Cybersecurity funding in corporate environments has always been a source of anxiety for those who seek to keep organizations safe. When we examine the cybersecurity readiness of many state, local, and territorial governments, this funding struggle is taken to new heights of scarcity.
Poor security decisions expose payment terminals to mass fraud
Cryptographic key reuse is rampart in European payment terminals, allowing attackers to compromise them en masse.
Latest Google Wallet hack picks your pocket
Google Wallet users might be wise to start getting a little nervous.
Yesterday, researchers outlined a complicated way to crack the Google Wallet PIN used to make purchases with the smartphone-based payment system. Now there's a new hack that could let a stranger gain access to the funds of Wallet users.
This gizmo knows your Amex card number before you've received it
American Express appears to have used a weak algorithm to generate new card numbers.
Microsoft patches 1990s-era 'Ping of Death'
Microsoft today issued 13 security updates that patched 22 vulnerabilities in Internet Explorer, Windows, Office and other software, including one that harked back two decades to something dubbed "Ping of Death."
Cherry Picker, a PoS Malware even more threatening
Researchers at Trustwave have published the analysis of the Cherry Picker threat, a point-of-sale (PoS) malware that went undetected over the years.
Citigroup data theft the result of a common vulnerability
If the information the NYT has received about the Citigroup breach is correct, and the intrusion was made possible by the exploitation of a vulnerability so frequent and common that it made OWASP's top 10 web application risks list, one wonders how it is possible that the world's largest financial services company hasn't got security experts that would remedy it.
BMW Could Have Prevented OnStar Hack: Researcher
A researcher says BMW was informed of the mobile app vulnerability that allows hackers to locate and unlock cars months before the attack method was disclosed.
At the recent DEF CON conference in Las Vegas, security researcher Samy Kamkar showcased a $100 gadget that allowed him to intercept the login credentials of General Motors car owners who used the company's OnStar RemoteLink iOS app.