News from Black Hat & DEF CON

More in this category »

Other News

Beware: Targeted Attacks on iPhone Users are a Thing | Lookout Blog

Beware: Targeted Attacks on iPhone Users are a Thing | Lookout Blog

In-brief: Lookout said it identified an active threat that was using three critical iOS zero-day (that is: previously unknown) vulnerabilities. When exploited, the three vulnerabilities “form an attack chain that subverts even Apple’s strong security environment.”

A firm's report calling on investors to short St. Jude because of security flaws in its implantable medical devices is likely to reignite a firestorm of debate between security researchers and the medical community.

The Big Short: Alleged Security Flaws Fuel Bet Against St. Jude Medical

In-brief: The stock of medical device maker St. Jude plunged by 5% on Thursday after a report called for investors to bet against (or “short”) the company’s stock over serious security vulnerabilities in a range of the company’s implantable cardiac devices.

Error and warning messages that appear while users are doing other things are largely ignored, research from BYU and Google suggests.

Study: Security Warnings Ignored Because of Bad Timing

In-brief: Up to 90 percent of users ignore security alerts and other warnings that appear while they’re busy performing other tasks, research from Google and Brigham Young University.

Wearables like Apple's new watch will combine with health middleware to expand the market for connected health products, says one prominent healthcare CIO.

Privacy Forum Pushes Guidance for Wearables, Health Apps

In-brief: new guidance from the Future of Privacy Forum urges connected health device makers to address security and privacy issues to prevent sensitive data from falling into the wrong hands. 

Recent analysis has connected the dots between information disclosed by Edward Snowden and recent leaks related to NSA Spying from the group Shadow Brokers.

How the NSA snooped on Cisco Customers for a Decade | Ars Technica

In-brief: Ars Technica has a good write-up of the ongoing news about how the NSA used tools that exploited known vulnerabilities in networking and security products by Cisco, Juniper, Fortinet and others to spy on customers of those companies.