Canon hit by Maze Ransomware attack, 10TB data allegedly stolen

​Canon has suffered a ransomware attack that impacts numerous services, including Canon's email, Microsoft Teams, USA website, cloud photo and video storage service, and other internal applications. BleepingComputer has been tracking a suspicious outage on Canon's image.canon cloud photo and video storage service resulting in the loss of data for users of their free 10GB storage feature.

BleepingComputer

Hackers Get Green Light to Test U.S. Voting Systems

Election Systems & Software LLC, the top U.S. seller of voting-machine technology, is calling a truce in its feud with computer-security researchers over the ways they probe for vulnerabilities of the company's systems. With the U.S.

WSJ

A new technique can detect newer 4G 'stingray' cell phone snooping

Security researchers say they have developed a new technique to detect modern cell-site simulators. Cell site simulators, known as "stingrays," impersonate cell towers and can capture information about any phone in its range - including in some cases calls, messages and data.

TechCrunch

What Are Stingrays and Dirtboxes?

protesters around the country have marched against police brutality and in support of the Black Lives Matter movement, activists have spotted a recurring presence in the skies: mysterious Since May, as planes and helicopters hovering overhead, apparently conducting surveillance on protesters.

The Intercept

Open Source Security Foundation (OpenSSF)

Open source software has become pervasive in data centers, consumer devices, and services, representing its value among technologists and businesses alike. Because of its development process, the OSS that ultimately reaches end users has a chain of contributors and dependencies.

Open Source Security Foundation

Join the DEFCON Discord Server!

Check out the DEFCON community on Discord - hang out with 13,267 other members and enjoy free voice and text chat.

Discord

TikTok: Logs, Logs , Logs

When debugging something, 90% of the work is being able to reproduce it. So, first I tried to reproduce the issue. I downloaded the latest version of TikTok from the French PlayStore I set up Burp Suite to intercept the network requests made by my phone I used a Frida script to bypass the SSL pinning implemented in the app and started TikTok Bingo!

Medium

Announcing the Expansion of the Clean Network to Safeguard America's Assets - United States Department of State

The Clean Network program is the Trump Administration's comprehensive approach to guarding our citizens' privacy and our companies' most sensitive information from aggressive intrusions by malign actors, such as the Chinese Communist Party (CCP). Today, I am announcing the launch of five new lines of effort to protect America's critical telecommunications and technology infrastructure.

United States Department of State

Drizly Breach Hit 2.5 Million Customer Accounts

Alcohol delivery startup Drizly has suffered a major breach of customer data, with nearly 2.5 million accounts compromised in an incident discovered earlier this month. The firm - which describes itself as the world's largest marketplace for beers, wines and spirits - partners with retail stores in over 100 North American cities.

Infosecurity Magazine

FBI warns organisations of increased security risks due to devices running Windows 7

The US Federal Bureau of Investigation (FBI) has published a Private Industry Notification (PIN) warning private enterprises of increased security risks for their networks due to devices still running Windows 7 despite it reaching end of life earlier this year. "The FBI has observed cyber criminals targeting computer network infrastructure after an operating system achieves end of life status.

Computing