Cybersecurity News & Analysis | SC Media | Info Security News

Security News

Diplomats used WhatsApp, personal phones to discuss Ukraine policy

Nearly a decade after Hillary Clinton began using personal devices and a private email server while Secretary of State – a practice that sparked a heated debate and congressional investigations during the 2016 presidential election cycle – an early impeachment probe into President Trump revealed that diplomats in the administration used WhatsApp and their personal…

Dems’ SHIELD Act would protect elections, close loopholes on foreign spending

Legislation introduced by House Democrats aims to close loopholes on foreign spending in the U.S. political campaigns to curb election interference. In addition to addressing campaign finance loopholes, the Stopping Harmful Interference in Elections for a Lasting Democracy (SHIELD) Act, introduced by Rep. Zoe Lofgren, D-Calif., chairperson of the Committee on House Administration, includes a…

applePatch

Apple update takes a bite of iCloud, iTunes and macOS bugs

Apple yesterday released a series of software updates that repaired vulnerabilities in iCloud for Windows 7.14 and 10.7, iTunes 12.10.1 for Windows and macOS Catalina 10.15. The two iCloud updates fixed eight flaws in total, including an arbitrary code execution flaw in UI Foundation and five more in the WebKit browser engine, as well as two universal cross-site…

Magecart attack on e-commerce service impacts Sesame Street store and many more

Magecart hackers found out how to get to Sesame Street’s online store – and in all likelihood thousands more merchants – by initially compromising e-commerce and shopping cart service provider Volusion to deliver the credit card-skimming code. Israel-based security researcher Marcel Afrahim, who for his day job works as a research developer at Check Point…

California ‘boldly’ bans facial recognition in body cams, ACLU

With a flourish of a pen Tuesday, Gov. Gavin Newsom blocked police in California from using facial recognition technology in their body cameras. The Body Camera Accountability Act bans the use of facial recognition technology in body cams for three years. It prohibits “a law enforcement agency or law enforcement officer from installing, activating or…

Stolen credentials used to access TransUnion Canada’s consumer credit files

A malicious actor used stolen credentials to access a web portal operated by credit reporting agency TransUnion Canada and then used that portal to access consumer files. This week, BleepingComputer posted a report containing scanned images of a disclosure notification that TransUnion Canada has begun mailing out to affected consumers. The notification, dated Sept. 19,…

Health, personal data of 1 million New Zealanders exposed in series of intrusions

The medical and personal information of about 1 million people was exposed after a breach of Tū Ora Compass Health, a primary health organization (PHO) located in New Zealand. The non-governmental organization (NGO) discovered four intrusions – by what Ministry of Health Director-General of Health Ashley Bloomfield said were two hacktivists and two “more sophisticated…

Second Senate Intel committee report confirms Russia social media campaign to influence 2016 election, skewer Clinton

In the wake of a controversial call between President Trump and President Volodymyr Zelensky of Urkaine and even as some of President Trump’s supporters in Congress push a narrative that corrupt forces in Ukraine were behind 2016 election meddling, the second of a five-part bipartisan report from the GOP-led Senate Intelligence Committee confirmed Russia was…

Microsoft repairs 59 software bugs on a ‘quiet’ Patch Tuesday

Microsoft Corporation today released its latest batch of security updates, fixing 59 vulnerabilities, nine of them critical. Four of the critical flaws consisted of memory corruption bugs that can surface when the Chakra scripting engine handles certain objects in memory in the Microsoft Edge web browser (CVE-2019-1366, CVE-2019-1307, CVE-2019-1308 and CVE-2019-1335). These flaws can be…

Next post in Security News