70 matches found
FBI Raids Chinese Point-of-Sale Giant PAX Technology
U.S. federal investigators today raided the Florida offices of PAX Technology, a Chinese provider of point-of-sale devices used by millions of businesses and retailers globally. KrebsOnSecurity has learned the raid is tied to reports that PAXs systems may have been involved in cyberattacks on U.S...
Police Raided German Spyware Company FinFisher Offices
German investigating authorities have raided the offices of Munich-based company FinFisher that sells the infamous commercial surveillance spyware dubbed 'FinSpy,' reportedly in suspicion of illegally exporting the software to abroad without the required authorization. Investigators from the Germ...
Facebook Drops Default Facial Recognition Tag Suggestions
Facebook is giving users more control over a facial recognition feature used by the company to help identify, or Tag, people on its platform. Starting Tuesday, the company said it would allow its users to opt-out of the Tag Suggestions feature, while at the same time the company is attempting to...
Hackers Stole a Border Agency Database of Traveler Photos
In compromising a Customs and Border Protection subcontractor, hackers make off with photos of travelers and license plates...
Former Mozilla CTO Harassed at the US Border
This is a pretty awful story of how Andreas Gal, former Mozilla CTO and US citizen, was detained and threatened at the US border. CBP agents demanded that he unlock his phone and computer. Know your rights when you enter the US. The EFF publishes a handy guide. And if you want to encrypt your...
Microsoft Calls For Facial Recognition Tech Regulation
As facial recognition continues to gain traction in public use cases, Microsoft on Thursday called for regulation of the technology, citing heightened concerns around privacy and consent. Over the past year, facial recognition technology has started to pop up in various government-related...
Compromising vital infrastructure: transport and logistics
Back when I was a dispatcher for a courier and trucking company, we used to joke that it only took a few strategically-placed accidents to cause a traffic jam that could completely stop circulation around the city of Rotterdam. Rotterdam is one of the major ports in the world and consequently,...
SQL Injection Vulnerability in Quamicro Technologies Warehouse Management System and Customs Management System
Wuxi Quamicro Technology Co., Ltd. is a high-tech enterprise that sends enterprise management software. SQL injection vulnerability exists in the warehouse management system and customs management system of Quamicro Technology. An attacker can utilize the vulnerability to obtain sensitive...
customs.gov.my XSS vulnerability
Open Bug Bounty ID: OBB-694995 Description| Value ---|--- Affected Website:| customs.gov.my Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| hidden until disclosure Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| hidden...
New Rules Announced for Border Inspection of Electronic Devices
The U.S. Customs and Border Patrol announced new restrictions on when agents can copy data from digital devices at border crossing points. Agents now need “reasonable suspicion” in advance of searches of phones, computers, tablets, cameras or any other digital device belonging to people entering ...
en.customs.go.th XSS vulnerability
Vulnerable URL: http://en.customs.go.th/index.php/' Details: Description| Value ---|--- Patched:| Yes, at Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website status:| No Check en.customs.go.th SSL connection:| Grade: F Coordinated...
Apple Patents Technology to remotely disable your iPhone Camera at Concerts
Here's something you'll not like at all: Apple has been awarded a patent for technology that would prevent you from snapping pictures and shooting videos with your iPhone or iPad at places or events, like concerts or museums, where it might be prohibited or inappropriate. The patent, granted on...
Traveling to US? Agencies want to Spy on your Social Media activities right from Airport
Hey! Welcome to the United States. May we have your Twitter handle, please? That's exactly what you'll likely be asked by the U.S. Customs and Border Protection at the airport prior to entering U.S. soil. Yes, your Twitter handle may soon be part of the US Visa process as U.S. Customs and Border...
customs.gov.qa XSS vulnerability
Vulnerable URL: http://customs.gov.qa/search.php?keywords=%22%3E%3Ch1%3EXSS%3C/h1%3E%3Cimg%20src=x%20onerror=prompt/OPENBUGBOUNTY/%3E Details: Description| Value ---|--- Patched:| Yes, at 27.07.2017 Latest check for patch:| 27.07.2017 08:49 GMT Vulnerability type:| XSS Vulnerability status:|...
customs.gov.sy XSS vulnerability
Vulnerable URL: http://www.customs.gov.sy/results.php Details: Description| Value ---|--- Patched:| Yes, at 23.11.2017 Latest check for patch:| 23.11.2017 21:02 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 2155673 Google Pagerank| 4 VIP website status:| No...
customs.gov.ph XSS vulnerability
Open Bug Bounty ID: OBB-48669 Description| Value ---|--- Affected Website:| customs.gov.ph Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
Threat Outbreak Alert RuleID10975: Email Messages Distributing Malicious Software on August 6, 2014
Medium Alert ID: 35187 First Published: 2014 August 6 20:28 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID10975 may contain the following files: Name | Si...
Threat Outbreak Alert RuleID10176: Email Messages Distributing Malicious Software on June 1, 2014
Medium Alert ID: 34504 First Published: 2014 June 3 15:37 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID10176 may contain the following files: Name | Size...
Threat Outbreak Alert: Fake Package Detainment Notification Email Messages on December 2, 2013
Medium Alert ID: 31960 First Published: 2013 December 3 00:36 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a package detainment notification from UK Customs and Border Protection for the recipient. The text in the ema...
Threat Outbreak Alert: Fake Monthly Report Notification Email Messages on November 19, 2013
Medium Alert ID: 31827 First Published: 2013 November 19 17:48 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a report from HM Revenue & Customs for the recipient. The text in the email message attempts to convince the...