News & Updates

Video shot/edited by Jennifer Hahn. (video link)

Polar continues to improve on its existing running watches with the new M430 tracker. It’s an upgrade to the M400 in many subtle ways, including an improved accelerometer, longer battery life, and the inclusion of Polar’s own optical heart-rate monitor. Although it’s positioned as a runner’s watch, you can do much more with the M430 thanks to Polar’s sport profiles. But runners will appreciate the convenience of having an accelerometer that can handle indoor and outdoor activities well, an onboard heart-rate monitor, and a GPS that doesn’t make you wait when you’re ready to run now. While it has stiff competition in the TomTom Spark 3, Polar’s device combines enough essential features to hold its own.

Design

Although the M430 has all-day activity tracking features, its design is best suited for training sessions. It has that rounded-rectangular shape many other Polar devices have, featuring two left-side buttons for the screen backlight and navigating back, and three right-side buttons for scrolling up and down and selecting options on the display. Physical buttons are easier to use (and more accurate) than a touchscreen would be on a serious training device, so I don’t mind having them on the M430. In fact, I would have preferred them on the TomTom Spark 3 instead of its awkward touchpad below the display.

Read 31 remaining paragraphs | Comments

Source: http://feeds.arstechnica.com/arstechnica/index/

Taylor Swift has been dating Joe Alwyn for almost seven months now. Surprisingly, media never got a hint about her secret love-life. Rather she made sure that her romance with Alwyn is kept under wraps for as much time as possible during the time they get to know each other properly. And yes! The Grammy-award […]

The post Taylor Swift Enjoys Secret Love-Life With Joe Alwyn As Katy Perry And Calvin Harris Affair Rumours Surface appeared first on MobiPicker.

Source: http://www.mobipicker.com/feed/

In the last episodes, fans of Dragon Ball Super already know that Majin Buu is already causing problems to Goku’s team. It looks like Son Goku will have no option but to choose Frieza as a replacement for the big guy. As the Tournament of Power draws to a close, participants of each team are […]

The post ‘Dragon Ball Super’ Episode 92 Spoilers, Release Date: New Super Saiyans and Universe 11 Recruits appeared first on MobiPicker.

Source: http://www.mobipicker.com/feed/

One Piece chapter 865 was released a few days ago, meaning that fans are now eagerly waiting for the next chapter to arrive. The previous chapter was a rather amazing one as we got to see how smoothly Luffy and Bege’s assassination plan is working. Along with this, we also got to see how the […]

The post One Piece Chapter 866 Release Date And Spoilers: To Reveal Big Mom’s Past appeared first on MobiPicker.

Source: http://www.mobipicker.com/feed/

A good news for all the hardcore Nintendo Switch fans just came in as the PS4 hit and PSVR Launch title Thumper became part of its games list. This means that the Nintendo Switch fans can now download Thumper from the Nintendo eShop for $20.86 in the US and for £16 in the UK regions. […]

The post Nintendo Switch Games: PlayStation 4 Hit ‘Thumper’ and NeoGeo’s ‘Galaxy Fight: Universal Warriors’ Now Available On Switch, Owlboy Inbound appeared first on MobiPicker.

Source: http://www.mobipicker.com/feed/

Rick and Morty season 2 concluded on October 4, 2015, and since then, fans of the critically acclaimed series have been eagerly waiting for the next season to arrive. The previous season was a rather amazing one as it was filled with thrilling moments. The next season, on the other hand, is said to be […]

The post Rick And Morty Season 3 Release Date And Spoilers: Rick To Find His True Love? appeared first on MobiPicker.

Source: http://www.mobipicker.com/feed/

According to Forbes, the dreaded WannaCry ransomware has infected medical devices in at least two hospitals in the United States.

WannaCry infected 200,000 computers across 150 countries in a matter of hours last week, it took advantage of a tool named “Eternal Blue”, originally created by the NSA, which exploited a vulnerability present inside the earlier versions of Microsoft Windows. This tool was soon stolen by a hacking group named “Shadow Brokers” which leaked it to the world in April 2017.

