Cybersecurity News


‘Cardplanet’ Operator Sentenced to 9 Years for Selling Stolen Credit Cards

‘Cardplanet’ Operator Sentenced to 9 Years for Selling Stolen Credit Cards The carding store victimized mainly U.S. citizens and is responsible for $20 million in fraudulent purchases.
26 June 2020

Major US Companies Targeted in New Ransomware Campaign

Evil Corp. group hit at least 31 customers in campaign to deploy WastedLocker malware, according to Symantec.
26 June 2020

Docker servers infected with DDoS malware in extremely rare attacks

Most Docker servers are usually infected with cryptocurrency-mining malware.
26 June 2020

5 New InfoSec Job Training Trends: What We're Studying During COVID-19

5 New InfoSec Job Training Trends: What We're Studying During COVID-19 With the pandemic uprooting networks and upending careers, which security skills are hot -- and which are not?
26 June 2020

Satori Botnet Creator Sentenced to 13 Months in Prison

Satori Botnet Creator Sentenced to 13 Months in Prison The creator of the Satori/Okiru, Masuta and Tsunami/Fbot botnets has been sentenced to prison for compromising hundreds of thousands of devices.
26 June 2020

Good Cyber Hygiene in a Pandemic-Driven World Starts with Us

Three ways that security teams can improve processes and collaboration, all while creating the common ground needed to sustain them.
26 June 2020

Good Cyber Hygiene in a Post-Pandemic World Starts with Us

Three ways that security teams can improve processes and collaboration, all while creating the common ground needed to sustain them.
26 June 2020

SOC Wins & Losses

While the security operations center is enjoying a higher profile these days, just one-fourth of security operations centers actually resolve incidents quickly enough.
26 June 2020

Week in security with Tony Anscombe

Android ransomware posing as a COVID-19 tracing app – Ill-trained and ill-equipped newly-minted remote workers – How Bitcoin giveaway scams misuse Elon Musk's name

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

26 June 2020

TikTok To Stop Clipboard Snooping After Apple Privacy Feature Exposes Behavior

TikTok To Stop Clipboard Snooping After Apple Privacy Feature Exposes Behavior App will stop reading users’ device cut-and-paste data after a new banner alert in an Apple update uncovered the activity.
26 June 2020

Credit card skimmers are now being buried in image file metadata on e-commerce websites

Magecart attackers are suspected of using an interesting technique to steal your financial data.
26 June 2020

More than 75% of all vulnerabilities reside in indirect dependencies

JavaScript, Ruby, and Java are the ecosystems with most bugs in indirect dependencies.
26 June 2020

Nvidia squashes display driver code execution, information leak bugs

The vulnerabilities impact both Windows and Linux machines.
26 June 2020

What is a password manager and why is it useful?

A password manager can make your digital life both simpler and more secure. Are there any downsides to relying on software to create and store your passwords?

The post What is a password manager and why is it useful? appeared first on WeLiveSecurity

26 June 2020

Hosting a Video Conference

When hosting a video conference, make sure you password protect the conference so only authorized individuals can join. If there are any strangers or people who you do not recongize on the call, remove them.
26 June 2020

DDoS botnet coder gets 13 months in prison

Kenneth Schuchman, known as Nexus Zeta, created multiple DDoS botnets, including Satori, Okiru, Masuta, and Fbot/Tsunami.
25 June 2020

New Charges, Sentencing in Satori IoT Botnet Conspiracy

The U.S. Justice Department today criminally charged a Canadian and a Northern Ireland man for allegedly conspiring to build multiple botnets that enslaved hundreds of thousands of routers and other Internet of Things (IoT) devices for use in large-scale distributed denial-of-service (DDoS) attacks. In addition, a defendant in the United States was sentenced to drug treatment and 18 months community confinement for his admitted role in the conspiracy.
25 June 2020

Criminals Turn to IM Platforms to Avoid Law Enforcement Scrutiny

Researchers from IntSights observed a sharp increase in the use of popular instant messaging apps over the past year among threat groups.
25 June 2020

7 Tips for Effective Deception

7 Tips for Effective Deception The right decoys can frustrate attackers and help detect threats more quickly.
25 June 2020

What’s New in PCI SPoC Security Standard Version 1.1?

 

Today, the PCI SSC published a minor revision to the PCI SPoC Security Standard. Version 1.1 of the standard aligns with the recently published PCI PTS POI v6.0, allowing SPoC solutions to work with PCI PTS SCRP devices that support magnetic-stripe readers.

25 June 2020