Cybersecurity firm Preempt Security Inc. today detailed a critical vulnerability in the code used in Microsoft Corp.’s Remote Desktop and WinRM that allows attackers to steal data and run remote code. The vulnerability pertains to a logic flaw in Credential Security Support Provider protocol, known as CredSSP, Microsoft code that lets an application delegate a user’s credentials from ...

Government employees fail at cybersecurity. That’s the biggest takeaway from a new report published today by Dtex Systems Inc. detailing the current state of cybersecurity with the public governance sector. The report, titled “Uncovering the Gaps: Security Perceptions and Behaviors of Today’s Government Employee,” surveyed attitudes, beliefs and actions of current government employees toward cybersecurity, finding several concerning ...

Innovators are fashioning clever new ways of benefiting from cryptocurrency mining as concern about the energy consumption used in the practice has drawn attention from the European Union. Cryptocurrency mining is the process by which transactions are verified and added to the blockchain, creating new coins and tokens. The process itself requires lots of computing power, ...

Scammers have allegedly stolen $2 million from investors through the promotion of a dubious initial coin offering that used fake LinkedIn accounts for promotion. The company, called Giza, was promoting an “innovative hardware wallet,” a physical cryptocurrency storage device that would allow users to send and receive payments from each wallet via a browser extension. In a ...

Ride-hailing startup Lyft Inc. is rapidly growing as its revenue passed $1 billion for the first time in 2017 — still behind rival Uber Technologies Inc. but making considerable progress given that it has next to no international exposure. Lyft today reported a 168 percent annual increase in net revenue growth in the fourth quarter ...

A software package that until late today was offered for download in the Mac App Store has been discovered to mine cryptocurrency by default. But in a strange twist, the company behind the app actually disclosed the fact to users upfront. The app, called Calendar 2, is pitched as a replacement to the default macOS ...

Researchers at Kaspersky Labs have detailed a possibly state-sponsored “Advanced Persistent Threat” malware campaign that has gone under the radar for six years before being detected. Dubbed “Slingshot” due to the use of the name in the primary malware code, the APT campaign, revealed Friday, is believed to have been operating since 2012 without being noticed. ...

Bitcoin and cryptocurrency markets were again shaken Thursday as the Japanese government launched a new crackdown on cryptocurrency exchanges. Japan has been at the forefront of legalizing cryptocurrency trading, having first licensed exchanges in October. But it now has punished seven cryptocurrency exchanges in the country, suspending the operation of two, in response to security concerns raised ...

Overstock.com Inc.’s investment arm Medici Ventures has upped its stake in Caribbean-based blockchain startup Bitt Inc., investing $3 million more into the company in return for an additional 8.6 percent share. Founded in 2015, Bitt offers a digital asset exchange whose initial focus was on providing access to cryptocurrencies in emerging markets with a high-frequency trading platform. It has ...

A newly discovered “kill switch” may be able to address distributed denial-of-service attacks that use a vulnerability in the Memcached memory caching system to amplify data volume, the same vulnerability used in a number of record DDoS attacks over the last two weeks. Corero Network Security Inc. made the claim Wednesday, saying it discovered an effective method that can address the Memcached ...