Security firm Arbor Networks is reporting that it has discovered a botnet made up of IoT devices attacking institutions in Brazil with up to 400G bps of attack traffic.

For the 400G-bps IoT botnet that is attacking Brazil, Arbor Networks' analysis revealed that attackers were able to abuse Telnet ports on vulnerable devices. Telnet use has long been deprecated as a best practice by IT security professionals as it is an unencrypted approach for remote access.

Soluk said that in this case it was the fact that Telnet was left open along with a default username and password that allowed the devices to be so trivially co-opted into the botnet.

It's a familiar pattern for open source projects that have become the property of Oracle. It started with OpenSolaris and continued with OpenOffice.org. And this time, it's happening to Java—more specifically to Java Enterprise Edition (Java EE), the server-side Java technology that is part of hundreds of thousands of Internet and business applications.

Given Oracle's track record with open source projects—more specifically, the trail of dead or forked projects the company has left in its wake—there has been ample reason for concern about Java.

We already knew that Hillary Clinton's e-mail and mobile device issues were likely a pain for State Department employees—and even some foreign governments. But new testimony recorded on Tuesday by one of Clinton's top aides illuminates the extent of those headaches.

Abedin discussed an e-mail exchange with Clinton in which Abedin encouraged the secretary to either get and use a State.gov e-mail address or to have her clintonemail.com address added to the State Department's e-mail directory.

Back in November, the social network was ordered by a Belgian court to kill tracking cookies within 48 hours for people not signed up to – or logged into – its service, or face a daily fine of €250,000.

The Belgian Privacy Commission is not pleased, but has yet to say whether it will take the case further. Meanwhile, Facebook is delighted: "We are pleased with the court's decision and look forward to bringing all our services back online for people in Belgium," it said in a statement.

Microsoft officials said late on June 27 that the new update experience -- with clearer "upgrade now, schedule a time, or decline the free offer" -- will start rolling out this week. Microsoft will also revert to making clicking on the Red X at the corner of the Windows 10 update box dismiss the update, rather than initiate it, as it has done for the past several weeks.

Microsoft officials said they are making the change "in response to customer feedback".

When outreach to Microsoft’s customer support didn’t fix the issue, Goldstein took the software giant to court, seeking compensation for lost wages and the cost of a new computer.

She won. Last month, Microsoft dropped an appeal and Goldstein collected a $10,000 judgment from the company.

Microsoft says most users would be better served by Windows 10, which is more secure than its predecessors, including the 6-year-old Windows 7. Security experts tend to agree.

Since 2011, the bureau has quietly been using this system to compare new images, such as those taken from surveillance cameras, against a large set of photos to look for a match. That set of existing images is not limited to the FBI’s own database, which includes some 30 million photos. The bureau also has access to face recognition systems used by law enforcement agencies in 16 different states, and it can tap into databases from the Department of State and the Department of Defense.

Deploying face recognition is the “logical next step” in the FBI’s use of biometrics, says Anil Jain, a professor of computer science and engineering and head of the biometrics research group at Michigan State University.

The vote by the British people to leave the European Union is causing much hand-wringing at home and abroad, but nobody actually knows what effects the decision will have on the global tech industry.

But as soon as the votes were counted, all sorts of pronouncements were rapidly aired, nearly all without any basis in fact. The reason for the lack of facts is that major national and political secessions are fairly rare in Western history.

HTML5 was officially released in October 2014, and slowly but surely, it started to replace Flash in the advertising market, where many ad networks such as Google and Amazon announced they'd stop taking static Flash ads, even if still allowing Flash for video ads.

A malicious ad creator can use their ability to send third-party JavaScript to the ad via AdParameter values. Instead of user tracking code or ad delivery instructions, they can very easily deliver malicious code instead. At no point does it matter to them if the ad was created in Flash or HTML5.

Another day, another rumor that Apple is going to ditch the headphone jack on the next iPhone in favor of sending out audio over Lightning.

But just face facts: ditching the headphone jack on phones makes them worse, in extremely obvious ways.