New Intel security flaw allows remote access to corporate laptops by hackers

Share this

Remember the latest “Spectre” and “Meltdown” vulnerabilities recently found in the micro-chips that are used in almost all computers, tablets and smartphones today? A new security flaw has been found in Intel hardware by Finish company F-Secure. The new vulnerability could enable hackers to access corporate laptops remotely. F-Secure said in a statement that the flaw was an issue within Intel Active Management Technology (AMT), “which is commonly found in most corporate laptops, (and) allows an attacker to take complete control over a user’s device in a matter of seconds,”…

Share this
Read More

Rush to fix serious computer chips flaws

Share this

Tech firms are working to fix two major bugs in computer chips that could allow hackers to steal sensitive data. Google researchers said one of the “serious security flaws”, dubbed “Spectre”, was found in chips made by Intel, AMD and ARM. The other, known as “Meltdown” affects Intel-made chips alone.The industry has been aware of the problem for months and hoped to solve it before details were made public. The UK’s National Cyber Security Centre (NCSC) said there was no evidence that the vulnerability had been exploited. According to the…

Share this
Read More

Germany starts enforcing hate speech law

Share this

Germany is set to start enforcing a law that demands social media sites move quickly to remove hate speech, fake news and illegal material. Sites that do not remove “obviously illegal” posts could face fines of up to 50m euro (£44.3m). The law gives the networks 24 hours to act after they have been told about law-breaking material. Social networks and media sites with more than two million members will fall under the law’s provisions. Facebook, Twitter and YouTube will be the law’s main focus but it is also likely…

Share this
Read More

Hundreds of HP laptop models found to have hidden keylogging software

Share this

A security researcher has revealed that some HP laptops have hidden software which can log everything typed on its keypads. More than 460 models have been affected, dating back to 2012, according to the list released by the Company. The discovery was made by researcher Michael Myng who found the keylogging code in the pre-installed Synaptics Touchpad software on these laptops.Keyloggers record every key that is pressed on a keyboard. This means the laptop users are at risk of having their passwords, bank details, private communications and search history recorded…

Share this
Read More

German spy agency warns of Chinese LinkedIn espionage

Share this

China is using fake LinkedIn profiles to gather information on German officials and politicians, the German intelligence agency (BfV) has said. The agency alleges that Chinese intelligence used the networking site to target at least 10,000 Germans, possibly to recruit them as informants. It released a number of fake profiles allegedly used for this purpose. BfV head Hans-Georg Maassen said the accounts show China’s efforts to subvert top-level German politics. “This is a broad-based attempt to infiltrate in particular parliaments, ministries and government agencies,” he said. China has denied similar…

Share this
Read More

Millions caught in virtual keyboard app data breach

Share this

Security researchers claim to have found the personal data of 31 million Android users of the keyboard app Ai.type after finding an open database online. The app offers themed keyboards for phones and tablets.The researchers claimed data left visible included names, phone numbers, locations and Google queries. The boss of the Israeli company behind the app admitted the breach but said most of the data was not sensitive. Bob Diachenko, from the Kromtech Security Centre, part of security company Mackeeper, said the amount of data required by the app at…

Share this
Read More

SEC’s new cyber unit takes its first action to halt an initial coin offering ‘scam by PlexCorp

Share this

The Securities and Exchange Commission has charged Canadian crypto company PlexCorp with violating securities laws by selling up to $15 million in an initial coin offering (ICO). ICOs have seen explosive growth over the past year as fledgling companies have used them to raise more than $3 billion in capital through various cryptocurrencies. However, experts have warned they can present several dangers to unsuspecting investors hoping to get into a hot new market as regulations are pretty loose. Called PlexCoins, PlexCorp allegedly used this cryptocurrency to scam would-be investors hoping…

Share this
Read More

The UK’s cybersecurity agency issued a new guidance to ministries about using Russian antivirus software

Share this

The UK’s National Cyber Security Centre (NCSC) has issued a new guidance for how the country’s various ministries should closely manage their use of antivirus software supplied by a foreign nation, such as Russia’s Kaspersky Lab. In a letter to to heads of government ministries, NCSC CEO, Ciaran Martin said that organizations need to be vigilant to the risk that an [antivirus] product under the control of a hostile actor could extract sensitive data from that network, or indeed cause damage to the network itself. He went on to specifically…

Share this
Read More

Google faces mass legal action in UK over data snooping

Share this

Google is being taken to court, accused of collecting the personal data of millions of users, in the first mass legal action of its kind in the UK. It focuses on allegations that Google unlawfully harvested information from 5.4 million UK users by bypassing privacy settings on their iPhones. The group taking action – Google You Owe Us – is led by ex-Which director Richard Lloyd. He estimates the users could get as much as “several hundred pounds each”. The case centres on how Google used cookies – small pieces…

Share this
Read More

Uber Paid Hackers to Delete Stolen Data on 57 Million People

Share this

Hackers stole the personal data of 57 million customers and drivers from Uber Technologies Inc., a massive breach that the company concealed for more than a year. This week, the ride-hailing firm ousted its chief security officer and one of his deputies for their roles in keeping the hack under wraps, which included a $100,000 payment to the attackers. Compromised data from the October 2016 attack included names, email addresses and phone numbers of 50 million Uber riders around the world, the company told Bloomberg on Tuesday. The personal information…

Share this
Read More