News

Kaspersky Defends Against NSA Breach Accusations

Kaspersky Defends Against NSA Breach Accusations

Antivirus company Kaspersky recently responded to accusations regarding its role in the NSA breach involving the exposure of sensitive files from the computer of a worker from the agency. An article from WSJ alleged that Russian hackers used the Kaspersky software to steal files from the NSA employee’s computer. It was later on confirmed that the company did obtain a copy of the files in question. However, Kaspersky said that it did not steal the said files from the computer, but rather it was detected as a malware by their product and was sent back to them automatically. Furthermore, the […]

Spain Faces Security Problem with 60 Million ID Chips

Spain Faces Security Problem with 60 Million ID Chips

An issue with Infineon’s secure hardware which was discovered a month ago has now left Spain with some difficult implications to deal with.   The chips made by the German manufacturer was found to have a flaw that allow the discovery of a target’s private key using their public key. It has been revealed that around 60 million of Spain’s DNIe ID cards use such chips, and Enigma Bridge CEO Dan Cvrcek said that attackers could exploit the flaw to invalidate contracts. As reported by El Diario, authorities have already revoked all certificates issued since April 2015 as a response […]

Unsecured Australian Broadcasting Corporation S3 Causes Data Leak

Unsecured Australian Broadcasting Corporation S3 Causes Data Leak

Kromtech Security Center recently disclosed a sensitive data leak at The Australian Broadcasting Corporation (ABC) caused by two unsecured Amazon Web Services (AWS) S3 repositories. The discovery was confirmed by the ABC who said that their IT teams acted immediately after being informed of the leak last November 16. According to Kromtech CIO Bob Diachenko, included in the leak were files which contained login credentials and access keys to a various ABC products, services, and other repositories. This is not the first time the organization had sensitive data exposed. The government-backed broadcaster already had an accidental leak in 2010, and […]

Philippine Govt. Partners with Facebook for Internet Infra Development

Philippine Govt. Partners with Facebook for Internet Infra Development

The Bases Conversion and Development and Development Authority (BCDA) and the Department of Information and Communications Technology (DICT) recently entered into a landing party agreement with Facebook to establish a high speed internet infrastructure in the country. The project, called Luzon Bypass Infrastructure, should deliver a faster, more affordable, and more accessible internet across the Philippines, according to the BCDA and DICT. DICT OIC Eliseo Rio Jr. revealed that the agreement should give the country internet speeds of at least 2 terabits per second, which is almost equivalent to the combined capacity of telcos Globe and PLDT. The project is […]

Tech Giants and News Organizations Join in ‘Trust Project’

Tech Giants and News Organizations Join in ‘Trust Project’

Last Thursday, the biggest names in the tech industry pledged their participation in the “Trust Project”, an initiative that aims to counter online misinformation. Google, Facebook, Microsoft, and Twitter has agreed to join with around 75 news organizations to label news stories which pass ethical and transparency standards, so that consumers can know at a glance if it comes from a credible source. Participants of the project have also agreed to uphold transparency on funding, disclosure of the organization’s mission, labeling of factual and opinion articles, and providing details on journalists and how they conduct their reporting. Source: Rappler

McAfee Unwittingly Exposes Users to Banking Malware

McAfee Unwittingly Exposes Users to Banking Malware

Security company McAfee recently spread a malware to their users via a domain associated with their email protection service. The service, McAfee ClickProtect, claims to protect businesses from hacking, which includes email malware. However, it was the company’s own safe link “cp.mcafee.com” that directed users to a malicious Word document that had the Emotet banking malware. Emotet is able to siphon sensitive information such as passwords and credentials which are often used to hack and steal funds from accounts. McAfee issued a statement on the matter, saying that has started an investigation and has identified the web property as a […]

Twitter Removes Verification on White Supremacist Accounts

Twitter Removes Verification on White Supremacist Accounts

Twitter has recently un-verified the accounts of known white supremacists Richard Spencer and Jason Kessler who were involved in the Charlottesville protest that resulted in a fatality. Last Wednesday, Twitter disclosed that its verification status was usually equated as an endorsement. Yesterday however, the site announced that it will no longer be accepting public submissions while it reviews its policies. The platform’s new rules now take into consideration “behaviors on and off Twitter”, which include promotion of hate, violence, or making threats to individuals based on race, ethnicity, national origin, sexual orientation, gender, or religion.   Source: TechCrunch

Square Introduces Bitcoin Trading on App

Square Introduces Bitcoin Trading on App

In its efforts to tap into the booming cryptocurrency market, payments company Square revealed that it is now testing the buying and selling of Bitcoins on its Cash app. The service, which is currently available only for select customers, had been initiated by their users who have shown an appetite for “alt-currency”, according to a spokesperson for the company. Square has expressed its interest in providing additional cryptocurrency services, saying that it will greatly help individuals participate in the global financial system. The company, as well as most Bitcoin investors, remain undeterred, despite recent efforts of governments opposing the increased […]

New EU Consumer Protection Cooperation Law Includes “Vaguely-worded” Clause on Website Blocking

New EU Consumer Protection Cooperation Law Includes “Vaguely-worded” Clause on Website Blocking

Last Tuesday, the EU passed a new Consumer Protection Cooperation regulation which grants additional powers to the consumer protection agencies in the bloc. However, it also included a vague clause that would allow the agencies to take down websites without judicial review, as explained by EU Parliament member Julia Reda in a post on her blog. According to CPC documents, the regulation is intended as a measure against scam websites or those that violate EU consumer protection laws. However, MEP Reda pointed out that the regulation could be abused since it does not require any mandatory oversight. Opinions on social […]

Parity Works on Unfreezing Blocked Ethereum, Unable to Give Timeline

Parity Works on Unfreezing Blocked Ethereum, Unable to Give Timeline

Cryptocurrency wallet provider Parity Technologies said last Wednesday that their investigation in the incident which has left $160 million in Ethereum blocked from their owners has led them to overhaul their wallet’s infrastructure and implementation. In addition to other proposed changes, the company announced that it will be temporarily removing the automatic multi-sig wallet functionality until correct security and operation measures are put in place to prevent the issue from happening again. A full external audit, and internal review, and an extension of the bug bounty program has also been ordered, no definite timeline has been given as to when […]