Cyber warriors sound warning on working from home

Cyber warriors on NATO’s eastern edge are warning that the growing number of people working from home globally due to the pandemic is increasing vulnerability to cyber attacks.

The Baltic state of Estonia hosts two cyber facilities for the Western military alliance — set up following a series of cyber attacks from neighbour Russia more than a decade ago.

“Large scale use of remote work has attracted spies, thieves and thugs,” Jaak Tarien, head of NATO’s Cooperative Cyber Defence Centre of Excellence (CCDCOE), told AFP in an interview.

The increased amount of information travelling between institutional servers and home networks is creating new challenges for employers.

“Tackling these new challenges is complicated and requires a lot of resources as well as a different kind of approach,” Tarien said.

“We are likely only scratching the surface in assessing the magnitude of malicious activities taking place in the Covid-era busy cyberspace.”

An

Read More

Amazon: Union warning of Prime Day COVID-19 outbreak is ‘scaremongering’

  • Amazon’s Prime Day shopping event got underway Tuesday.
  • A workers’ union is worried Prime Day could worsen the spread of COVID-19 in the company’s Coventry, UK warehouse, which currently has up to 3,000 workers in it.
  • Eight workers have tested positive for the virus in the warehouse over the past two weeks, and other workers are waiting to hear results on tests, the GMB Union said.
  • “Amazon’s recklessness could turn Prime Day into a hive of infection,” Amanda Gearing, a GMB organizer told Business Insider.
  • Amazon said the union’s statement was “scaremongering and irresponsible.”
  • Visit Business Insider’s homepage for more stories.

A workers’ union is worried that Amazon’s Prime Day shopping event could cause a COVID-19 outbreak in one of the e-commerce giant’s UK warehouses.

GMB Union said in a press statement that at least eight workers at Amazon’s warehouse in Coventry, England had tested positive for the virus over

Read More

Twitter slaps warning on President Trump tweet claiming coronavirus immunity

US President Trump has become subject to another fact-check warning on social media after claiming immunity to COVID-19.

In a tweet posted on Sunday, the US president claimed that physicians at the White House have given him a clean bill of health, and as a result, he is now “immune” to further infection by the novel coronavirus. 

Trump also claimed he is no longer contagious. 

See also: Twitter places public interest notice on President Trump’s tweet

“A total and complete sign off from White House Doctors yesterday,” the tweet reads. “That means I can’t get it (immune), and can’t give it. Very nice to know!!!”

After the message was published, Twitter slapped a warning label on the tweet. The microblogging platform says the tweet “violated the Twitter Rules about spreading misleading and potentially harmful information related to COVID-19.”

screenshot-2020-10-12-at-07-56-33.png

There are currently no concrete indicators that immunity from COVID-19 is

Read More

Does Yelp’s Racism Warning Put A ‘Scarlet R’ On Businesses? Twitter Thinks So

After Yelp (YELP) announced that it was placing a consumer alert on businesses associated with past racist actions, the company has now come under fire by Twitter users who are claiming the search site’s newest feature is problematic.

Yelp made the announcement on Thursday, saying at the time that is was taking a “stand against racism” by placing a consumer warning on businesses that used “racist language or symbols” and had gained public attention for “racist conduct.”

The review company wrote in a Twitter post, “Now, when a business gains attention for reports of racist conduct, Yelp will place a new Business Accused of Racist Behavior Alert on their Yelp page to inform users, along with a link to a news article where they can learn more.”

Read More

Cisco security warning: Patch Webex Teams for Windows and surveillance camera now

Cisco has released security updates for high-severity security flaws affecting Webex Teams for Windows, its Identity Services Engine, and Video Surveillance 8000 Series IP Cameras. 

In this month’s first round of security updates from Cisco, the most serious vulnerability addressed is a remote code-execution (RCE) and denial-of-service (DoS) bug affecting its Video Surveillance 8000 Series IP Cameras.

