Facebook announced on Thursday that "hundreds of millions" of users' passwords had been stored in unprotected plain text accessible by the company's employees. In a blog post titled "Keeping Passwords Secure," the social media giant said it had found no reason to believe the trove of passwords had been abused by its workers or accessed by anyone outside the company.
When hackers struck one-third of North Dakota's schools with a vicious malware attack last February, it highlighted the growing cyber threat facing America's public-education sector-even in a state that's ahead of the cybersecurity curve.
Department of Homeland Security Secretary Kirstjen Nielsen warned Monday that the United States is “not prepared” to handle cyberattacks from foreign countries and laid out some measures DHS was taking to respond to these threats.
Satellites are physically quite secure orbiting the Earth, but the advent of cheaper high-power antennas makes them vulnerable in other ways. Engineers have only recently started taking cybersecurity seriously in satellite design, and as PCMag reports, that means hacking a satellite might not be as difficult as you think. Bill Malik, VP of Infrastructure Strategies at Trend Micro, calls the range of vulnerabilities exposed on satellites “astonishing.”
Cyberattacks from Russia, China, North Korea and Iran are increasingly sophisticated and, until recently, were done with little concern for the consequences, the top Pentagon cyber leaders told a congressional committee on Wednesday. Army Gen. Paul Nakasone, head of U.S. Cyber Command, laid out the escalating threats, following a Navy review released this week that described significant breaches of naval systems and concluded that the service is losing the cyber war.
A bipartisan group of lawmakers on Monday unveiled legislation that would create cybersecurity standards for internet-connected devices, often known as the “internet of things.” The bill, introduced in the Senate by Sens. Mark Warner (D-Va.) and Cory Gardner (R-Colo.) and in the House by Reps. Will Hurd (R-Texas) and Robin Kelly (D-Ill.), would require established standards for government use of the devices.
Fearing that China could be spying on them using power cords and plugs, several U.S. technology companies have asked their Taiwanese suppliers to shift production of some components out of the mainland, Nikkei Asian Review reported on Friday.
No piece of software is perfect, and sometimes vulnerabilities can go undiscovered for a long time. For instance, a WinRAR flaw was out in the open for almost two decades. Google’s latest Chrome bug isn’t that old, but it’s much more dangerous. Google has issued a patch for the vulnerability, but this is a “zero-day” flaw, meaning there are already online troublemakers using the vulnerability to attack Chrome. If you haven’t let Chrome update recently, take the time to do it now.
In a first-of-its-kind report, The State of Cybersecurity: 2018 Year In Review found that K-12 schools suffered at least 122 cybersecurity incidents in 2018, nearly 60 percent of which resulted in personal data being compromised. The K-12 Cybersecurity Resource Center has been tracking K-12 cybersecurity incidents since 2016 using its interactive K-12 Cyber Incident Map.
Chinese hackers singled out over two dozen universities in the US and around the world in an apparent bid to gain access to maritime military research, according to a report by cybersecurity firm iDefense, which was obtained by The Wall Street Journal. The hackers sent universities spear phishing emails doctored to appear as if they came from partner universities, but they unleashed a malicious payload when opened. Universities are traditionally seen as easier targets than US military contractors, and they can still contain useful military research.