For every cyber-villain looking to exploit software and hardware vulnerabilities, there’s a cyber-hero fighting to expose (and close) those same security flaws. That reporting process is called responsible disclosure. But in today’s complex cyber landscape, the rules of responsible disclosure can vary dramatically. Begging the question, should the industry be standardizing this … [Read more...]
Your IoT Home Protection Idea Could Be Worth $25,000
The topic of poorly protected Internet of Things (IoT) devices is nothing new – remember the Dyn IoT botnet attack in October? To address the insecurity of connected devices and the rise in IoT attacks, the U.S. government is looking to the public for some help. The Federal Trade Commission (FTC) has launched a new IoT Home Inspector Challenge with a prize of $25,000 … [Read more...]
Apple patches ALL OSes to fix remote code execution flaws
As Corey Nachreiner mentioned in Monday’s Daily Security Byte, Apple released seven new security updates this week to fix vulnerabilities in several of their products including iTunes, iOS, Safari, OS X, tvOS, and watchOS. SC Magazine spoke with Marc Laliberte, WatchGuard’s Information Security Threat Analyst, about patches for remote execution flaws. “For a large number … [Read more...]
July Android Security Update – Daily Security Byte EP. 285
If you use Android devices, it's time to update. Google released an Android update that fixes hundreds of vulnerabilities, including the Qualcomm chipset flaw that has been in the news lately. Watch today's video to learn more, and update your Android device when you can. Also, check out Marc Laliberte's post to learn about HummingBad, a prolific malware variant that's … [Read more...]
Critical Symantec AV Flaws – Daily Security Byte EP. 282
Tavis Ormanday, a well-known security engineer for Google, disclosed a number of critical vulnerabilities in some of Symantec's endpoint security products. If you use Symantec or Norton's antivirus (AV), watch the video below to learn how bad these flaws are, and where to find the updates. You can also stick around to hear what I think about vulnerabilities in security products … [Read more...]