IT Security – Page 28

February 23, 2015March 3, 2015

Is It Possible to Track Smartphone Location By Monitoring Battery Usage?

Data leaks through power consumption? Don’t be surprised because security researchers have discovered a way to track your every move by looking at your Android smartphone’s consumption of the battery power,even if you have GPS access unable.

Researchers at Stanford University and Israeli Defense Research Group, Rafael, have developed a new technology, which they have dubbed “PowerSpy”, that have capability to gather the geolocation of Android phones by simply by measuring the battery usage of the phone over a certain time.

Read the full article here.

February 21, 2015March 3, 2015

Onion.City — Search Engine for Deep Web that Works From Normal Web Browser

There is an entire section of the Internet that you probably don’t see on daily basis, it’s called the "Darknet" or "Deep Web", where all browsing is done anonymously.

Onion.City, a new search engine for online underground markets that makes it more easier to find and buy drugs, guns, stolen credit cards directly from your Chrome, Internet Explorer or Firefox browser without installing and browsing via Tor Browser.

February 20, 2015March 3, 2015

How to Test Your PC for the New “Superfish” Security Vulnerability

Security researchers have discovered a vulnerability in a piece of adware called Superfish that makes your computer vulnerable to all kinds of attacks. Superfish ships preloaded on many Lenovo computers, but can also be installed on any machine.

February 20, 2015March 3, 2015

Google releases Cloud-based Web App Vulnerability Scanner and Assessment Tool

Google has unleashed its own free web application vulnerability scanner tool, which the search engine giant calls Google Cloud Security Scanner, that will potentially scan developers’ applications for common security vulnerabilities on its cloud platform more effectively

February 14, 2015March 3, 2015

Facebook launches ThreatExchange for Sharing Cyber Security Threats

Social Networking giant Facebook has just launched a new platform called ThreatExchange, which is designed to mount a coordinated defense against cybercrime.

Many security professionals rely largely on manual methods for collecting, analyzing, and consuming information about latest cyber security threats such as malware and botnets.

ThreatExchange is a platform created by Facebook that enables security professionals anywhere to share threat information more easily, learn from each other’s discoveries, and make their own systems safer.

February 14, 2015March 3, 2015

Visa to Remove 16-Digit Account Number in Online and Mobile Payments

Visa has announced that it is expanding the use of new security technology that replaces the traditional 16-digit Visa account number with a unique series of numbers, helping to prevent exposure of sensitive consumer account information in online and mobile payments.

February 10, 2015March 3, 2015

Droopescan – Plugin Based CMS Security Scanner

Droopescan is a plugin-based CMS security scanner that that will help you with identifying issues with several CMSs, mainly Drupal & Silverstripe.

February 10, 2015March 3, 2015

Cybercrime costs in Singapore hit S$2 billion, but insurance adoption low

SINGAPORE: Companies in the Republic lost nearly S$2 billion last year due to data loss or unplanned downtime arising from illicit cyber activities – a fact not lost on insurance companies, which are beginning to offer protection to firms here as cyberattacks become increasingly sophisticated. But as the industry gears up to offer coverage, which can include the cost of investigative work and rectification, market watchers say a general lack of awareness, underestimation of the risks of security threats and few precedents for designing and setting premiums are impediments.

February 7, 2015March 3, 2015

Cisco Annual Security Report Exposes Widening Gulf between Perception and Reality of Cyber Threats

The Cisco 2015 Annual Security Report released today, which examines both threat intelligence and cybersecurity trends, reveals that organizations must adopt an ‘all hands on deck’ approach to defend against cyber attacks. Attackers have become more proficient at taking advantage of gaps in security to evade detection and conceal malicious activity.

For a complete copy of Cisco’s Annual Security Research report go to https://www.cisco.com/go/asr2015.

February 7, 2015March 3, 2015

Cross Site Scripting vulnerability found in IE 11

A new Cross Site Scripting (XSS) vulnerability has been found in IE 11. According to an email sent by David Leo, a researcher with information security company Deusen, to the Full Disclosure mailing list, the vulnerability can allow an attacker to steal anything from a third party domain, and likewise inject anything into a third party domain.