Cybersecurity News


Microsoft Fixes Windows Zero-Day in Patch Tuesday Rollout

Microsoft's monthly security fixes addressed a Win32k zero-day, six publicly known flaws, and three bugs in the Windows TCP/IP stack.
09 February 2021

Fears over DNA privacy as 23andMe goes public in deal with Richard Branson

Fears over DNA privacy as 23andMe goes public in deal with Richard Branson

Genetic testing company with 10 million customers’ data has ‘huge cybersecurity implications’

The genetic testing company 23andMe will go public through a partnership with a firm backed by the billionaire Richard Branson, in a deal that has raised fresh privacy questions about the information of millions of customers.

Launched in 2006, 23andMe sells tests to determine consumers’ genetic ancestry and risk of developing certain illnesses, using saliva samples sent in by mail.

Related: Your DNA is a valuable asset, so why give it to ancestry websites for free? | Laura Spinney

Continue reading...
09 February 2021

Attackers Exploit Critical Adobe Flaw to Target Windows Users

Attackers Exploit Critical Adobe Flaw to Target Windows Users A critical vulnerability in Adobe Reader has been exploited in "limited attacks."
09 February 2021

Microsoft February 2021 Patch Tuesday fixes 56 bugs, including Windows zero-day

Microsoft also warns about three nasty vulnerabilities in the Windows TCP/IP stack.
09 February 2021

SentinelOne Buys Data Analytics Company Scalyr

Cloud-based big data platform boosts extended detection and response (XDR) offering.
09 February 2021

How Neurodiversity Can Strengthen Cybersecurity Defense

Team members from different backgrounds, genders, ethnicities, and neurological abilities are best equipped to tackle today's security challenges.
09 February 2021

Microsoft & Facebook Were Phishers' Favorite Brands in 2020

Cloud services was the most impersonated industry, followed by financial services, e-commerce, and social media, researchers report.
09 February 2021

Request for Comments: PTS HSM Security Requirements v4.0

 

PTS Vendors who are Participating Organizations and PCI Recognized labs are invited to review and provide feedback on the draft PCI PIN Transaction Security (PTS) Hardware Security Module (HSM) Modular Security Requirements during a 30 day request for comments (RFC) period running from 9 February 2021 through 11 March.

09 February 2021

Hacker attempts to poison Florida city’s water supply

While the incursion was thwarted in time, cyberattacks targeting critical infrastructure are a major cause for concern

The post Hacker attempts to poison Florida city’s water supply appeared first on WeLiveSecurity

09 February 2021

Web hosting provider shuts down after cyberattack

Two other UK web hosting providers also suffered similar hacks over the weekend, although it's unconfirmed if the attacks are related.
09 February 2021

Android Devices Hunted by LodaRAT Windows Malware

Android Devices Hunted by LodaRAT Windows Malware The LodaRAT - known for targeting Windows devices - has been discovered also targeting Android devices in a new espionage campaign.
09 February 2021

Cyberpunk 2077 Publisher Hit with Hack, Threats and Ransomware

Cyberpunk 2077 Publisher Hit with Hack, Threats and Ransomware CD Projekt Red was hit with a cyberattack, and the attackers are threatening to release source code for Witcher 3, corporate documents and more.
09 February 2021

SolarWinds Attack Reinforces Importance of Principle of Least Privilege

Taking stock of least-privilege policies will go a long way toward hardening an organization's overall security posture.
09 February 2021

Fighting Fileless Malware, Part 2: Countermeasures

Fighting Fileless Malware, Part 2: Countermeasures Why do fileless attacks persist? Let's break down the strengths and weaknesses of the existing mitigations.
09 February 2021

Iranian Cyber Groups Spying on Dissidents & Others of Interest to Government

A new investigation of two known threat groups show cyber actors are spying on mobile devices and PCs belonging to targeted users around the world.
09 February 2021

Appgate to go public through Newtown Lane merger

The cybersecurity firm intends to join the Nasdaq or NYSE through the agreement.
09 February 2021

Hacker Tries to Poison Water Supply of Florida Town

Hacker Tries to Poison Water Supply of Florida Town A threat actor remotely accessed the IT system of the water treatment facility of Oldsmar and raised the levels of sodium hydroxide in the water, an action that was quickly noticed and remediated.
09 February 2021

CD Projekt Red game studio discloses ransomware attack, extortion attempt

The company behind games like Cyberpunk 2077 and The Witcher becomes the latest gaming studio to fall victim to a ransomware attack.
09 February 2021

Author of uPanel phishing kit arrested in Ukraine

More than 50% of all phishing attacks that targeted Australia in 2019 were carried out using uPanel, officials said.
09 February 2021

PyPI, GitLab dealing with spam attacks

Both sites have been flooded over the weekend with garbage content.
09 February 2021