FragAttacks Foil 2 Decades of Wireless SecurityWireless security protocols have improved, but product vendors continue to make implementation errors that allow a variety of attacks.
Golang Cryptomining Worm Offers 15% Speed BoostThe latest variants of the Monero-mining malware exploit known web server bugs and add efficiency to the mining process.
Amazon Kindle Vulnerable to Malicious EBooksPrior to a patch, a serious bug could have allowed attackers to take over Kindles and steal personal data.
Week in security with Tony Anscombe
ESET research dissects IIS web server threats – How IIStealer steals credit card data – The flood of spam in your inbox
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
Black Hat 2021: Lessons from a lawyer
Why companies and their security teams need to engage with a lawyer before an incident occurs
The post Black Hat 2021: Lessons from a lawyer appeared first on WeLiveSecurity
Critical Cisco Bug in VPN Routers Allows Remote TakeoverSecurity researchers warned that at least 8,800 vulnerable systems are open to compromise.
Black Hat 2021: Wanted posters for ransomware slingers
Is the net closing in on cyber-extortionists and can bounties on their collective heads ultimately help stem the ransomware scourge?
The post Black Hat 2021: Wanted posters for ransomware slingers appeared first on WeLiveSecurity
Researchers Call for 'CVE' Approach for Cloud VulnerabilitiesNew research suggests isolation among cloud customer accounts may not be a given -- and the researchers behind the findings issue a call to action for cloud security.
Zoom Settlement: An $85M Business Case for Security InvestmentZoom’s security lesson over end-to-end encryption shows the costs of playing cybersecurity catchup.
Angry Affiliate Leaks Conti Ransomware Gang PlaybookThe data includes IP addresses for Cobalt Strike C2 servers as well as an archive including numerous tools and training materials for the group, revealing how it performs attacks.
IIStealer: A server‑side threat to e‑commerce transactions
The first in our series on IIS threats looks at a malicious IIS extension that intercepts server transactions to steal credit card information
The post IIStealer: A server‑side threat to e‑commerce transactions appeared first on WeLiveSecurity
Anatomy of native IIS malware
ESET researchers publish a white paper putting IIS web server threats under the microscope
The post Anatomy of native IIS malware appeared first on WeLiveSecurity