New research has found that zero-day flaws — that is, holes in software that are unknown to suppliers and can be exploited by hackers — live a long time. The flaws have an average life expectancy of 6.9 years, according to a new study of more than 200 zero-day flaws obtained from a vulnerability research ...

Prosecutors in Norway have demanded that a number of criminals charged with selling drugs pay part of their penalty in bitcoin, the first time that a country in Scandinavia and possibly all of Europe has demanded compensation using the cryptocurrency. The case involved three men arrested in June 2015 who were alleged to have been ...

A new paper from Northeastern University researchers has found that more than a third of websites may using at least one JavaScript library with a known security vulnerability. The research analyzed 133,000 domains based on Amazon.com Inc.’s Alexa Top 75,000 list and randomly selected .com domains by assessing 72 different JavaScript libraries including jQuery, Angular, Handlebars, Bootstrap, Modernizr, Moment, LoDash and ...

The price of bitcoin recovered over the weekend after the shock rejection by the Securities and Exchange Commission of the application from the Winklevoss twins to list their Bitcoin Trust Exchange-Traded Fund. The famous twins filed the proposed ETF back in 2015 as a way for those interested in investing in bitcoin to do so without investing ...

Software-as-a-Service cyber-attack simulation startup Cymulate has raised $3 million funding round led by Susquehanna Growth Equity LLC. Founded in 2016 in Israel, Cymulate offers a cybersimulation platform that can assess the security preparedness of customers by exposing hidden vulnerabilities on enterprise networks so they can be addressed before they can be exploited. The startup’s platform covers ...

Hackers are targeting a recently revealed critical zero-day vulnerability in the Apache Struts 2 framework that is used in millions of web servers employed by banks, government agencies and large Internet companies. The vulnerability (CVE-2017-5638) is a remote code execution bug that affects the Jakarta Multipart parser in Apache Struts 2 that allows hackers to inject ...

Google Inc- owned artificial intelligence company DeepMind Technologies Ltd. has provided more details on its deal with Britain’s National Health Service to digitize healthcare records, including the development of a blockchain-like tool to address privacy concerns. Called “Verifiable Data Audit,” the new tool will allow hospitals, and potentially even patients, to see exactly who is using ...

Online accommodation marketplace Airbnb Inc. has raised $1 billion in a late-stage round that is believed to have included Google Capital and TCV. First reported by CNBC, the Series F round consisted of two parts, an initial $555 million raised and reported by a Securities and Exchange Commission filing lodged in September and an additional $445 ...

Big data company Cloudera Inc. has filed its S-1 paperwork for an initial public offering, according to a report published Thursday. Bloomberg, citing “people with knowledge of the matter,” said the filing was made confidentially using the provisions of the Jumpstart Our Business Startups Act that allows an emerging growth company, defined as one with annual revenues ...

Major tech companies including Google Inc., Apple Inc., Microsoft Corp. and Samsung Electronics Co. Ltd. have responded to revelations from Wikileaks that the Central Intelligence Agency had managed to hack devices they produce. Apple led the charge, claiming that the many of the iOS vulnerabilities exploited by the CIA to hack iPhones had already been patched. ...