SecurityWeek

Security researchers have identified hundreds of vulnerabilities that expose devices with Qualcomm Snapdragon chips to attacks.

A ban by President Donald Trump's administration on Chinese mobile apps such as TikTok and WeChat risks fragmenting an already fragile global internet and creating an American version of China's "Great Firewall."

The first entirely virtual edition of the Black Hat cybersecurity conference took place last week and researchers from tens of organizations presented the results of their work from the past year.

The US bans on Chinese apps TikTok and WeChat are not particularly valuable for US security, experts told AFP Friday, but could step up broader commercial pressure on Beijing and help President Donald Trump appear tough as he seeks reelection.

Multiple Reddit moderator accounts have been compromised and abused to post pro-Trump messages on a variety of subreddits.The hackers appear to have targeted moderator accounts that did not have two-factor authentication (2FA) enabled, and leveraged their rights to modify subreddits or even remove moderator accounts that had fewer rights.

Researchers have identified more than 30 vulnerabilities across 20 popular content management systems (CMS), including Microsoft SharePoint and Atlassian Confluence.

A 350% increase in phishing websites was reported in the first quarter of the year, many targeting hospitals and health care systems and hindering their work responding to the COVID-19 pandemic, the U.N. counterterrorism chief said Thursday.

The United States has fired a new salvo in its rivalry with China, ordering sweeping restrictions against Chinese-owned social media stars TikTok and WeChat.Here are some key facts about the platforms:

President Donald Trump on Thursday ordered a sweeping but unspecified ban on dealings with the Chinese owners of consumer apps TikTok and WeChat, although it remains unclear if he has the legal authority to actually ban the apps from the U.S.

The Kr00k vulnerability disclosed earlier this has only been found to impact devices using Wi-Fi chips from Broadcom and Cypress, but researchers revealed this week that similar flaws have been discovered in chips made by Qualcomm and MediaTek.

The U.S. Treasury Department has fined Capital One $80 million for careless network security practices that enabled a hack that accessed the personal information of 106 million of the bank’s credit card holders.

Researchers revealed late on Thursday that the mitigations and patches rolled out in 2018 for the Foreshadow vulnerabilities affecting Intel processors can fail to prevent attacks.

Intel is investigating reports that a claimed hacker has leaked 20GB of data coming from the chip giant, which appear to be related to source code and developer documents and tools.

The US Senate voted Thursday to bar TikTok from being downloaded onto US government employees' telephones, intensifying US scrutiny of the popular Chinese-owned video app.The bill passed by the Republican controlled Senate now goes to the House of Representatives, led by Democrats.

Twitter on Thursday unveiled new steps to curb the spread of content from "state-affiliated media" used to advance a government's political agenda -- a move affecting key outlets from Russia and China.

Integration is Key to Bringing Security Teams, Processes and Technology Together

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) this week announced the availability of a free tool designed to help users identify and navigate a potential career path in cyber.

Silverfort, a provider of an agentless, proxyless authentication platform, announced this week that it has raised $30 million in a Series B funding round led by Aspect Ventures. 

US Secretary of State Mike Pompeo on Wednesday offered a $10 million reward aimed at preventing foreign interference in the November election, as the State Department accused Russia of waging an increasingly sophisticated disinformation campaign.