Story

Stephen Harper’s security detail was forced to take extra precautions at the Conservative leader’s hotel after a group of bikers — some wearing full-patched Hells Angels jackets — rumbled into the parking lot Thursday.

An Ontario cabinet minister has launched a defamation lawsuit against the Globe and Mail newspaper over articles that said Canadian intelligence agents had expressed concerns about his “unusually close ties” to Chinese officials.

Just like Samsung and Google, LG also plans to roll out security updates once a month directly to smartphones, in order to help prevent exploits like Stagefright from occurring again.

Die Security Bilanz Deutschland erfasst jährlich bei mittelständischen Unternehmen die gefühlte Bedrohung der eigenen IT und die Zufriedenheit mit den eigenen Schutzvorkehrungen.

In a Reddit AMA, activists DeRay McKesson, Johnetta Elzie and ACLU’s Nus Choudhury talked policing and police reform in America, and surveillance of activists. Read the rest

It’s a truism that all software has bugs and security holes. It’s another that license agreements invariably make software vendors immune to liability for damage or losses caused by such flaws. But, to my surprise, Black Hat’s founder and keynote speaker are arguing that software product liability, presumably mandated by governments, is inevitable. If they’re right,… Read More

Editorial: Android's update strategy doesn't scale, and that's recipe for disaster.

Never-before-seen footage from the Isabella Stewart Gardner museum shows a possible dry run on 19 March 1990, the day before the robbery. The video could lead investigators closer to solving the heist of $500m worth of art

Labour leadership candidate Jeremy Corbyn says that real security for a country is providing well for its citizens in terms of housing, education and employment, rather than spending a ‘phenomenal’ amount of money on weapons of mass destruction. Corbyn was speaking at a Campaign for Nuclear Disarmament event in London on Thursday to commemorate the 70th anniversary of the Hiroshima atomic bombing Continue reading...

https://www.schneier.com/blog/archives/2015/07/comparing_the_s_1.html https://www.usenix.org/system/files/conference/soups2015/soups15-paper-ion.pdf The main things that experts find important...

The Stagefright bug has quickly frightened cell phone manufacturers into action. The post Big Android Makers Will Now Push Monthly Security Updates appeared first on WIRED.

Comments

Comments

'Panda Emissary' group has an appetite for defence projects Black Hat 2015 An alleged Chinese advanced hacking group has been found cherry-picking data from high-profile governments and corporations, p0wning many within six hours according to Dell researchers.…

Ukraine’s security service says it has detained a criminal group that was attempting to sell a small quantity of what appeared to be non-fissile uraniumUkraine’s security service has said it seized a small quantity of what appeared to be ore-grade uranium from a criminal gang in a peaceful western region.

Remember those militarized cops who raided a California medical marijuana dispensary, harassed a disabled patient in the store, and were recorded on a security camera gobbling what was almost certainly marijuana-infused edibles that they swiped during the raid? Read the rest

Ad giant, Samsung, LG commit to monthly fixes Black Hat 2015 For those of you worried about the Stagefright flaw in Android, be reassured, a patch will be coming down the line in the next few days.…

Security updates on mobile operating systems have typically been bundled inside larger patches that include other bug fixes and improvements. Unfortunately, the world of security exploits isn't tuned to a company's release schedule, which can leave devices and platforms vulnerable to exploits for long periods of time. Microsoft recognized this issue long ago and has since used Windows Update to roll out regular security patches when needed. With the growth of mobile, more attention is now being placed on the security of smartphones and tablets.Google appears to have come to the same realization as Microsoft, and today they announced that they will start pushing monthly security updates over the air to Nexus devices that are still within their support timeframe. The list of supported devices includes the Nexus 4, Nexus 5, Nexus 6, Nexus 7 (both generations), Nexus 9, Nexus 10, and Nexus Player. In addition to security fixes, the monthly OTA updates will include general bug fixes, but the focus is primarily on security improvements.The first monthly patch for Nexus devices is rolling out today, although as usual it may take some time to get to your device due to Google's staged rollout system. In addition to this announcement, Google has also implemented a long rumored change to their Nexus update policy. While in the past devices were guaranteed 18 months of updates, under the new policy they will be supported for two years of major software updates, and security updates will continue for three years or eighteen months after the device is discontinued on Google Play depending on which is longer.

