New Security Flaw Found in LTE Standard
Researchers have recently discovered a new security vulnerability affecting all 4G LTE networks. The so-called "aLTEr" attack could allow someone nearby to send your phone's browser to a web site different than the one requested, impersonating your bank's web site, for example. Similarly, it could trick an app into connecting to a different back-end service. aLTEr requires that the attacker use $4,000 equipment and be within about a mile of the victim, among other challenges. Although a successful attack is difficult, it could be used against high-value targets such as politicians, military personnel, journalists, employees of corporate rivals, etc. The flaw is inherent in the LTE standard and unlikely to be fixed. However, because aLTEr relies on DNS spoofing, it can be avoided by only using web sites and services that employ both HTTPS and DNSSEC. Currently, less than 1% of .com web sites employ DNSSEC, although many high-value sites do use it.
Researchers Say WiFi Vulnerability Impacts Nearly Everything
Oct 16, 2017
Researchers say they've found a serious gap in the WPA2 security protocol that can allow hackers to use k ey r einstallation a tta cks (KRACKs) to compromise most WiFi devices. The researchers say the method allows hackers to read encrypted information transiting via WiFi, including passwords, emails, photos, credit card numbers, and more.
Zelle P2P Payment App Reaches Consumers September 12
Sep 8, 2017
Zelle today said its mobile peer-to-peer payment application will reach the Google Play Store and iTunes App Store on Tuesday, September 12. The service has been in testing since June.
Samsung Galaxy S7 Susceptible to Meltdown Attacks
Aug 8, 2018
The Samsung Galaxy S7 has a serious security flaw, according to researchers from Austria’s Graz Technical University. A microchip security issue leaves the S7 open to Meltdown attacks.
Zelle Promises Quick P2P Payments Via Mobile Banking Apps
Jun 12, 2017
Many of today's popular mobile banking apps will soon support a rapid person-to-person (P2P) payment feature through a new service called Zelle. Zelle, developed by Early Warning Systems, is supported by more than 30 of the nation's largest banks for sending funds from one person to another.
Facebook Facial Recognition Tool Lets You Find Yourself In Untagged Photos
Dec 19, 2017
Facebook today rolled out a new feature meant to help people control when and where their image is posted to Facebook. Using the same facial recognition functions meant for tagging, Facebook will now notify people when they appear in a photo on Facebook even if they haven't been tagged.