Now security experts report the WannaCry ransomware has infected also medical devices as reported by Thomas Fox-Brewster on Forbes.

The journalist published an image of an infected medical device, likely a Bayer Medrad radiology equipment that is used to inject contrast agents inside the human body to aid in MRI scans.

“A source in the healthcare industry passed Forbes an image of an infected Bayer Medrad device in a U.S. hospital. The source did not say which specific hospital was affected, nor could they confirm what Bayer model was hacked. But it appears to be radiology equipment designed to help improve imaging.” states Forbes.”More specifically, it’s a device used for monitoring what’s known in the industry as a “power injector,” which helps deliver a “contrast agent” to a patient. Such agents consist of chemicals that improve the quality of magnetic resonance imaging (MRI) scans.”

wannacry ransomware medical devices

WannaCry ransomware on a Bayer radiology system – Source Forbes

The medical device was infected by the WannaCry ransomware because it was running on a version of the Windows Embedded operating system and supporting the SMBv1 protocol.

The name of the hospital where the device was infected was not reported to Forbes, Bayer confirmed it had received two reports from customers in the US.

According to a Bayern spokesperson, the affected hospitals faced limited problems.

“Operations at both sites were restored within 24 hours,” said the spokesperson. “If a hospital’s network is compromised, this may affect Bayer’s Windows-based devices connected to that network.”

Bayer plans to send out a Microsoft patch for its Windows-based devices “soon.”

According to Forbes, a source with the Health Information Trust Alliance (HITRUST) confirmed that WannaCry ransomware also infected and locked down Windows-based medical devices belonging to Siemens.

Siemens admitted that Healthineers products are vulnerable to WannaCry.

“Siemens Healthineers recognizes that some of its customers may be facing impacts from the recent major cyber-attack known as “WannaCry”.” reads the advisory published by Siemens. “Select Siemens Healthineers products may be affected by the Microsoft vulnerability being exploited by the WannaCry ransomware. The exploitability of any such vulnerability depends on the actual configuration and deployment environment of each product.”

Ransomware is a serious threat for the healthcare industry, this specific category of malware could infect systems at hospitals preventing the personnel from using any medical equipment and making ordinary operations (i.e. managing patient data or medical treatment schedules).

WannaCry affected 40 hospitals in the UK. let’s hope operators in the healthcare industry will understand the importance of cyber security for the industry.

medianet_width=’300′; medianet_height= ‘250’; medianet_crid=’762221962′;

Pierluigi Paganini

(Security Affairs – WannaCry ransomware, healthcare)

medianet_width = “600”;
medianet_height = “120”;
medianet_crid = “757750211”;
medianet_versionId = “111299”;
(function() {
var isSSL = ‘https:’ == document.location.protocol;
var mnSrc = (isSSL ? ‘https:’ : ‘http:’) + ‘//contextual.media.net/nmedianet.js?cid=8CU5BD6EW’ + (isSSL ? ‘&https=1’ : ”);
document.write(”);
})();

The post Medical Devices infected by WannaCry Ransomware in US hospitals appeared first on Security Affairs.

Source: Security affairs

A new round of the weekly SecurityAffairs newsletter arrived!

The best news of the week with Security Affairs.

First of all, let me inform you that at the #infosec16 SecurityAffairs was awarded as The Best European Personal Security Blog
http://securityaffairs.co/wordpress/48202/breaking-news/securityaffairs-best-european-personal-security-blog.html

