Subterms
Researchers have sought to put to bed a persistent debate: whether or not fingerprint-based biometric authentication can be fooled. On Wednesday, Cisco Talos researchers Paul Rascagneres and Vitor Ventura published the results of an in-depth study into how the sensors used in fingerprint biometric systems can be duped, resulting in smartphones and tablets providing access […] More
An investor in Zoom has filed a class action lawsuit against the video-conferencing company, accusing it of fudging details about its encryption, hiding security flaws, and disclosing personal information to Facebook. Bloomberg reports that investor Michael Drieu has accused Zoom of concealing the truth about its platform security. The accusations haven’t helped Zoom’s stock price, […] More
xHelper is a particularly damaging and virulent form of malware that has become a thorn in the side of Android mobile device users. First spotted in March 2019 and once deemed unkillable — but still considered very dangerous — the mobile malware has been traced back to the download and installation of apps outside of […] More
Firefox maker Mozilla has released version 75 of the browser with a revamped address bar and major search improvements. But while it won’t change its regular browser release schedule as Google and Microsoft have done during the COVID-19 coronavirus pandemic, it is holding back new security and privacy features that affect site compatibility. Working from […] More
A new botnet has entered the threat landscape that researchers say “puts to shame” others on the scene, such as Mirai and Qbot. On Wednesday, researchers from cybersecurity firm Bitdefender said the new botnet, dubbed “dark_nexus,” packs a range of features and capabilities that go beyond those typically found in today’s botnets. Botnets are networks […] More
Image: Tails Project Tail OS, an operating system optimized for privacy and anonymity, has released version 4.5 this week, the first version that supports a crucial security feature named UEFI Secure Boot. Secure Boot works by using cryptographic signatures to verify that firmware files loaded during a computer’s boot-up process are authentic and have not […] More
Microsoft announced this week plans to add official support for the DANE and DNSSEC protocols to its cloud-hosted email server offering — known as Office 365 Exchange Online. DANE and DNSSEC are two internet protocols for ensuring that communications take place over properly encrypted and authenticated connections. The protocols involved in securely sending an email […] More
Western Australia’s auditor-general has once again called out state agencies for not taking IT risks seriously, acknowledging that while they are getting better, there are still many entities that failed to meet the benchmark for minimum practice. The report [PDF] presents the results of the general computer control (GCC) audits and capability assessments, with the […] More