The flaw, tracked as CVE-2020-3544, has a severity rating of 8.8 out of 10, on par with similar RCE and DoS flaws it disclosed in August affecting the Video Surveillance 8000 Series IP Cameras. 

SEE: Security Awareness and Training policy (TechRepublic Premium)

Both sets of vulnerabilities were reported by Qian Chen of Qihoo 360 Nirvan Team and both concern flaws in the Cisco Discovery Protocol, a Layer 2 or data link layer protocol in the Open Systems Interconnection (OSI) networking model. 

Similarly, both are due to “missing checks when an IP camera processes

Read More

Serious Warning Issued Over $300,000 Bitcoin Stock-To-Flow Price Model

Bitcoin is on track to be one of the year’s best performing assets, despite a recent retraction—but that’s not stopped bitcoin bulls from fighting on Twitter.

The bitcoin price has climbed through much of 2020, adding some 40%, with the bullish stock-to-flow model—that predicts a massive $288,000 bitcoin price before 2024—working “like clockwork,” according to its anonymous creator.

However, a number of high-profile bitcoin analysts and entrepreneurs have clashed over the stock-to-flow model this last week, with the anonymous PlanB accusing his critics of trying to unmask him and his model derided as “absolutely useless.”

MORE FROM FORBESBitcoin And Blockchain Are The ‘Future’ Of Twitter, CEO Jack Dorsey Reveals

“The [stock-to-flow] model is based

Read More

Pompeo delivers warning to Italy over China’s economic influence, 5G

By Angelo Amante

ROME (Reuters) – U.S. Secretary of State Mike Pompeo delivered a warning to Italy over its economic relations with China on Wednesday, and described Chinese mobile telecoms technology as a threat to Italy’s national security and the privacy of its citizens.

“The foreign minister and I had a long conversation about the United States’ concerns at the Chinese Communist Party trying to leverage its economic presence in Italy to serve its own strategic purposes,” Pompeo told a joint news conference with Foreign Minister Luigi Di Maio.

“The United States also urges the Italian government to consider carefully the risks to its national security and the privacy of its citizens presented by technology companies with ties to the Chinese Community Party.”

Di Maio said the Italians were aware of U.S. concerns over Chinese 5G technology, and “fully realise the responsibility faced by every country when dealing with security”.

Read More

A Warning About Your Amazon PS5 And Xbox Series X Pre-Orders

As the world’s largest online retailer, it made sense for millions of people to try and order PS5 and Xbox Series X through Amazon during launch over the past couple weeks. And while the Amazon site did seem to be in somewhat better working order most of the time than its online rivals, if you did manage to pre-order a next-gen console from there, you have probably been unsettled by a recent email you’ve gotten from them:

“We’re contacting you about your order of (PlayStation 5/Xbox Series X/S) to let you know in advance that you may not receive this item on the day it is released due to high demand. We are making every effort with the supplier to procure more inventory. We will provide additional updates once more information becomes available.”

A wave of these went out when PS5 pre-orders were done, then I

Read More

Windows Server: Patch this critical flaw now says Homeland Security in emergency warning

Government agencies in the US have until today to patch a Windows Server vulnerability that could give hackers control over federal networks.

The Department of Homeland Security (DHS) has given system administrators until today (21 September) to patch a critical vulnerability in Windows Server that could allow an attacker to hijack federal networks, via a flaw in the Netlogon authentication system.

On 18 September, the DHS’s cybersecurity division issued an emergency directive giving government agencies a four-day deadline to patch the CVE-2020-1472 vulnerability, also known as Zerologon, citing the “unacceptable risk” it posed federal networks.

The flaw enables an unauthorized user to assume control of a network via a flaw in the Microsoft Windows Netlogon Remote Protocol (MS-NRPC), by simply sending a series of Netlogon messages with input fields filled with zeros.

Once compromised, an attacker could make themselves domain admin and reset the domain control password, effectively giving them

Read More