May 2017 21:52:14 +0000 http://www.tfun.org/2017/05/22/wannacry-ransomware-tools-decrypt-for-free/ Decryptors from French Researchers May Save Many Victims
Good news for many victims of WannaCry: Free tools developed by a trio of French security researchers can be used to decrypt some PCs that were forcibly encrypted by the ransomware, if the prime numbers used to build the crypto keys remain in Windows memory.

Source: Bank Info Security
WannaCry Ransomware: Tools Decrypt for Free

]]>
http://www.tfun.org/2017/05/22/wannacry-ransomware-tools-decrypt-for-free/feed/ 0
News in brief: Bitcoin price bubbles up; Uber uses AI to boost its take; WannaCry ‘hero’ censures tabloids http://www.tfun.org/2017/05/22/news-in-brief-bitcoin-price-bubbles-up-uber-uses-ai-to-boost-its-take-wannacry-hero-censures-tabloids/ http://www.tfun.org/2017/05/22/news-in-brief-bitcoin-price-bubbles-up-uber-uses-ai-to-boost-its-take-wannacry-hero-censures-tabloids/#respond Mon, 22 May 2017 17:54:54 +0000 http://www.tfun.org/2017/05/22/news-in-brief-bitcoin-price-bubbles-up-uber-uses-ai-to-boost-its-take-wannacry-hero-censures-tabloids/

Your daily round-up of some of the other stories in the news

Source: Naked Security Sophos
News in brief: Bitcoin price bubbles up; Uber uses AI to boost its take; WannaCry ‘hero’ censures tabloids

]]>
http://www.tfun.org/2017/05/22/news-in-brief-bitcoin-price-bubbles-up-uber-uses-ai-to-boost-its-take-wannacry-hero-censures-tabloids/feed/ 0
Yes, Geek Squad can search your files and hand you over to the police http://www.tfun.org/2017/05/22/yes-geek-squad-can-search-your-files-and-hand-you-over-to-the-police/ http://www.tfun.org/2017/05/22/yes-geek-squad-can-search-your-files-and-hand-you-over-to-the-police/#respond Mon, 22 May 2017 16:56:20 +0000 http://www.tfun.org/2017/05/22/yes-geek-squad-can-search-your-files-and-hand-you-over-to-the-police/

Judge rules images found on a defendant’s hard drive inadmissible – but bats away contention that he had an expectation of privacy when he passed his PC to Geek Squad

Source: Naked Security Sophos
Yes, Geek Squad can search your files and hand you over to the police

]]>
http://www.tfun.org/2017/05/22/yes-geek-squad-can-search-your-files-and-hand-you-over-to-the-police/feed/ 0
Critical DoS Flaws Patched in Asterisk Framework http://www.tfun.org/2017/05/22/critical-dos-flaws-patched-in-asterisk-framework/ http://www.tfun.org/2017/05/22/critical-dos-flaws-patched-in-asterisk-framework/#respond Mon, 22 May 2017 16:15:23 +0000 http://www.tfun.org/2017/05/22/critical-dos-flaws-patched-in-asterisk-framework/

Updates released on Friday for the Asterisk communications framework address three critical denial-of-service (DoS) vulnerabilities discovered by Sandro Gauci, a penetration tester and researcher who specializes in VoIP and communications systems.

read more



Source: Security Week
Critical DoS Flaws Patched in Asterisk Framework

]]>
http://www.tfun.org/2017/05/22/critical-dos-flaws-patched-in-asterisk-framework/feed/ 0