TweakTown
Tech content trusted by users in North America and around the world
6,159 Reviews & Articles | 39,584 News Posts
TRENDING NOW: Star Citizen creator: "I don't care about consoles"

TweakTown News

Refine News by Category:

Hacking & Security Posts - Page 4

Pres. Obama wants increased debit, credit card security after breaches

A growing number of U.S. retailers are being victimized by data breaches, leading to millions of consumers at risk of identity theft and fraud - and now President Obama has stepped in, signing an executive order to enforce increased payment security measures. The federal government will now use chip-and-PIN technology for all government credit cards, providing an additional layer of security for all agencies that handle monetary payments.

 

TweakTown image news/4/0/40649_01_pres_obama_wants_increased_debit_credit_card_security_after_breaches.jpg

 

"We applaud the administration for taking proactive and positive steps by adopting PIN and chip technology for government-issued debit and credit cards, among other things," said Matthew Shay, National Retail Foundation (NRF) CEO, in a statement. "From insisting our PIN and chip cards to facilitating greater information sharing among retailers and other sectors, we are committed to finding the right answers with the latest technologies to stop these cyber thieves."

 

Moving forward, the President also wants additional transparency when companies suffer a data breach and consumers are impacted. Meanwhile, WalMart, Home Depot, Target, Walgreens, and other retailers plan to use chip-and-PIN point-of-sale (POS) terminals in their retail stores, starting in early 2015.

MasterCard rolling out new credit card with fingerprint sensor in 2015

Credit card company MasterCard is rolling out a new contactless payment card in 2015 that uses a fingerprint sensor. The company partnered with Zwipe, which wants to replace a debit card PIN number or credit card signature, with a fingerprint. Consumers just wave the card near an NFC reader at the checkout, with biometric authentication reportedly safer than a chip and PIN system.

 

TweakTown image news/4/0/40648_01_mastercard_rolling_out_new_credit_card_with_fingerprint_sensor_in_2015.jpg

 

The card will roll out to the UK market in 2015, after a trial run conducted in Norway. The card doesn't require a battery and will harvest power from the contactless till at the payment terminal each time it's used. Fingerprint data is stored directly on the card, so MasterCard and retailers won't have an external database that could be breached.

 

"Our belief is that we should be able to identify ourselves without having to use passwords or pin numbers," said Ajay Bhalla, MasterCard president of enterprise security solutions. "Biometric authentication can help us achieve this."

FBI director not happy with Apple, Google encryption on smartphones

U.S. FBI Director James Comey isn't a big fan of the encryption technologies used by Google Android and Apple iOS devices, saying they could interfere with police investigations. The FBI were able to use court orders to gain access to devices, but there is a growing number of law enforcement unable to crack into phones, tablets and laptops.

 

TweakTown image news/4/0/40633_01_fbi_director_not_happy_with_apple_google_encryption_on_smartphones.jpg

 

"If this becomes the norm, I suggest to you that homicide cases could be stalled, suspects walked free, child exploitation not discovered and prosecuted," Comey said.

 

Comey's comments are ill-timed, as American smartphone owners aren't impressed by government surveillance and snooping - revelations made public by former NSA contractor Edward Snowden last year.

FBI blames China for cyberattacks, while warning U.S. businesses

The FBI has recently issued a warning to U.S. companies that potential Chinese state-sponsored hackers have unleashed another wave of cyberattacks - and it appears targeting customers and conducting cyber espionage are the top goals. The memo sent to corporations warns them who is suspected of targeting them, and the methods they are using to gain access.

 

TweakTown image news/4/0/40624_01_fbi_blames_china_for_cyberattacks_while_warning_u_s_businesses.jpg

 

"The FBI has recently observed online intrusions that we attribute to Chinese government affiliated actors," said Josh Campbell, FBI spokesperson. "Private sector security firms have also identified similar intrusions and have released defensive information related to those intrusions."

 

The threat of foreign-based cyberattacks is nothing new, but the hackers - largely sponsored by governments - have continued to evolve their attack strategies. Trying to stifle their success has proven to be extremely difficult, while millions of U.S. citizens have been caught in the cross fire.

Continue reading 'FBI blames China for cyberattacks, while warning U.S. businesses' (full post)

CryptoWall 2.0 uses TOR network to victimize business users

The CryptoWall ransomware has migrated to the TOR network, encrypting critical files that are necessary to conduct day-to-day operations for business users. Ideally for the cybercriminals, users won't be able to rely on a backup and the company will instead choose to pay the ransom for access to their own PCs and servers. Using TOR makes CryptoWall 2.0 more difficult to track down and remove, giving cybercriminals a potential goldmine as they victimize businesses.

 

TweakTown image news/4/0/40626_01_cryptowall_2_0_uses_tor_network_to_victimize_business_users.jpg

 

KnowBe4 was contacted by a company that was hit by the new variant of CryptoWall, with the IT admin's computer infected - which spread to seven servers in just one hour, shutting down the entire server farm. Despite having recent backups that could be used, there would be too much downtime to recover data and have the servers operational in a timely manner.

 

"The cyber criminals hit pay dirt with this one and the admin ended up paying the ransom, 1.3 bitcoin, rather than face the serious costs caused by days of downtime," said Stu Sjouwerman, KnowBe4 CEO, in a press statement. "This is the next generation of ransomware and you can expect this new version to spread like wildfire."