·      Experts at RedSocks analyzed the massive WannaCry Ransomware attack
·      Security Affairs newsletter Round 110 – News of the week
·      What about WannaCry 2.0? Improvements of the ransomware code would have unpredictable consequences
·      BAIJIU Malware abuses Japanese Web hosting service to target North Korea
·      Its Monday, how to avoid being infected with the WannaCry ransomware
·      Massive WannaCry ‘Ransomware hits almost 150 countries around the world. How to avoid it?
·      Vault7 – Wikileaks published documentation for AfterMidnight and Assassin malware
·      APT32, a new APT group alleged linked to the Vietnamese Government is targeting foreign corporations
·      Cyber criminals claim to have stolen the new episode of the Pirates of the Caribbean film saga
·      Security experts link WannaCry ransomware to Lazarus Group
·      WannaCry – Important lessons from the first NSA-powered ransomware cyberattack
·      Bell Canada hacked, 1.9 million customer account details stolen by hackers
·      CISCO start assessing its products against the WannaCry Vulnerability
·      Shadow Brokers are back after WannaCry case, it plans to offer data dump on monthly subscription model
·      Some machines cant be infected by WannaCry because they have been already infected by Adylkuzz
·      The Electronic signature technology provider DocuSign suffered a data breach
·      A critical Improper Authentication vulnerability in Uber allowed password reset for any account
·      Critical SQL Injection CVE-2017-8917 vulnerability patched in Joomla, update it now!
·      While Trump confirms information sharing with Russians, CIA and NSA leaks threaten Global Security
·      Zomato Data breach – Nearly 17 million usernames and hashed passwords stolen
·      HTTPs Phishing sites are increasing, it is the reaction to browser improvements
·      Wanadecrypt allows to recover files from Windows XP PCs infected by WannaCry without paying ransom
·      WikiLeaks revealed CIA Athena Spyware, the malware that targets all Windows versions
·      WordPress 4.7.5 release addresses six security vulnerabilities
·      Alleged Russian state-sponsored hackers behind Baltic energy networks
·      Stegano Exploit Kit now uses the Diffie-Hellman Algorithm
·      UIWIX, the Fileless Ransomware that leverages NSA EternalBlue Exploit to spread

Hurry up, subscribe to the newsletter, next Sunday you will receive all the news directly in your inbox.I desire to inform you that Security Affairs is now open to sponsored content.
I’ll offer the opportunity to:
•    Insert banners of various sizes in all the posts on Security Affairs.
•    Publish sponsored posts written by the customers that can include any kind of commercial reference.
•    Arrange a monthly/quarterly/annual campaign (for big customers) to advertise customers’ activities and discoveries.
For more info contact me at [email protected]
Thanks for supporting Security Affairs.

(function() {
if (!window.mc4wp) {
window.mc4wp = {
listeners: [],
forms : {
on: function (event, callback) {
window.mc4wp.listeners.push({
event : event,
callback: callback
});
}
}
}
}
})();

newsletter

Once again thank you!

medianet_width=’300′; medianet_height= ‘250’; medianet_crid=’762221962′;

Pierluigi Paganini

(Security Affairs – Newsletter)

medianet_width = “600”;
medianet_height = “120”;
medianet_crid = “757750211”;
medianet_versionId = “111299”;
(function() {
var isSSL = ‘https:’ == document.location.protocol;
var mnSrc = (isSSL ? ‘https:’ : ‘http:’) + ‘//contextual.media.net/nmedianet.js?cid=8CU5BD6EW’ + (isSSL ? ‘&https=1’ : ”);
document.write(”);
})();

The post Security Affairs newsletter Round 111 – News of the week appeared first on Security Affairs.

Source: Security affairs

Security experts at threat intelligence firm Record Future have found a clear link between APT3 cyber threat group and China’s Ministry of State Security.

The curtain has been pulled back a little on the Chinese Intelligence Agency intelligence gathering structure — and it includes private security contractors and the network vendor supply chain.

In 2010, security vendor FireEye identified the Pirpi Remote Access Trojan (RAT) which exploited a then 0-day vulnerability in Internet Explorer versions 6, 7 and 8. FireEye named the threat group APT3 which has also been described as TG-0100, Buckeye, Gothic Panda, and UPS and described them as “one of the most sophisticated threat groups” being tracked at the time.

Since then, APT3 has been actively penetrating corporations and governments in the US, UK and most recently Hong Kong — and everyone has been trying to figure out who they are. APT3 functions very differently than 3LA, the former Chinese military hacking organization leading to the assumption that APT3 is not part of the military complex. At least not officially.