Black Hat founder warns of coming crisis Black Hat 2015 Speaking at the opening of the 18th Black Hat security conference, its founder Jeff Moss warned the assembled throng that while they might have job security, they weren't going to have fun in the next decade.…

Earlier today, Samsung announced that it would now provide security patches for its Android devices “about once per month.” In addition to Samsung, Google also today announced a similar program for its Nexus devices. Both Samsung and Google will release these security patches as over-the-air updates. Read More

Nexus devices will now receive monthly security updates from Google, in addition to their usual platform updates. Starting now with the release of the Stagefright exploit fix, Google will be pushing out security updates, and notifying its partners on a monthly basis.

Samsung says it is developing a new and faster process to release security updates to its Android devices, in the wake of the recent Stagefight exploit. Samsung says it plans to offer over-the-air security patches once a month.

Investigators have contacted a Denver-based technology firm that helped to manage the unusual system, the Washington Post saysThe FBI has begun looking into the security of Hillary Clinton’s private email setup, contacting in the past week a Denver-based technology firm that helped manage the unusual system, the Washington Post has reported, citing two government officials.Related: 'So revealing and wacky': Hillary Clinton emails deride David Cameron Continue reading...

The tech giant will patch a serious bug in the next security update to its desktop operating systemApple is to fix a bug in its Mac OS X operating system as soon as possible amid concerns over the security of its desktop and laptop computers.The tech company will patch a serious “privilege escalation” bug in the next security update to its desktop operating system, Mac OS X 10.10.5, the Guardian has learned. The initial beta of the next update to the Mac operating system did not include a fix for the bug, known as DYLD, leading to concerns it would not be fixed until the Autumn when the next major OS release, El Capitan, is planned. Continue reading...

Move, which security minister says will ‘catch criminal behaviour at earliest possible point’, is latest attempt to tighten control over online activitiesChina is planning to set up “network security offices” in major internet companies and for websites so authorities can move more quickly against illegal online behaviour, the ministry of public security said in a statement.Related: China passes new national security law extending control over internet Continue reading...

The suspect worked at a local Naval base, but there's no talk of terrorism because he was also white. Read the rest

The FBI is investigating how secure Hillary Rodham Clinton's email practices were when she was secretary of state and used a private email server, reports The Washington Post. Read the rest

Dear All, I wonder any security problem with this configuration: unbound - dnscrypt-proxy Squid dhcp ntpd ---Quote---

When even the DHS thinks it's a bad idea then it must be time for a rethink The US Department of Homeland Security is hardly what you'd think of as a bunch of whining lefties, but even this agency has come out against the proposed Cybersecurity Information Sharing Act.…

And now for an update in the continuing saga of the Cybersecurity Information Sharing Act (CISA), a controversial piece of legislation currently in the Senate that, to some, represents an important tool to bolster the sharing of threat data between the government and private entities, and to others is a privacy-wrecking mess. Read More

Drones used by US adversaries "present detection and disruption challenges."

Recognising the problem of ignorance Mobile security is becoming more of a headache as the crossover between business and personal activity continues to increase, and employees generally expect more freedom. Research suggests, however, that you can only push technology-based protection so far before users rebel and try to find ways around it. To manage risks effectively, you therefore need to address the human factor.…

In colossal co-incidence, eight-petaflop limit keeps China atop fastest supercomputer charts China has banned the unlicensed export of supercomputers and certain types of unmanned aerial vehicles.…

Hello all, I am new to Linux (of course) but not new to computing or programming. I would like to ask some advice on which distros are optimal for enhanced privacy concerns, as well as some...

Hello, open gaming fans! In this week's edition, we take a look at Razer and OUYA, security vulnerabilities on Steam, and more.Open gaming roundup for July 25 - August 1, 2015read more