Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: Information Security News - SANS Internet Storm Center Information Security News


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Popular News

2 days ago Your desktop 3D printer is really an IoT device in disguise

ZDNet View Synopsis+1
There is a double-edged sword to having internet-enabled 3D printers. Like other IoT devices, they may open potential back doors for hacking and breaches.

2 days ago Microsoft seeks to capitalize on recent spate of MongoDB ransomware with its DocumentDB pitch

ZDNet View Synopsis+1
Microsoft is looking to win over MongoDB users who may have been affected by the latest ransomeware attacks with its Azure DocumentDB alternative.

2 days ago Video: How IBM's new Watson cybersecurity solution can drastically speed up incident response

TechRepublic View Synopsis+1
At RSA 2017, we caught up with IBM's Diana Kelley and learned how Watson's security-expert-as-a-service can enhance the work that CISOs and other security professionals are doing.

2 days ago Indonesia diplomats meet with woman arrested in Kim killing

Yahoo Security View Synopsis+1

JAKARTA, Indonesia (AP) - Indonesian diplomats have met with a woman arrested in Malaysia for suspected involvement in the killing of the North Korean leader's half brother and confirmed she is an Indonesian citizen, officials said Thursday.

Top News

8 hours ago Explosive blog post details "˜abhorrent' sexism at Uber

Yahoo Security View Synopsis+1

In a blog post published Sunday, former Uber engineer Susan Fowler Riggetti details her experiences working for the company. Sadly, given she's a female engineer working at a thrusting, big-name Silicon Valley startup, the experiences are exactly what you'd expect.

In the post, Riggetti details numerous instances of overt sexist behaviour. She reportedly sent evidence, including email and chat logs to HR, but ran into a brick wall multiple times. In the end, she says that her attempts to quietly report sexist behaviour were turned against her:

I forwarded this absurd chain of emails to HR, and they requested to meet with me shortly after. I don't know what I expected after all of my earlier encounters with them, but this one was more ridiculous than I could have ever imagined. The HR rep began the meeting by asking me if I had noticed that *I* was the common theme in all of the reports I had been making, and that if I had ever considered that I might be the problem. I pointed out that everything I had reported came with extensive documentation and I clearly wasn't the instigator (or even a main character) in the majority of them - she countered by saying that there was absolutely no record in HR of any of the incidents I was claiming I had reported (which, of course, was a lie, and I reminded her I had email and chat records to prove it was a lie). She then asked me if women engineers at Uber were friends and talked a lot, and then asked me how often we communicated, what we talked about, what email addresses we used to communicate, which chat rooms we frequented, etc. -  an absurd and insulting request that I refused to comply with. When I pointed out how few women were in SRE, she recounted with a story about how sometimes certain people of certain genders and ethnic backgrounds were better suited for some jobs than others, so I shouldn't be surprised by the gender ratios in engineering. Our meeting ended with her berating me about keeping email records of things, and told me it was unprofessional to report things via email to HR.

Beyond the reports to HR, Riggetti also details a company overrun with internal politics and management problems:

In the background, there was a game-of-thrones political war raging within the ranks of upper management in the infrastructure engineering organization. It seemed like every manager was fighting their peers and attempting to undermine their direct supervisor so that they could have their direct supervisor's job. No attempts were made by these managers to hide what they were doing: they boasted about it in meetings, told their direct reports about it, and the like.

Shortly after the blog post was published, Uber CEO Travis Kalanick issued a statement promising a (secret, internal) investigation into the matter, and reaffirmed Uber's committment to a equitable workplace where everyone isn't trying to stab each other in the back:

"I have just read Susan Fowler's blog. What she describes is abhorrent and against everything Uber stands for and believes in. It's the first time this has come to my attention so I have instructed Liane Hornsey our new Chief Human Resources Officer to conduct an urgent investigation into these allegations. We seek to make Uber a just workplace and there can be absolutely no place for this kind of behavior at Uber -- and anyone who behaves this way or thinks this is OK will be fired."

This isn't the first time that Uber has run into human resources problems within its internal teams and management. In 2014, an Uber exec famously suggested digging up dirt on journalists to discredit them. That statement came in response to a journalist who had accused Uber of sexism once again.

