Security Boulevard

APRIL 18, 2024

It says the bill “threatens national security.” The post House Passes Privacy-Preserving Bill, but Biden Blasts it appeared first on Security Boulevard. Are you a FANFSA fan? The White House isn’t.

Social Engineering 134

Social Engineering Advertising Data privacy Engineering 134

Security Boulevard

APRIL 5, 2024

appeared first on Security Boulevard. Fast enough for government work: The Federal Communications Commission is finally minded to do something about decades-old vulnerabilities. The post FCC: Phone Network Bugs Must Be Fixed — But are SS7/Diameter Beyond Repair?

Government 130

Government Digital transformation Social Engineering Telecommunications 130

Security Boulevard

FEBRUARY 7, 2024

The post ‘Total Bollocks’ — No, Your Toothbrush isn’t DDoS’ing appeared first on Security Boulevard. PR FAIL: Were 3 million toothbrushes hacked into a botnet? Or does a Fortinet spokeschild have egg on his face?

Hacking 142

Hacking Social Engineering DDOS Internet 142

Security Boulevard

FEBRUARY 14, 2024

I❤️POE: Does your home security need a rethink? The post ALERT: Thieves❤️Wi-Fi Camera Jammers appeared first on Security Boulevard. Wireless cameras are kinda useless, say cops.

Wireless 132

Wireless Social Engineering Internet Internet 132

Security Boulevard

FEBRUARY 22, 2024

The post PRC State Hacking: ‘Chinese Edward Snowden’ Spills I‑Soon Secrets in Huge Dump of TTPs appeared first on Security Boulevard. Underpaid, overworked and angry: Whistleblower in hacker contractor firm for Chinese government blows lid off tactics, techniques and procedures.

Hacking 136

Hacking Government Digital transformation Social Engineering 136

SC Magazine

MAY 1, 2021

Below is our esteemed panel of SC Awards judges, contributing from health care, engineering, finance, education, manufacturing, nonprofit and consulting, among others. Dumbleton’s focus on visibility, threat hunting and defense has contributed to a robust and effective security program at GFS.

Computers and Electronics 126

Computers and Electronics Technology Education Information Security 126

Security Boulevard

FEBRUARY 8, 2024

Bootkit Bug in shim.efi appeared first on Security Boulevard. Snow joke: A Microsoft researcher found it—and it’s somehow Microsoft’s fault. The post Linux Vendors Squawk: PATCH NOW — CVSS 9.8

Social Engineering 132

Social Engineering Data privacy Engineering IoT 132

Security Boulevard

FEBRUARY 1, 2024

via Router Botnet) appeared first on Security Boulevard. a/k/a BRONZE SILHOUETTE: FBI head Wray won’t tolerate China’s “real-world threat to our physical safety.” The post FBI Warning: China Will Hack US Infra.

Hacking 126

Hacking Social Engineering Data privacy Engineering 126

Security Boulevard

MARCH 11, 2024

Cybersecurity and Infrastructure Security Agency penetrated in February, via vuln in Ivanti. The post Irony of Ironies: CISA Hacked — ‘by China’ appeared first on Security Boulevard. Free rides and traffic jams: U.S.

Hacking 138

Hacking Cybersecurity Social Engineering Data privacy 138

Security Boulevard

NOVEMBER 15, 2023

Intel CPU Bug Panics Cloud Providers appeared first on Security Boulevard. IaaS Catch Fire: Google and Intel fuzz, find and fix a fabulous bug. Next up: More of the same. The post HALT! I am Reptar!

Social Engineering 126

Social Engineering Engineering IoT Security Awareness 126

NopSec

OCTOBER 11, 2022

MITRE CAPEC Catalog MITRE CAPEC is a comprehensive dictionary of known attack patterns adversaries exploit weaknesses in software applications, hardware appliances, and IoT devices. The US Department of Homeland Security initially released it in 2007 to improve software assurance through security awareness at the development stage.

Software 52

Software IoT Cyber Attacks Social Engineering 52

Security Boulevard

FEBRUARY 28, 2024

The post FBI Warns: Ubiquiti EdgeRouter is STILL Not Secure appeared first on Security Boulevard. GRU APT28 is back again: Fancy Bear still hacking ubiquitous gear, despite patch availability.