On May 9th, 2017, an unknown party using the alias ‘intrusiontruth’ published a series of blogs posts describing connections between the Pirpi RAT command and control components and shareholders of the Chinese security contractor Guangzhou Boyu Information Technology Company, aka Boyusec.

“On May 9, a mysterious group calling itself “intrusiontruth” identified a contractor for the Chinese Ministry of State Security (MSS) as the group behind the APT3 cyber intrusions.” states the analysis published by Recorder Future.

The names of two specific shareholders of Boyusec appear in the domain registration for the Pirpi C&C servers.  This is particularly interesting because Boyusec supports the Chinese Ministry of State Security (MSS) by collecting civilian human intelligence. Think of them as an outsourcer for a government agency like the United States’ National Security Agency (NSA).

Also interesting is that in 2016 a Pentagon report described the relationship between Boyusec and network equipment manufacturer, Huawei. According to the report, the two companies were colluding to develop security equipment with embedded backdoors which would likely be used by Boyusec to compromise Huawei customers.

“In November 2016, the Washington Free Beacon reported that a Pentagon internal intelligence report had exposed a product that Boyusec and Huawei were jointly producing.” continues the analysis.”According to the Pentagon’s report, the two companies were working together to produce security products, likely containing a backdoor, that would allow Chinese intelligence “to capture data and control computer and telecommunications equipment.” The article quotes government officials and analysts stating that Boyusec and the MSS are “closely connected,” and that Boyusec appears to be a cover company for the MSS.”

To protect our networks, it is important to assess the threats. An important part of threat assessment is to anticipate the motivation of the attackers. APT3 has demonstrated above average skills and has been active for a long time. Add ties to the network vendor supply chain and you have the makings of a dangerous adversary. As part of the Chinese MSS structure you can start to guess at motivation. With this new information, it is a good time to reassess your threat model.

APT3 China

“The implications are clear and expansive. Recorded Future’s research leads us to attribute APT3 to the Chinese Ministry of State Security and Boyusec with a high degree of confidence. Boyusec has a Boyusec has a documented history of producing malicious technology and working with the Chinese intelligence services.” concludes the analysis.

About the author:  Steve Biswanger has over 20 years experience in Information Security consulting, and is a frequent speaker on risk, ICS and IoT topics. He is currently Director of Information Security for Encana, a North American oil & gas company and sits on the Board of Directors for the (ISC)2 Alberta Chapter.

 

 

medianet_width=’300′; medianet_height= ‘250’; medianet_crid=’762221962′;

Edited by Pierluigi Paganini

(Security Affairs – APT3, cyber espionage)

medianet_width = “600”;
medianet_height = “120”;
medianet_crid = “757750211”;
medianet_versionId = “111299”;
(function() {
var isSSL = ‘https:’ == document.location.protocol;
var mnSrc = (isSSL ? ‘https:’ : ‘http:’) + ‘//contextual.media.net/nmedianet.js?cid=8CU5BD6EW’ + (isSSL ? ‘&https=1’ : ”);
document.write(”);
})();

The post Researchers found a link between the APT3 Threat Group and the Chinese Intelligence Agency appeared first on Security Affairs.

Source: Security affairs

Enlarge (credit: Simon Ridgway/BBC)

This is a post-UK broadcast review of Doctor Who: Extremis. River Song always warned the Doctor against spoilers, so be sure to watch the episode first. Doctor Who, season 10, airs on Saturdays at 7:25pm UK time on BBC One, and 9pm EDT on BBC America.

Doctor Who showrunner Steven Moffat clearly wants to go out in style: might he achieve that plan with a trilogy—starting with Extremis—that brings us mysterious new enemies known only as The Monks, who are plotting to conquer Earth with the help of a simulated computer game?

VR might not have taken off in the real world yet and, in my view, looks set to join the ’80s versions of the headsets in the Woolworths bargain bin (remember that?). But in Extremis, the tech is used imaginatively to create a nightmarish vision that aligns with space billionaire Elon Musk’s insistence that there’s a “one in billions” chance we’re not living in a simulated universe.

Read 18 remaining paragraphs | Comments

Source: http://feeds.arstechnica.com/arstechnica/index/