Skype has long been a desktop (and mobile) app, but now it’s available in your browser in the form of a new public beta.
Read more here.
NIST updates ICS security guide
The National Institute of Standards and Technology (NIST) has issued the second revision to its Guide to Industrial Control Systems (ICS) Security. It includes new guidance on how to tailor traditional IT security controls to accommodate unique ICS performance, reliability and safety requirements, as well as updates to sections on threats and vulnerabilities, risk management, recommended practices, security architectures and security capabilities and tools.
The guide can be downloaded from here.
Read more here.
Visa launches new commercial standard for mobile payments
Visa said in the announcement that its new Digital Enablement Program builds on the company’s secure token technology and adds a turnkey, toll-free commercial framework accessible to more than 14,500 Visa financial institution clients and leading technology partners around the world. Google, with its Android Pay payment solution, is Visa’s first international program partner.
Read more here.
OWASP Zed Attack Proxy – Integrated Penetration Testing Tool
The OWASP Zed Attack Proxy (ZAP) is an easy to use integrated penetration testing tool for finding vulnerabilities in web applications.
Read more here.
New Android NFC Attack Could Steal Money From Credit Cards Anytime Your Phone Is Near
In a presentation at Hat In The Box Security Conference in Amsterdam, security researchers Ricardo J. Rodriguez and Jose Vila presented a demo of a real world attack, to which all NFC capable Android phones are vulnerable. This attack, delivered through poisoned apps, exploits the NFC feature allowing unethical hackers to steal money from victims’ credit cards anytime the cards are near the victims’ phone.
Read more here.
Gaana.com hacked, details of over 10 million users exposed
Gaana.com — One of India’s most popular music streaming service with more than 10 Million registered users and 7.5 Million monthly visitors — has reportedly been hacked, exposing the site’s user information database.
Read more here.
Assessing the Security of Mobile Applications (Part 3) – The Test Methods and Outcomes
Part 3 of a nice article on how to assess the security of mobile applications.
Read more here.
Is your Wi-Fi router hacker bait? This free tool lets you know.
Is your home or work wireless network just waiting for an attacker to waltz in? Your router can have plenty of vulnerabilities – weak password, weak encryption standards, dangerous services, etc.
The free Android app RouterCheck looks for all that and more. It also checks your router make and model to see whether it’s known to have vulnerabilities.
Read more here.
With Android Pay, Google gets mobile payments right
Even though Google started the whole mobile payment thing years ago with Google Wallet, it never really took off with the masses. Google’s newly announced Android Pay, however, might. Just like Google Wallet, Android Pay lets you simply tap your phone on an NFC terminal to make a purchase, but with a little less hassle — there’s no need to enter in a PIN to enable payments.
Read more here.
CareFirst, Third Major Health Insurer This Year To Be Hit By Cyberattack
On May 20, 2015, CareFirst BlueCross BlueShield announced that it was the latest victim of a major cyberattack, with as many as 1.1 million plan customers affected. Current and former CareFirst members and individuals who do business with CareFirst online who registered to use CareFirst’s websites prior to June 20, 2014 are impacted by this event.
Read more here.