Hacking 86

Hacking Social Engineering Data privacy Authentication 86

Security Boulevard

DECEMBER 20, 2023

The post SSH FAIL: Terrapin Attack Smashes ‘Secure’ Shell Spec appeared first on Security Boulevard. Testy Testudine: Lurking vuln in SSH spec means EVERY implementation must build patches.

Digital transformation 86

Digital transformation Social Engineering Data privacy Authentication 86

Security Boulevard

APRIL 3, 2023

appeared first on Security Boulevard. Déjà Vu: Hack of WD systems leads to My Cloud service outage. Owners unable to access files. The post Western Digital Hacked: ‘My Cloud’ Data Dead (Even Local Storage!)

Hacking 145

Hacking Social Engineering IoT Security Awareness 145

Security Boulevard

APRIL 7, 2023

The post Tesla Staff Shared Saucy Snaps of Customers (Sources Say) appeared first on Security Boulevard. I guess I’m banned from Twitter now: Tesla employees mocked and memeified private photos and videos. Firm’s message boards were full of the stuff.

Social Engineering 141

Social Engineering IoT Security Awareness Engineering 141

Security Boulevard

NOVEMBER 22, 2023

The post ‘LitterDrifter’ Russian USB Worm Leaks from Ukraine War Zone appeared first on Security Boulevard. FSB APT USB VBS LNK DLL: WTH? Flash drive sharing malware escapes Україна. Gamaredon fingered as perps.

Malware 81

Malware Social Engineering Data privacy Engineering 81

Security Boulevard

MAY 24, 2023

Or, at least, OLDER phones: SPI/TEE MITM FAIL The post ‘BrutePrint’ Unlocks Android Phones — Chinese Researchers appeared first on Security Boulevard.

Social Engineering 130

Social Engineering Authentication IoT Security Awareness 130

Security Boulevard

NOVEMBER 20, 2023

The post FCC’s Got New Rules for SIM-Swap and Port-Out Fraud appeared first on Security Boulevard. Too many times: Federal Communications Commission shuts stable door after horse bolted. But chairwoman Jessica Rosenworcel (pictured) was hoping it would save us.

Social Engineering 78

Social Engineering Authentication Scams Data privacy 78

Security Boulevard

JANUARY 9, 2023

But some vendors faced stiff criticism over their privacy and security stances. The post CES 2023 FAIL: Worst in Show for Security and Privacy appeared first on Security Boulevard. The Consumer Electronics Show wrapped up yesterday.

Social Engineering 141

Social Engineering IoT Security Awareness Engineering 141

Security Boulevard

OCTOBER 13, 2023

The post Stalking: Fear of Apple AirTag ‘Explodes’ — Lawsuit Momentum Grows appeared first on Security Boulevard. This is why we can’t have nice things: 38 victims of Apple’s “negligence” named in amended class action.

Social Engineering 80

Social Engineering Data privacy Engineering IoT 80

Security Boulevard

JANUARY 2, 2024

appeared first on Security Boulevard. Déjà Vu: Hack of WD systems leads to My Cloud service outage. Owners unable to access files. The post Best of 2023: Western Digital Hacked: ‘My Cloud’ Data Dead (Even Local Storage!)

Hacking 80

Hacking Social Engineering IoT Security Awareness 80

Security Boulevard

JULY 28, 2023

The post Android Foils AirTag Stalkers and Thieves — While Apple Does Nothing appeared first on Security Boulevard. C’mon Cupertino: “Unknown Tracker Detected,” your phone screams.

Social Engineering 98

Social Engineering IoT Security Awareness Engineering 98

Security Boulevard

OCTOBER 28, 2022

The post OpenSSL ‘CRITICAL’ Bug — Sky Falling — Patch Hits 11/1 appeared first on Security Boulevard. OpenSSL has a new ‘critical’ bug. But it’s a secret until next month.

Social Engineering 140

Social Engineering Security Awareness Engineering IoT 140

Security Boulevard

OCTOBER 11, 2022

The post LEAKED: Intel’s BIOS Source Code — All 6GB of It appeared first on Security Boulevard. Source code for the Intel Alder Lake processor EUFI BIOS has gone walkies. 4chan is said to be involved.

Social Engineering 144

Social Engineering Security Awareness Engineering IoT 144

Security Boulevard

JUNE 14, 2023

The post Your Personal Data Sold to US Intelligence Agencies appeared first on Security Boulevard. What Price 4th Amendment? Warrant not needed if info bought from brokers.

