Sendgrid, the email delivery and management service that counts among its clients companies like Pinterest, Airbnb and Uber, has admitted that they have been breached.
Read more here.
Assessing the Security of Mobile applications (Part 2) – Testing the application
Part 2 of a nice article on how to assess the security of mobile applications.
Read more here.
Hackers sneak malware into job applications
Hackers are slipping malware into resumes submitted through the job posting website CareerBuilder.com to infect businesses, security researchers have found. Attackers are browsing open positions and attaching malicious documents disguised with the name "resume.doc" or "cv.doc" to applications, according to the Sunnyvale, Calif.-based security company Proofpoint.
Read more here.
Harbortouch is Latest POS Vendor Breach
Last week, Allentown, Pa. based point-of-sale (POS) maker Harbortouch disclosed that a breach involving "a small number" of its restaurant and bar customers were impacted by malicious software that allowed thieves to siphon customer card data from affected merchants. Initial reports indicate that the compromise appears to have impacted more than 4,200 Harbortouch customers nationwide.
Read more here.
Graudit v1.9 Download – Grep Source Code Auditing Tool
Graudit is a simple script and signature sets that allows you to find potential security flaws in source code using the GNU utility grep.
Read more here.
London Railway System Passwords Exposed During TV Documentary
One of London’s busiest railway stations has unwittingly exposed their system credentials during a BBC documentary. The sensitive credentials printed and attached to the top of a station controller’s monitor were aired on BBC.
Read more here.
1,500 iOS apps are vulnerable to an HTTPS-crippling bug
According to analytics service SourceDNA, nearly 1,500 iPhone and iPad apps currently available in the App Store include a bug that breaks HTTPS. This could leave users’ sensitive personal information exposed to hackers.
Read more here.
Security guidance for early IoT adopters
At the RSA Conference 2015, the Cloud Security Alliance (CSA) unveiled a new guidance report, aimed at helping early adopters understand the security challenges surrounding the IoT, and providing recommended security controls and sample use-cases for organizations implementing IoT capabilities.
Read more here.
EAST cases out ATM crime stats in 2014 full-year report
A crime report from the European ATM Security Team reveals that ATM-related fraud incidents in Europe were down 26 percent year over year in 2014, but overall losses were up 13 percent.
Read more here.
Kalpana kick-off: NCR’s ATM thin client solution gets its official launch
NCR has launched a thin client ATM solution called Kalpana.
NCR estimates that Kalpana software can reduce the cost of running an ATM network by up to 40 percent.
Read more here.