The Russian government appears to be using new technology to censor internet traffic inside its borders, a group of academics studying internet censorship across the globe said in a report published today.
Companies that run on-premises SAP systems usually come under attack 72 hours after security patches are released, SAP and enterprise security company Onapsis said in a joint security alert published today.
Web infrastructure and website security provider Cloudflare told The Record last week that a recent academic paper detailing a method to bypass the hCaptcha image-based challenge system does not impact its implementation.
Code-hosting service GitHub is actively investigating a series of attacks against its cloud infrastructure that allowed cybercriminals to implant and abuse the company’s servers for illicit crypto-mining operations, a spokesperson told The Record today.
US chipmaker AMD advised customers last week to disable a new performance feature if they plan to use CPUs for sensitive operations, as this feature is vulnerable to Spectre-like side-channel attacks.
Google has announced plans today to restrict the ability of Android apps from seeing what other applications are installed on the same device, citing privacy and security reasons.
Networking equipment and IoT device vendor Ubiquiti Networks released a statement late last night confirming some of the details exposed
The top official at the Department of Homeland Security announced today a series of 60-day cybersecurity-focused “sprints” aimed at focusing the department’s efforts on ransomware, industrial control systems, and other priorities. Alejandro Mayorkas, who was sworn in as DHS Secretary last month, said during a virtual talk hosted by the RSA Conference that his department is working on a proposal for a “Cyber Response and Recovery Fund” to provide assistance to state, local, tribal and territorial governments dealing with cyberattacks….
The Internet Engineering Task Force has formally deprecated the TLS 1.0 and TLS 1.1 cryptographic protocols on the grounds of security after several attacks were discovered over the past years that put encrypted internet communications relying on the two protocols at risk.