A phishing scam that surfaced earlier this week used Google Docs in an attack against at least 1 million Gmail users.
However, that amounted to fewer than 0.1 percent of Gmail users were affected, according to the company.
Google last year put the number of active monthly Gmail users at more than 1 billion.
Google shut down the phishing scam within an hour, it said, through both automatic and manual actions. It removed the fake pages and applications, and it pushed updates through Safe Browsing, Gmail and other anti-abuse systems.
Just as the Shadow Brokers hacker group started crowing about a dump of never-seen-before flaws in Windows, Microsoft announced it already had fixed most of the exploits.
“Today, Microsoft triaged a large release of exploits made publicly available by Shadow Brokers,” Microsoft Principal Security Group Manager Phillip Misner wrote in a Friday post.
“Our engineers have investigated the disclosed exploits, and most of the exploits are already patched,” he added.
Following WikiLeaks’ publication earlier this week of classified documents stolen from the CIA, major technology companies, including Apple, Samsung, Microsoft and Cisco, have been scrambling to assess the risks posed to their customers by the revelations.
The so-called “Vault 7” leak includes information about methods and tools the CIA crafted to hack into products produced by those companies.
Apple’s initial analysis reportedly showed that many of the issues identifed in iOS already were patched in the latest version of the software.
President Donald J. Trump has continued to use his personal Android smartphone despite security concerns, The New York Times reported Wednesday.
Trump was concerned about losing access to his personal phone even prior to taking his oath of office, the Times reported last fall, citing unnamed aides who told reporters he worried about how isolated he could become in the White House without his phone to keep in touch with friends.
The president told a friend he had given up his phone as security officials urged him to do, the AP reported last week. It was unclear whether he would be using a heavily modified BlackBerry like the phone President Barack Obama carried, however.
The medical revolution that has arisen at the intersection of health care and technology has doctors and patients alike celebrating, but this age of increased connectivity carries with it a few risks. To address the potential dangers of connected medical devices, the Food and Drug Administration has recently released a draft guidance aimed at helping medical device manufacturers keep their patients safe and the public health protected.
According to the press release about the new guidelines, the document “details the agency’s recommendations for monitoring, identifying, and addressing cybersecurity vulnerabilities in medical devices once they have entered the market.”
What’s the best way to recover from a very public security meltdown? Offer your own security services to the government, of course! At least, that seems to be the approach of the Hacking Team, a spyware vendor that was itself successfully attacked earlier this year, resulting in the loss of some 400 GBs of confidential information. But keeping to what is clearly a “go big or go home” attitude, the Hacking Team is bounding back into the national spotlight by offering hacking tools to American law enforcement agencies.
Using a fair amount of fear-mongering (after all, the Hacking Team knows firsthand how prevalent cyber-attacks are), the private company sent an email to current and existing customers of October 19, writing, “Most [law enforcement agencies] in the US and abroad will become ‘blind,’ they will ‘go dark:’ they will be simply be [sic] unable to fight vicious phenomena such as terrorism. Only the private companies can help here, we are one of them.”