Cyber Security News- 21/08/15

Do you use internet security software? Then you may want to read this. A major internet security provider has been accused of sabotage against competitors!

An interesting read about passcode security this week as new data reveals pattern based passcodes are not nearly as complex as they could and should be. Another article to be shocked at as a live chat service resets passwords in plain text *without* a secure password reset option. Read the rest of this week’s web security news below.

 

Mentioned above

 

• Worlds top antivirus firm accused of sabotaging Microsoft and other rivals (Yahoo Security)
• New data uncovers the surprising predictability of Android lock patterns (ArsTechnica)
• ISPs e-mail password reset system is a guy named Shawn (ArsTechnica)

More News

 

• A man built a Twitter bot that automatically entered and won 1,000 contests (Yahoo Security)
• Article from Gizmodo UK stating to use https sites only, Gizmodo site not https… (Reddit)
• Carphone Warehouse Hack Exposes Data of 2.4 Million Customers (InfoRiskToday)
• Drupal 6.37 and 7.39 released, critical vulnerabilities addressed (SC Magazine)
• Drupal Security Updates Patch Five Vulnerabilities (SecurityWeek)
• Location, Sensors, Voice, Photos?! Spotify Just Got Real Creepy With The Data It Collects On You (Forbes)
• Microsoft issues emergency patch for all versions of Windows (ZDNet)
• Microsoft issues emergency patch for critical IE bug under active exploit (ArsTechnica)
• Mcrosoft Issues Emergency Patch for Critical IE Flaw Exploited in the Wild (SecurityWeek)
• RPC Portmapper Abused for DDoS Attack Reflection, Amplification (SecurityWeek)
• Severe weakness in checkout provider Borderfree allows users to easily control the prices they pay on ecommerce websites
• Technology firm loses nearly $47 million in digital transfer fraud (SC Magazine)
• That Fired Facebook Intern Explains The ‘Marauders Map’ Extension That Cost Him His Gig (Forbes)
• United Airlines’ Frequent Flyer App Can Be Hacked to Reveal Passenger Info (Reddit)
• Updated: 2.4 million hit by Carphone Warehouse breach (SC Magazine)
• Convention center Wi-Fi provider settles with FCC over automatic hotspot blocking (SC Magazine)
• Bigger Stagefright: Another Bug Found in Android (InfoRiskToday)
• Many Android Devices Still Vulnerable To ‘Stagefright’ Flaw Despite Patch From Google (Forbes)
• More patches! This time from Apple to Safari, OS X and OS X server, (Thu, Aug 13th)