Hacks & Hackers Archives | The Security Ledger

Facebook said a breach affected some 50 million account holders. Is complexity the problem?

Episode 114: Complexity at Root of Facebook Breach and LoJax is a RAT You Can’t Kill

October 2, 2018 by Paul

Podcast: Play in new window | Download (Duration: 29:33 — 33.8MB)Subscribe: Android | Email | Google Podcasts | RSSIn this week’s podcast: Facebook revealed that a breach affected 50 million accounts and as many as 90 million users. Is complexity at the root of the social media giant’s troubles? We speak with Gary McGraw of the firm Synopsys about it. Also: BIOS-based malware has been demonstrated at security conferences for years. Last week, the security firm ESET warned that it identified a sample in the wild. Even worse: the Russian Hacking Group Fancy Bear was believed to be responsible. We’ll talk to firmware security expert Giovanni Vigna of the firm Lastline about the truth and hype around LoJax and other firmware based attacks.

Continue Reading →

Facebook said a massive breach prompted it to force some 50 million users to log back into their accounts.

Massive Facebook Breach Affects 90 Million Accounts

September 28, 2018 by Paul

Facebook forced a reset of more than 50 million user accounts on Thursday and would force another 40 million account resets in the coming days, citing a major breach of the site’s security that allowed unknown attackers to take over people’s accounts.

Continue Reading →

AggregateIQ, a company at the center of questions about the improper use of Facebook data in targeting voters during the 2016 elections, has received a warning about violations of the EU General Data Privacy Rule.

AggregateIQ Faces First GDPR Enforcement Over Data-Privacy Dispute

September 25, 2018 by Elizabeth Montalbano

AggregateIQ, one of the companies at the heart of the Facebook unauthorized data-sharing scandal, could be one of the first companies to face penalties under the European Union’s recently implemented General Data Protection Regulation (GDPR).

Continue Reading →

North Korea’s Lazarus Tied to Cryptojacking Campaign Targeting MacOS

August 28, 2018 by Elizabeth Montalbano

North Korean state-sponsored hacking group Lazarus is believed to be behind a recent crypto jacking attack on several banks with an unexpected twist–the use of a Trojan that tricked a company employee into downloading malware, according to Kaspersky Lab.

Continue Reading →

A lawsuit alleges that car makers are violating consumer protection laws: selling vehicles that are susceptible to hacking and may be dangerous.

From Mainframes to Connected Cars: How Software drives the Automotive Industry

August 15, 2018 by Gary McGraw

Automakers must pay as much attention to the integrity and security of the software running modern vehicles as they pay to areas such as metallurgy, impact protection, seat belts, and materials science argues Gary Mcgraw, the Vice President of Security Technology at the firm Synopsis.

Continue Reading →

Hacks & Hackers

Episode 114: Complexity at Root of Facebook Breach and LoJax is a RAT You Can’t Kill

Massive Facebook Breach Affects 90 Million Accounts

North Korea’s Lazarus Tied to Cryptojacking Campaign Targeting MacOS

From Mainframes to Connected Cars: How Software drives the Automotive Industry

Subscribe to our podcast…

A Word from our Sponsors

Sign up for The Security Ledger

Thank our Sponsors

Videos

Tweets from @securityledger

Reader Comments