A significant security vulnerability in Google technology that is supposed to protect videos streamed via Google Chrome has been discovered by researchers from the Ben-Gurion University of the Negev Cyber Security Research Center (CSRC) in collaboration with a security researcher from Telekom Innovation Laboratories in Berlin, Germany.
Researchers have encountered a denial-of-service botnet that's made up of more than 25,000 Internet-connected closed circuit TV devices.
The researchers with Security firm Sucuri came across the malicious network while defending a small brick-and-mortar jewelry shop against a distributed denial-of-service attack. The unnamed site was choking on an assault that delivered almost 35,000 HTTP requests per second, making it unreachable to legitimate users. When Sucuri used a network addressing and routing system known as Anycast to neutralize the attack, the assailants increased the number of HTTP requests to 50,000 per second.
Hospitals are pretty hygienic places – except when it comes to passwords, it seems.
That’s the conclusion of a recent study by researchers at Dartmouth College, the University of Pennsylvania and USC, which found that efforts to circumvent password protections are “endemic” in healthcare environments and mostly go unnoticed by hospital IT staff.
The report describes what can only be described as wholesale abandonment of security best practices at hospitals and other clinical environments – with the bad behavior being driven by necessity rather than malice.
Cyber-attacks in the healthcare environment are on the rise, with recent research suggesting that critical healthcare systems could be vulnerable to attack.
In general, the healthcare industry is proving lucrative for cybercriminals because medical data can be used in multiple ways, for example fraud or identify theft. This personal data often contains information regarding a patient’s medical history, which could be used in targeted spear-phishing attacks.
To that point, there was a report that a mail server failure in a large business office remained a mystery for two days until someone found an old Pentium II back in the corner of some obscure closet with a burned out power supply. It is reported that the Slackware/Debian/Red Hat machine had been plugging away as a mail server for a number of years, completely unattended. That’s feasible I suppose, but I further suppose that it’s a modern day parable about how open source can indeed, carry the day.
With about a month left for many PC users to upgrade to Windows 10 at no charge, Microsoft is being criticized for its aggressive — some say too aggressive — campaign to get people to install the new operating system.
Microsoft has had to pay a Windows user in California US$10,000 over a forced upgrade to Windows 10, according to a report in the Seattle Times.
The user, Teri Goldstein, runs a travel agency in Sausalito, a San Francisco Bay Area city in Marin County, California.
A CALIFORNIA woman has set a precedent after a court ruled that she was entitled to damages over the installation of Windows 10 on her machine.
Teri Goldstein, a travel agent, testified that the new operating system had auto-downloaded, started to install, failed, and left her Windows 7 computer running painfully slowly and often unusable for days.
"I had never heard of Windows 10," Goldstein told reporters. "Nobody ever asked me if I wanted to update."
A California woman has won $10,000 from Microsoft after a sneaky Windows 10 update wrecked the computer she used to run her business. Now she's urging everyone to follow suit and "fight back."
Teri Goldstein – who manages a travel agency in Sausalito, just north of San Francisco – told The Register she landed the compensation by taking Microsoft to a small claims court.
Rather than pursue a regular lawsuit, she chose the smaller court because it was better suited to sorting out consumer complaints. Crucially, it meant Microsoft couldn't send one of its top-gun lawyers – or any lawyer in fact: small claims courts are informal and attorneys are generally not allowed. Instead, Redmond-based Microsoft had to send a consumer complaints rep to argue its case.
Canonical Releases New Kernel Update for Ubuntu 12.04 LTS and Ubuntu 14.04 LTS
We reported the other day that Canonical released a major kernel update for its Ubuntu 16.04 LTS (Xenial Xerus) operating system, and it appears that it also affected users of the Ubuntu 15.10 (Wily Werewolf) distribution.