LinkedIn app’s oversharing via Bluetooth sparks alarm

By Lisa Vaas LinkedIn said it was working on a fix for the issue – but it’s always a good idea to keep an eye on what you might be sharing via Bluetooth …read more

Source: http://nakedsecurity.sophos.com/

Linux Foundation Launches EdgeX Foundry for IoT Edge Interoperability

Dell contributes Fuse technology effort to the Linux Foundation, creating a new open-source project to help advance the state Internet of Things interoperability. …read more

Source: http://www.eweek.com/

What happens when a vendor doesn’t patch its software?

By Danny Bradbury Third-party ‘guerilla’ patching can be a good example of the community stepping up to fix flaws – but it could also compromise security …read more

Source: http://nakedsecurity.sophos.com/

Hardcoded Credentials Give Attackers Full Access to Moxa APs

By Eduard Kovacs Taiwan-based industrial networking, computing and automation solutions provider Moxa has released an update for some of its wireless access points (APs) to address a critical vulnerability that can be exploited by hackers to gain complete control of affected devices.
read more

…read more

Source: Securityweek.com

Ransomware hidden inside a Word document that’s hidden inside a PDF

By Bill Brenner Spam campaign delivers Locky ransomware that, like a Russian matryoshka doll, is nested inside not one but two layers …read more

Source: http://nakedsecurity.sophos.com/

Security Architecture: The Inherent Value of Transparency and Diagnostics

By Avi Chesla Bringing Security Architecture Out of the Darkness and Into the Light
read more

…read more

Source: Securityweek.com

Locky Ransomware Returns in New Necurs-driven Campaign

By Kevin Townsend Locky was the dominant ransomware in 2016, but was less active in the first quarter of 2017. Now the threat is back with a new Necurs-driven campaign, which was first spotted on April 21. Necurs is a major botnet with estimates last year of up to 1.7 million captive computers.
read more

…read more

Source: Securityweek.com

Denmark Says Russia Hacked Defense Ministry Emails

By AFP Denmark on Monday denounced Moscow’s “aggressive” behavior after a report accused Russian hackers of infiltrating the defense ministry’s email accounts.
“This is part of a continuing war from the Russian side in this field, where we are seeing a very aggressive Russia,” Defense Minister Claus Hjort Frederiksen told Danish news agency Ritzau.
read more

…read more

Source: Securityweek.com

Cardinal RAT Remained Hidden for Two Years

By Ionut Arghire A recently discovered remote access Trojan (RAT) that abuses Excel macros in an innovative way has been active for more than two years, Palo Alto Networks security researchers reveal.
read more

…read more

Source: Securityweek.com

Monday review – the hot 18 stories of the week

By Naked Security writer From Burger King’s Google Home trigger and how tech scammer have made millions to the many vulnerabilities found in Linksys routers, & more! …read more

Source: http://nakedsecurity.sophos.com/