Become a fan of Slashdot on Facebook

 


Forgot your password?
Close
typodupeerror
×

Submission + - China performing SSL MITM attacks on iCloud

Submitted by IamTheRealMike
IamTheRealMike writes: Anti-censorship blog GreatFire has published a story claiming that SSL connections from inside China to Apple iCloud are being subject to a man in the middle attack, using a self signed certificate. Apple has published a knowledge base article stating that the attacks are indeed occurring, with example screenshots of the SSL cert error screens used by popular Mac browsers. Unfortunately, in China at least one natively produced browser called Qihoo markets itself as "secure", but does not show any certificate errors when presented with the self signed cert. Is this the next step towards China doing systematic SSL MITM attacks, thus forcing their population onto Chinese browsers that allow the surveillance and censorship to occur?

Submission + - The Classic Control Panel in Windows May Be Gone 1

Submitted by jones_supa
jones_supa writes: In Windows 8, there was an arrangement of two settings applications: the Control Panel for the desktop and the PC Settings app in the Modern UI side. With Windows 10, having the two different applications has started to look even more awkward, which has been voiced loud and clear in the feedback too. Thus, the work at Microsoft to unify the settings programs has begun. The traditional Control Panel is being transformed to something temporarily called "zPC Settings" (sic), which is a Modern UI app that melts together the current two settings applications.

Submission + - FDA investigates 24 potentially lethal IoT medical devices (thestack.com)

Submitted by Anonymous Coward
An anonymous reader writes: In the wake of the U.S. Food and Drug Administration’s recent recommendations to strengthen security on net-connected medical devices, the Department of Homeland Security is launching an investigation into 24 cases of potential cybersecurity vulnerabilities in hospital equipment and personal medical devices.

Independent security researcher Billy Rios submiited proof-of-concept evidence to the FDA indicating that it would be possible for a hacker to force infusion pumps to fatally overdose a patient. Though the complete range of devices under investigation has not been disclosed, it is reported that one of them is an 'implantable heart device'.

William Maisel, chief scientist at the FDA's Center for Devices and Radiological Health said: “The conventional wisdom in the past was that products only had to be protected from unintentional threats. Now they also have to be protected from intentional threats too.”

Slashdot Top Deals

"Here's something to think about: How come you never see a headline like `Psychic Wins Lottery.'" -- Comedian Jay Leno

Close