Europol: Just 100 cybercrime kingpins worldwide, as threats increase

Around 100 cybercriminal kingpins help wreak havoc on the world, according to Troels Oerting, the head of the Europol Cybercrime Center. Trying to crack down on cybercriminals can be a daunting task, especially trying to bring them to justice, as Web-based attack activity largely remains a borderless bureaucratic nightmare.

 

TweakTown image news/4/0/40588_01_europol_just_100_cybercrime_kingpins_worldwide_as_threats_increase.jpg

 

"We roughly know who they are," Oerting recently said. "If we can take them out of the equation then the rest will fall down. This is not a static number, it will increase unfortunately. We can still cope but the criminals have more resources and they do not have obstacles. They are driven by greed and profit and they produce malware at a speed that we have difficulties catching up with."

 

Not surprisingly, many of the leading cybercriminal bosses are in Russian-speaking countries - though cybersecurity experts also warned of growing threats from China. Trying to bring these criminals to justice is near impossible, with Russia and other Eastern European nations ignoring the western world when it comes to apprehending these criminals, Europol noted.

JPMorgan Chase wants more cooperation to defend against cyberattacks

Banking giant JPMorgan Chase was victimized by cybercriminals, and more than 80 million customers are at risk due to stolen customer information. JPMorgan CEO Jamie Dimon said private businesses and federal governments need to better cooperate to defend against a growing wave of sophisticated cyberattacks.

 

TweakTown image news/4/0/40601_01_jpmorgan_chase_wants_more_cooperation_to_better_defend_cyberattacks.jpg

 

JPMorgan reportedly spends upwards of $250 million per year - along with a security staff of 1,000 employees - to help try to defend against cyberattacks. Unfortunately, their efforts were unsuccessful, as hackers are keen to try to compromise financial institutions. JPMorgan has discussed the breach with other banks, in an effort to prevent them from being victimized by the same type of attacks.

 

"Cyber is a big deal," Dimon recently said. It's going to be an ongoing battle, and unfortunately battles will be lost."

Mobile malware threats rising, but actual infection rates still low

Computer security companies have had their hands full keeping PCs and other devices secure from cyberattackers, and while mobile malware is still overlooked, the threats are continuing to grow. There is serious concern that hackers will infect smartphones and tablets using malicious programs that are able to act like legitimate apps - giving them access to a large amount of information on mobile devices.

 

TweakTown image news/4/0/40583_01_mobile_malware_threats_rising_but_actual_infection_rates_still_low.jpg

 

"We think the threat is real; we think it's a growing threat," said Gary Davis, McAfee chief consumer security evangelist. "We think there's a laissez-faire attitude with consumers not giving it the same kind of attention they give other threats."

 

Despite the lack of mobile attacks, where Google Android devices receive 98 percent of total mobile threats found in the wild, other operating systems need to be aware of security problems. Furthermore, mobile malware still has a lot of room to grow, even with thousands of Android-based malicious threats already spotted by security researchers.

Russian cybercriminals hit NATO, Ukraine, and other targets

Russian hackers were able to target NATO, Ukraine, European Union and private sector companies using a Microsoft Windows exploit, according to iSight Partners. Russia reportedly has organized state-sponsored cyberattacks, so it's no surprise to hear they launched attacks against geographic and political rivals. iSight informed Microsoft about the problem so the company is able to resolve problems and plug the hole to prevent future intrusions.

 

TweakTown image news/4/0/40580_01_russian_cybercriminals_hit_nato_ukraine_and_other_targets.jpg

 

iSight wasn't able to confirm what type of data was taken in the data breaches, though cyberattacks originating from Russia continue to plague companies. Furthermore, the five-year cyber espionage effort, named "Sandworm Team" by iSight, also included references to science fiction series in the malicious code.

 

"Your targets almost certainly have to do with your interests," said John Hultquist, iSight cyber espionage head. "We see strong ties to Russian origins here."

Experian: Fraud, identity theft are problems that need to be addressed

Information service company Experian wants consumers and businesses to be more aware of current fraud, identity theft, and cyber threats that face us every day. Cyberattacks largely were ignored by oblivious consumers, but recent point-of-sale (POS) attacks that hit the likes of Target and Home Depot has consumers more interested in potential threats.

 

TweakTown image news/4/0/40576_01_experian_fraud_identity_theft_are_problems_that_need_to_be_addressed.jpg

 

"Serious risks are emerging for consumers and businesses as fraudsters identify new targets to attack," said Charles Chung, Experian Decision Analytics president, in a press release. "The monetary cost of fraud losses can be high, but the impact a loss or breach can have on customer relationships and brand integrity can be even higher. Combing comprehensive authentication processes with proportionate measures to monitor user activities and protect consumer data throughout the life cycle is a competitive requirement in today's market."

 

To help businesses better understand current fraud and cyberattacks, Experian is hosting the Future of Fraud and Identity summit on Monday, October 21 in New York City. It's a difficult time for companies trying to adapt to changing customer needs - and waves of cyberattacks that have been difficult to defend against.

Latest Tech News Posts

View More News Posts

Forum Activity

View More Forum Posts

Press Releases

View More Press Releases