More recently, #DeleteUber trended on Twitter after Uber removed surge pricing at JFK airport during a taxi strike -- a strike that was in protest of President Trump's Muslim travel ban. The same hashtag is trending again tonight following Riggetti's blog post.

4 hours ago Connected car in the second-hand lot? Don't buy it if you're not hack-savvy

The Register View Synopsis+1
The first owner might still have access. And the second. And so on

Cars are smart enough to remember an owner, but not smart enough to forget one - and that's a problem if a smart car is sold second-hand.

1 hour ago Ukrainian Cybercriminal Sentenced to Prison in U.S.

SecurityWeek View Synopsis+1

Hacker Who Tried to Get Revenge on Brian Krebs for Exposing Him Sentenced to Prison

9 hours ago Did you want a side of SLBS with your software or hardware FUD? (BD2017)

IT Toolbox Blogs View Synopsis+1
Whats the issue with SLBS? Simple, on the one hand, there is no such thing as software that does not need hardware somewhere in the stack. Second, many purveyors of SLBS are solutions that in the past would have been called shrink-wrap. Thirdly IMHO SLBS tends to take away from the real benefit or story of some solutions that can also prompt questions or thoughts of if there are other FUD (fear uncertainty

17 hours ago Scam Alert: Anatomy Of An Inheritance Fraud Letter

Forbes View Synopsis+1
We got a letter in the mail the other day saying my wife inherited $7 million. Here's how I could tell it was a scam in a heartbeat.

15 hours ago "Secure" Trump website defaced by hacker claiming to be from Iraq

ArsTechnica View Synopsis+1
"Pro_Mast3r" takes over server associated with campaign donations,

1 day ago "Windows as a service" means big, painful changes for IT pros

ZDNet View Synopsis+1
Everything you know about Windows deployment is undergoing wrenching changes. For IT pros who've grown accustomed to "set it and forget it" as a management strategy, three big changes are making life much more challenging.

Latest News

1 hour ago Ecuador in vote that could alter Assange's fate

Yahoo Security View Synopsis+1

Oil-rich Ecuador votes Sunday in general elections that could lead to fugitive Wikileaks founder Julian Assange being evicted from the country's London embassy. Socialist presidential candidate Lenin Moreno, who leads in opinion polls, favors continuing to grant the Australian whistleblower asylum, which was granted to him under outgoing leader Rafael Correa. Under Correa, Ecuador grabbed world headlines when it defied the United States by granting Assange refuge as he fights against Swedish rape charges.

1 hour ago Photos of the day - February 19, 2017

Yahoo Security View Synopsis+1

Luisa Bodem competes during the women's long jump event at the German indoor athletics in Leipzig, Germany; members of the Iraqi rapid response forces fire a missile toward Islamic State militants during a battle in the south of Mosul; Kurt Busch, driver of the (41) Monster Energy/Haas Automation Ford, is involved in an on-track incident during the weather delayed Monster Energy NASCAR Cup Series Advance Auto Parts Clash at Daytona International Speedway. These are some of the photos of the day. (AP/EPA/Getty/Reuters) See more news-related photo galleries and follow us on Yahoo News Photo Tumblr.

1 hour ago One huge step: Trump's plans to privatize "˜low Earth orbit' and send NASA into deep space

Yahoo Security View Synopsis+1

In perhaps the most poetic passage from his inaugural address, President Trump said, "We stand at the birth of a new millennium, ready to unlock the mysteries of space." So, how does Trump intend to do that? Former Congressman Robert Walker, R-Pa., who was tapped to draft Trump's space policy during the campaign, spoke to Yahoo News about the administration's plan to place "low Earth orbit" missions predominantly in the hands of the private sector, with exceptions for military and intelligence satellites. A number of private entities, such as Axiom Space and Bigelow Aerospace, are interested in creating commercial space stations and have technologies under development - such as constellations of satellites for Earth observation or new communications tools - that they believe can be profitable in low Earth orbit, the region of space up to an altitude of about 1,200 miles.

10 hours ago Google bellows bug news after Microsoft sails past fix deadline

The Register View Synopsis+1
Mess in Windows graphics library can give bad hombres access to memory

Google's Project Zero has again revealed a Windows bug before Microsoft fixed it.