Cybersecurity News
Romanian Skimmer Gang in Mexico Outed by KrebsOnSecurity Stole $1.2 Billion
An exhaustive inquiry published today by a consortium of investigative journalists says a three-part series KrebsOnSecurity published in 2015 on a Romanian ATM skimming gang operating in Mexico's top tourist destinations disrupted their highly profitable business, which raked in an estimated $20 million a month and enjoyed the protection of top Mexican authorities.03 June 2020
Kaspersky IDs Sophisticated New Malware Targeted at Air-Gapped Systems
'USBCulprit' is one of several tools that suggest previously known Cycldek group is more dangerous than previous assumed, security vendor says.03 June 2020
Sophisticated Info-Stealer Targets Air-Gapped Devices via USB
The newly discovered USBCulprit malware is part of the arsenal of an APT known as Cycldek, which targets government entities.
03 June 2020
Attackers Target 1M+ WordPress Sites To Harvest Database Credentials
An attack over the weekend unsuccessfully targeted 1.3 million WordPress websites, in attempts to download their configuration files and harvest database credentials.
03 June 2020
RATs 101: The Grimy Trojans That Scurry Through Remote Access Pipes
Remote Access Trojans (RATs) can be the beginning of very bad things on your network or workstations.
03 June 2020
Google Faces $5B Lawsuit for Tracking Users in Incognito Mode
A proposed class-action lawsuit accuses Google of collecting browser data from people who used "private" mode.03 June 2020
Chasing RobbinHood: Up Close with an Evolving Threat
A security researcher details how RobbinHood has changed and why it remains a threat for businesses to watch.03 June 2020
Old Spreadsheet Macro Tech Newly Popular with Criminals
A 30-year-old macro technology for Microsoft Excel is finding new popularity as a cybersecurity attack vector.03 June 2020
Google apps and websites get support for more security keys on iOS devices
You can now use hardware security keys to access Google apps and services running on iOS devices.03 June 2020
What Government Contractors Need to Know About NIST, DFARS Password Reqs
Organizations that fail to comply with these rules can get hit with backbreaking fines and class-action lawsuits.03 June 2020
TrickBot Adds BazarBackdoor to Malware Arsenal
The stealthy backdoor is delivered via mass-market phishing emails that are well-crafted to appear convincing.
03 June 2020
Critical SAP ASE Flaws Allow Complete Control of Databases
Researchers warn of critical flaws in SAP's Sybase Adaptive Server Enterprise software.
03 June 2020
Large-scale attack tries to steal configuration files from WordPress sites
Attackers tried to download configuration files from WordPress sites so they could steal database credentials.03 June 2020
Many Exchange Servers Are Still Vulnerable to Remote Exploit
A privilege-escalation vulnerability patched in February by Microsoft continues to affect Exchange servers, with more than 80% of Internet-connected servers remaining vulnerable, one firm reports.03 June 2020
Facebook now lets you delete old posts in bulk
Dealing with skeletons lurking in your Facebook closet has never been easier
The post Facebook now lets you delete old posts in bulk appeared first on WeLiveSecurity
03 June 2020
Social Distancing for Healthcare's IoT Devices
Security pros need to double down around prevention of lateral movement by attackers, especially if IoT devices are connected to the network.03 June 2020
Enterprise Mobile Phishing Attacks Skyrocket Amidst Pandemic
Increase of 37 percent from Q4 2019 to Q1 2020 attributed to creation of remote workforce due to COVID-19 stay-at-home orders.
03 June 2020
Facebook software engineer resigns with scathing criticism of the network’s refusal to act on ‘weaponized hatred’
The former Facebook employee accuses the social network of allowing “politicians to radicalize individuals and glorify violence.”03 June 2020
Tor’s latest release makes it easier to find secure onion services
Tor Browser 9.5 is also working towards making Dark Web addresses easier to remember.03 June 2020
Google opens up Advanced Protection Program to Nest devices
The move follows integration with services including Android and Chrome.03 June 2020