Cybersecurity News
NPM Package Steals Passwords via Chrome’s Account-Recovery Tool

Indictments, Attribution Unlikely to Deter Chinese Hacking, Researchers Say

Request for Comments: PCI Card Production and Provisioning v3 Draft Standard
From 21 July to 20 August, PCI SSC stakeholders can participate in a Request for Comments (RFC) on PCI Card Production and Provisioning v3 Draft Standard.
Kubernetes Cloud Clusters Face Cyberattacks via Argo Workflows

French Launch NSO Probe After Macron Believed Spyware Target

Tracking Malware and Ransomware Domains in 2021

MacOS Being Picked Apart by $49 XLoader Data Stealer

$49 malware receives major upgrade to strike both Windows and macOS PCs
The new family stems from Formbook, an old but prevalent malware strain.Joker billing fraud malware found in Google Play Store
The Android malware circumvented security controls by using short URL tricks.Spam Kingpin Peter Levashov Gets Time Served
A federal judge in Connecticut today handed down a sentence of time served to spam kingpin Peter “Severa” Levashov, a prolific purveyor of malicious and junk email, and the creator of malware strains that infected millions of Microsoft computers globally. Levashov has been in federal custody since his extradition to the United States and guilty plea in 2018, and was facing up to 12 more years in prison. Instead, he will go free under three years of supervised release and a possible fine.Researchers: NSO Group’s Pegasus Spyware Should Spark Bans, Apple Accountability

Back-to-Basics: Reduce Where Payment Data Can Be Found
As small and medium businesses begin to re-open following the pandemic, it’s important to do so securely in order to protect customer’s payment card data. Too often, data breaches happen as a result of vulnerabilities that are entirely preventable. The PCI Security Standards Council (PCI SSC) has developed a set of payment protection resources for small businesses. In this 8-part back-to-basics series, we highlight payment security basics for protecting against payment data theft. Today’s blog focuses on reducing where payment data can be found.
Law Firm to the Fortune 500 Breached with Ransomware

Why Your Business Needs a Long-Term Remote Security Strategy

16-Year-Old HP Printer-Driver Bug Impacts Millions of Windows Machines

A New Security Paradigm: External Attack Surface Management

MosaicLoader Malware Delivers Facebook Stealers, RATs

Some URL shortener services distribute Android malware, including banking or SMS trojans
On iOS we have seen link shortener services pushing spam calendar files to victims’ devices.
The post Some URL shortener services distribute Android malware, including banking or SMS trojans appeared first on WeLiveSecurity