KnowBe4 has been running the HackBusters site for a few years now, providing you with trending IT security news. We are expanding it and have launched a new exciting online community! The forum is divided into four main topics or categories: Social Engineering, Ransomware, Phishing and Security Awareness Training. You are invited to be one of the first to join us at: https://discuss.hackbusters.com.

Back to Articles

Man-in-the-Middle Flaw in Major Banking, VPN Apps Exposes Millions

darkreading.com - 5 months ago

Man-in-the-Middle Flaw in Major Banking, VPN Apps Exposes MillionsNew research from University of Birmingham emphasizes importance of securing high-risk mobile apps.

Researchers from the UK have uncovered a serious vulnerability in the way nine banking and VPN apps handle encrypted communication that puts tens of millions of users at risk of man-in-the-middle (MitM) attacks. Among those impacted are two of the largest global banks - Bank of America and HSBC - as well as one of the world's most popular VPN providers, TunnelBear.

"Our tests find that apps from some of the world's largest banks contain the flaw, which if exploited, could enable an attacker to decrypt, view and modify traffic - including log-in credentials - from the users of the app," write Chris Mcmahon Stone, Tom Chothia, and Flavio Garcia of University of Birmingham, who detailed the discovery in a paper released yesterday.

The findings came as part of a study involving a new blackbox automated-testing...(continued)

View Full Original Article

EPA Proposes Limits To Science Used In Rulemaking - Slashdot

science.slashdot.org - An anonymous reader quotes a report from Reuters: The U.S. Environmental Protection Agency proposed a rule on Tuesday that would limit the kinds of scientific research it can use in crafting regulations, an apparent concession to big business that has long requested such restrictions. Under the n...

about 3 hours ago

Portugal Joins NATO Cyber-Defence Centre

securityweek.com - Portugal became the 21st country to join NATO's cyber defence centre, the Tallinn-based body said at a flag-raising ceremony.

about 4 hours ago

$35 Million Penalty for Not Telling Investors of Yahoo Hack

securityweek.com - US securities regulators anounced that Altaba will pay a $35 million penalty for not telling them hackers had stolen Yahoo's "crown jewels."

about 4 hours ago

A Study Finds Half of Jobs Are Vulnerable To Automation - Slashdot

hardware.slashdot.org - The Economist reports of a new working paper by the Organization for Economic Co-operation and Development (OECD) that assesses the automatability of each task within a given job, based on a survey of skills in 2015. "Overall, the study finds that 14% of jobs across 32 countries are highly vulner...

about 4 hours ago

Cambridge Analytica Says it is 'No Bond Villain'

securityweek.com - Cambridge Analytica claimed Tuesday it was "no Bond villain" as it vehemently denied exploiting Facebook users' data for the election campaign of US President Donald Trump.

about 4 hours ago

Safe Browsing Now On by Default on Android

securityweek.com - Google is taking another step to protect Android users when browsing the Internet by making Safe Browsing in WebView set by default.

about 5 hours ago

Xbox One April Update Rolling Out With Low-Latency Mode, FreeSync, and 1440p Support; 120Hz Support Coming In May Update - Slashdot

games.slashdot.org - Microsoft is rolling out a new Xbox One update that brings 1440p support for the Xbox One S and X, as well as support for AMD's FreeSync technology to allow compatible displays to sync refresh rates with Microsoft's consoles. A subsequent update in May will bring 120Hz-display refresh-rate suppor...

about 5 hours ago

NEW 'Off The Wall' ONLINE

2600.com - NEW 'Off The Wall' ONLINE Posted 25 Apr, 2018 0:33:46 UTC The new edition of Off The Wall from 24/04/2018 has been archived and is now available online. "Off The Wall" - 24/04/2018 Download the torrent here!!!!

about 6 hours ago

View All Trending Stories