Social Engineering 105

Social Engineering IoT Security Awareness Engineering 105

Security Boulevard

DECEMBER 2, 2022

Eufy home security cameras and doorbells are insecure: They send your photos to the cloud without permission and serve up video across the internet without encryption. The post More Lies: Anker’s Eufy Pants on Fire — ‘No Cloud’ Cams Send to Cloud appeared first on Security Boulevard.

Internet 122

Internet Internet Encryption Social Engineering 122

Security Boulevard

JULY 21, 2022

The post MiCODUS Car Trackers are SUPER Vulnerable and Dangerous appeared first on Security Boulevard. An add-on vehicle tracker is incredibly insecure—to the point it’s dangerous to use. The MV720 and other products sold by MiCODUS are full of easily exploited bugs.

Social Engineering 126

Social Engineering IoT Passwords Security Awareness 126

Security Boulevard

MAY 19, 2022

The post ‘Incompetent’ Tesla Lets Hackers Steal Cars — via Bluetooth appeared first on Security Boulevard. Tesla cars can be unlocked and stolen via a simple relay attack. The company shrugged and said it’s “a known limitation.”.

Social Engineering 136

Social Engineering IoT Security Awareness Engineering 136

Security Boulevard

JUNE 10, 2022

The post Tesla Fails Yet Again: Hackers can Steal Cars via NFC appeared first on Security Boulevard. Tesla Models 3 and Y can be unlocked and stolen via a bug in their NFC software. Two separate research groups found this new bug at around the same time.

Software 141

Software Social Engineering Security Awareness Engineering 141

Security Boulevard

JANUARY 3, 2022

The post Apple AirTag: Absolutely Awful, Say Stalking Victims appeared first on Security Boulevard. Apple is coming under renewed flak for its AirTags—and how they make life easy for stalkers and carjackers. But is the criticism fair?

Social Engineering 144

Social Engineering IoT Security Awareness Engineering 144

Security Boulevard

NOVEMBER 4, 2022

The post Red Cross Wants Shielding from Hacks via Digital Emblem appeared first on Security Boulevard. The International Committee of the Red Cross (ICRC) is proposing a digital version of its eponymous logo.

Hacking 119

Hacking Social Engineering Security Awareness Engineering 119

Security Boulevard

OCTOBER 31, 2022

The post Chinese Tech: Banned in DC, but not in the States appeared first on Security Boulevard. There’s a massive loophole in the federal ban on Chinese technology from sus firms such as Huawei and ZTE: It doesn’t stop states from buying it.

Technology 119

Technology Social Engineering CISO Security Awareness 119

Security Boulevard

AUGUST 5, 2022

The post US Emergency Alert System Has ‘Huge Flaw’ — Broadcasters Must Patch NOW appeared first on Security Boulevard. The Emergency Alert System run by FEMA and the FCC is vulnerable to hacking. This is NOT a test. All will be revealed next week at DEF?CON?30.

Hacking 124

Hacking Social Engineering Security Awareness Engineering 124

Security Boulevard

NOVEMBER 2, 2021

Trojan Source “threatens the security of all code,” screams a widely shared article. The post ‘Trojan Source’ Makes Scary Headlines—But it’s Not New appeared first on Security Boulevard. There’s nothing new here.

Social Engineering 144

Social Engineering Security Awareness Engineering IoT 144

Security Boulevard

MAY 9, 2022

The post Putin’s ‘Victory Parade’ TV Show Hacked: ‘Blood on Your Hands’ appeared first on Security Boulevard. Ukrainian hackers and their friends continue to pummel Russian computers. Hundreds of millions of documents” are being leaked. And today, Putin’s famous Victory Parade has been marred by hackers.

Hacking 128

Hacking Social Engineering Security Awareness Engineering 128

Security Boulevard

JULY 21, 2023

The post R.I.P. Kevin Mitnick, 1963–2023 appeared first on Security Boulevard. Kevin is Free: Hackers’ hacker dies, aged 59.

Social Engineering 98

Social Engineering Marketing Security Awareness Engineering 98

Security Boulevard

SEPTEMBER 28, 2022

The post Russia ‘Plans’ HUGE Cyberattack on Critical Infrastructure appeared first on Security Boulevard. The Ukrainian government has warned that Russia is planning a massive attack against the critical infrastructure of Ukraine and of its allies.

Government 111

Government Social Engineering Security Awareness Engineering 111