Flash doesn’t get a lot of love these days, but it’s still ubiquitous on the web. To make displaying Flash content safer for its users, Google just announced that it is now putting the Flash Player plug-in it ships with Chrome for Windows (including the aging Windows XP) inside a new and enhanced sandbox “that’s as strong as Chrome’s native sandbox, and dramatically more robust than anything else available.” Besides the security advantages, Google also stresses that this change will reduce Flash crashes by about 20%.
In response to a security breach, Dropbox promised to add an optional new layer of security known as two factor authentication. If you want to add two factor authentication to your own app but don’t know where to start, you’re in luck: Authy is a YCombinator backed startup launching today that makes it easy to add optional two factor authentication to your application. You just add some API calls to your app and your users will be able to use their phones as a second layer of authentication.
Earlier this year French entrepreneur Ramine Darabiha called for a cypherpunk revival. Looks like he might be getting his wish.
Cryptosphere is a new darknet now under development. A darknet is a private and/or anonymous network, sometimes using the public internet for connectivity. Silk Road, a marketplace for illegal drugs, is probably the most famous. You can’t use Cryptosphere yet, but eager hackers can take an early look at what’s done so far in Github.
Hacking, viruses, megabreaches and other cybercriminal activity are on the increase, and cybersecurity specialists Bit9 has today announced a significant round of funding to help fight it.
Bit9, which works with 30 of the Fortune 100 companies, Raised its biggest round yet, a $34.5 million Series D led by new investor Sequoia Capital, with participation from existing investors Atlas Venture, Highland Capital Partners, Kleiner Perkins Caufield & Byers, and .406 Ventures.
Facebook shares tumble, company triples lobbying spending, expands bug bounty program and more on this week’s roundupPosted by Brittany Darwell, under Facebook, finance, Government, Security
Facebook stock drops 11 percent – Facebook shares closed at $23.70 today, down significantly since the company’s second quarter earnings call on Thursday. The company met analysts’ expectations with $1.184 billion in revenue, but many investors are underwhelmed by the the … Continue reading →
Amid fierce smartphone competition between Samsung and Apple that has spilled into a multinational patent battle, it looks like Apple may have opened yet another front on the M&A side: it is buying mobile security company AuthenTec — which had only just signed a deal with Samsung for Android devices — for $356 million.
AuthenTec, among other things, makes fingerprint sensor chips that are used for security and identification purposes; these are embedded in computing devices. The news was first reported by Reuters; the full announcement was filed with the SEC.
Dropbox says it hasn’t found intrusions into its internal systems or any cases of unauthorized activity in user accounts. Earlier this week, the company appeared to be suffering from what looked like a security breach. Users, mainly those based in Europe, were being sent unsolicited spam emails related to European casino scams. It was unclear how they had been targeted, since many users claimed their email was a unique and private address they were only using on Dropbox itself. The situation seemed to be serious, as Dropbox announced on Wednesday it had hired outside experts to aid in the investigation.
AlienVault Grabs $22M From Kleiner, Sigma To Bring Open Source Security To Government, Higher Ed & MorePosted by Rip Empson, under AlienVault, Enterprise, Fundings & Exits, Kleiner Perkins, Security, Sigma Partners, startups, TC
Over the last few years, we’ve seen an increase in the number of high profile hacks and cyber attacks and, as a result, both government and enterprise finally began making security a priority and addressing it from the top down. AlienVault, a California and Madrid-based startup that provides unified management of critical security systems across networks, like threat detection, vulnerability assessment, and security intelligence, has been among those to benefit from the security market’s recent growth.
In January, its traction enabled it to steal seven senior security executives away from HP and secure $8 million in series B financing from Trident Capital and others. Today, the cyber security startup is adding another big chunk of change to its coffers, announcing that it has closed a $22.4 million series C round, led by Kleiner Perkins Caufield & Byers (KPCB) and Sigma Partners.
A while back we wrote about a flaw in Groupon’s email link encryption, which revealed the emails of some Groupon users when “addx” was added into a Google search of Groupon’s site. We’ve been alerted that is still happening, with about 170 emails coming up when we searched (last time around it was less than 80).
When this last happened, Groupon director of engineering Shinji Kuwayama told us that the emails were made public because some subscribers had “pasted their deals into publicly-crawlable pages around the Web,” but also that it was working on a solution to exclude those results. So why these are appearing now is unclear. We’re contacting Groupon to see if there is an explanation.
Gartner estimates that more than 10 percent of small businesses have been the victim of theft and/or fraud, with losses totaling more than $2 billion. That’s because small businesses are more or less forced to rely on a variety of ad hoc and manual processes, paper checks and online bill pay systems, which mean complexity, higher security risks and less control. MineralTree emerged out of stealth mode last November to come to the rescue of small businesses.