Cybersecurity News
Digital Transformation Means Security Must Also Transform
Being successful in this moment requires the ability to evolve in terms of team management, visibility, and crisis management.05 November 2020
Cado Security Gets $1.5 Million Seed
The seed funding round was led by Ten Eleven Ventures.05 November 2020
Italian beverage vendor Campari knocked offline after ransomware attack
Campari has refused to engage with the ransomware gang and is restoring systems.05 November 2020
Online Users Feel Safe, But Risky Behavior Abounds
New research also shows a divide between younger and older users in their security practices, including use of two-factor authentication and how often software updates are performed.05 November 2020
Gaming company Capcom hit by cyberattack
The developer of popular video game franchises took swift action to prevent the attack from spreading further across its systems
The post Gaming company Capcom hit by cyberattack appeared first on WeLiveSecurity
05 November 2020
Cisco Zero-Day in AnyConnect Secure Mobility Client Remains Unpatched
Cisco also disclosed high-severity vulnerabilities in its Webex and SD-WAN products.
05 November 2020
The One Critical Element to Hardening Your Employees' Mobile Security
COVID-19 has exposed longstanding gaps in enterprise mobile security. Creating a comprehensive mobile security plan and mandating compliance with that plan are essential to closing them.05 November 2020
GitHub denies getting hacked
Someone attached a copy of the GitHub Enterprise Server source code to GitHub's DMCA section, but the GitHub CEO said they mistakenly leaked that code months ago.05 November 2020
Malspam Campaign Milks Election Uncertainty
Emails try to lure victims with malicious documents claiming to have information about voting interference.
05 November 2020
New APT hacking group leverages ‘KilllSomeOne’ DLL side-loading
A new entry into the APT scene has peppered its malware with political messages.05 November 2020
US, Brazilian law enforcement seize $24 million in cryptocurrency generated through online fraud
Suspects involved in the scheme are being accused of defrauding investors of over $200 million.05 November 2020
Capcom quietly discloses cyberattack impacting email, file servers
The attack forced Capcom to temporarily pull services to stop the attack from spreading.05 November 2020
Company that runs US illegal immigration detention centers discloses ransomware attack
Data for inmates and employees at three centers in California, Florida, and Pennsylvania was exposed in a ransomware attack on August 19.05 November 2020
Ransom Payment No Guarantee Against Doxxing
Several organizations that paid a ransom to keep attackers from releasing stolen data saw it leaked anyway, according to Coveware.04 November 2020
Disinformation Now the Top Concern Following Hack-Free Election Day
After an Election Day without foreign interference and cyberattacks, security experts turn their focus to disinformation.04 November 2020
Mysterious APT Leaves Curious ‘KilllSomeOne’ Clue
APT cloaks identity using script-kiddie messages and advanced deployment and targeting techniques.
04 November 2020
GrowDiaries Exposes Emails, Passwords of 1.4M Cannabis Growers
Cannabis journaling platform GrowDiaries exposed more than 3.4 million user records online, many from countries where pot is illegal.
04 November 2020
Google Forms Abused to Phish AT&T Credentials
More than 200 Google Forms impersonate top brands - including Microsoft OneDrive, Office 365, and Wells Fargo - to steal victims' credentials.
04 November 2020
Hexagon Announces Deal to Acquire PAS Global
The Houston-based PAS Global will operate as part of Hexagon's PPM (formerly Intergraph Process, Power & Marine) division.04 November 2020
Why Paying to Delete Stolen Data is Bonkers
Companies hit by ransomware often face a dual threat: Even if they avoid paying the ransom and can restore things from scratch, about half the time the attackers also threaten to release sensitive stolen data unless the victim pays for a promise to have the data deleted. Leaving aside the notion that victims might have any real expectation the attackers will actually destroy the stolen data, new research suggests a fair number of victims who do pay up may see some or all of the stolen data published anyway.04 November 2020