Major Survey of IT Pros Reveals Why Everything Gets Hacked All the Damn Time

More than 1,000 security employees in as many as 17 countries participated in the survey. Most said the biggest hurdle to mounting an adequate defence against cyber threats today is the lack of skilled personnel. (Poor security awareness and an inability to sift through enormous piles of data tied for second place.) Read More >>

Bill Gates Thinks Cryptocurrency Is Killing People ‘In a Fairly Direct Way’

Microsoft co-founder Bill Gates, whose recent takes have included that Apple should just build a backdoor into the iPhone because the government might demand it anyway, is now warning that cryptocurrency is killing people. Read More >>

Report: Some Crypto Enthusiasts Are Increasingly Worried About Getting Robbed in Person

Despite periodic crashes in the cryptocurrency markets, digital currency keeps on moving out of its formerly niche space and affecting the real world. Bitcoin-mining operations are now set to gobble more electricity than domestic residential consumption in Iceland, major credit card providers are banning purchases, rumoured scams as well as proven ones are rampant, and though some regulation has already been forthcoming authorities are largely playing catch-up. Read More >>

Researchers Find New Ways to Exploit Meltdown and Spectre Vulnerabilities in Modern CPUs

In the past few weeks, the entire information security industry has grown very anxious about Meltdown and Spectre, two classes of exploits that can be used to manipulate vulnerabilities in the way many varieties of modern processors (but especially Intel ones) handle a performance-improving technique called speculative execution and extract hidden system data. While numerous platforms have rushed to roll out patches, and Meltdown appears to be less of an issue than Spectre, it’s still unclear just how badly this situation could go. Read More >>

Pyeongchang Olympics Hit By Cyber Attack, With Widespread Rumors Russia to Blame

Officials at the 2018 Pyeonchang Winter Olympics have occurred that a cyber attack hit the games, taking its website as well as TV and internet access at its main press centre offline, the Guardian reported. Read More >>

A Jailbreaker Was Allegedly Behind Apple’s iBoot Source Code Leak

The code to the iOS 9 version of the iPhone’s iBoot software—the proprietary system that ensures trusted launches of iOS, and one of Apple’s closely held secrets—leaked this week on Github, the open-source code repository. According to Motherboard, sources now say a low-level employee who stole the code at work was responsible. Read More >>

China Denies That It Gifted the African Union an HQ Building Stuffed Full of Surveillance Devices

The government of China has long held an interest in building bridges with countries across Africa, which it sees as both a major opportunity for economic investment and a chance to project geopolitical power. But while mutual solidarity is nice and all, the Chinese want to leave as little to chance as possible in their influence-building project on the continent, per a recent investigation by French newspaper Le Monde. Read More >>

Alphabet Launched A Moonshot Cybersecurity Company That Sounds Like Every Other Cybersecurity Company

X, the moonshot wing of Google’s parent company Alphabet, announced today that a new cybersecurity project called Chronicle is “graduating” to become a fully-fledged company. X functions as an incubator for Alphabet’s more experimental endeavours, like self-driving cars or giant balloons that deliver internet connectivity, and Chronicle is the first cybersecurity company it has launched. Read More >>

WhatsApp Security Design Could Let an Infiltrator Add Members to Group Chats

A team of crytopgraphers from Germany’s Ruhr University Bochum say they have uncovered flaws in WhatsApp’s security that compromise the messaging service’s vaunted end-to-end encryption. Read More >>

Linus Torvalds is Not Happy About Intel’s Meltdown and Spectre Mess

Famed Linux developer Linus Torvalds has some pretty harsh words for Intel on the fiasco over Meltdown and Spectre, the massive security flaws in modern processors that predominantly affect Intel products. Read More >>

Intel Hit With Three Class Action Lawsuits Related to Security Vulnerability

It’s been just a few days since The Register first reported that all Intel x86-64x processors were subject to a severe security vulnerability, and already Intel has been hit with at least three separate class action lawsuits related to the vulnerability. Read More >>

Report: All Intel Processors Made in the Last Decade Might Have a Massive Security Flaw

There’s small screwups and big screwups. Here is tremendously huge screwup: Virtually all Intel processors produced in the last decade have a major security hole that could allow “normal user programs—from database applications to JavaScript in web browsers—to discern to some extent the layout or contents of protected kernel memory areas,” the Register reported on Tuesday. Read More >>

Kidnapped Crypto Exchange Executive Reportedly Paid £740,000 Ransom in Bitcoin

Here’s one piece of evidence to suggest that cryptocurrency remains an extremely hot commodity despite recent crashes in the price of Bitcoin: Armed gang members kidnapped a top executive at UK-registered cryptocurrency exchange Exmo Finance this week and only released him after they were paid a $1 million (£740,000) equivalent ransom in bitcoins, the Financial Times reported. Read More >>

Study: Hackers Could Disrupt or Crash HDDs Using Only Sound Waves

Want to destroy video evidence of a break-in, prevent cash machines from logging malware attacks, or simply shut down a critical computer system? One possible way to do that might be disrupting hard disk drives with sound waves, either with a specialised device or just by hijacking a nearby speaker. Read More >>

Predictions in Cybersecurity For 2018

What does the future hold? According to security firm ProofPoint, attackers will continue to exploit us fragile and fallible humans to install malware, transfer funds, and steal information. Read More >>