---

Microsoft DART Finds Web Shell Threat on the Rise

Various APT groups are successfully using Web shell attacks on a more frequent basis.

---

Ransomware Attack Hinders Toll Group Operations

Customers took to Twitter to air their grievances after some of the transportation giant's operations were downed.

---

Researcher: Backdoor mechanism discovered in devices using HiSilicon chips

Researcher said he did not notify HiSilicon due to a lack of trust in the hardware vendor to adequately fix the issue.

---

Researcher: Backdoor mechanism still active in many IoT products

Researcher says a backdoor mechanism in devices running Xiongmai firmware is still active years after first being discovered.

---

Ransomware Attacks: Why It Should Be Illegal to Pay the Ransom

For cities, states and towns, paying up is short-sighted and only makes the problem worse.

---

Two Critical Android Bugs Get Patched in February Update

As part of its February bug fixes, Google is patching a critical severity remote code execution vulnerability and an information disclosure bug.

---

Medtronic Patches Implanted Device, CareLink Programmer Bugs

The medical device giant has issued fixes for bugs first disclosed in 2018 and 2019.

---

Nintendo hacker pleads guilty

Teen who hacked Nintendo twice and leaked data on the company's yet unreleased Switch console pleaded guilty last week.

---

7 Ways SMBs Can Secure Their Websites

Here's what small and midsize businesses should consider when they decide it's time to up their website security.

---

Twitter Suspends Fake Accounts Abusing Feature that Matches Phone Numbers and Users

The company believes state-sponsored actors may also be involved.

---

Kubernetes Shows Built-in Weakness

A Shmoocon presentation points out several weaknesses built in to Kubernetes configurations and how a researcher can exploit them.

---

What WON'T Happen in Cybersecurity in 2020

Predictions are a dime a dozen. Here are six trends that you won't be hearing about anytime soon.

---

Teen takes down ISP with DDoS attacks to get info on one of its subscribers

Ukrainian teen arrested last month for taking down a local ISP with DDoS attacks.

---

Electric scooters vulnerable to remote hacks

A helmet may not be enough to keep you safe(r) while riding an e-scooter

The post Electric scooters vulnerable to remote hacks appeared first on WeLiveSecurity

---

Electric scooters vulnerable to remote hacks

A helmet may not be enough to keep you safe(r) while riding an e-scooter

The post Electric scooters vulnerable to remote hacks appeared first on WeLiveSecurity

---

Twitter API Abused to Uncover User Identities

State-sponsored actors may have been behind the social media abuse, said Twitter.

---

UK AI advisors call for online platforms to become accountable for user content targeting

The advisory board says that online services should also allow researchers more scope to act on topics of public concern.

---

Google software glitch sent some users' videos to strangers

Bug affected users of Google Takeout exporting from Google Photos in late November

Google has said a software bug resulted in some users’ personal videos being emailed to strangers.

The flaw affected users of Google Photos who requested to export their data in late November. For four days the export tool wrongly added videos to unrelated users’ archives.

Continue reading...

---

HPE acquires zero-trust networking, security firm Scytale

The startup is made up of engineers from AWS, Google, Splunk, and other tech giants.

---

Facebook privacy settings: Protect your data with these tips

As Facebook turns 16, we look at how to keep your personal information safe from prying eyes

The post Facebook privacy settings: Protect your data with these tips appeared first on WeLiveSecurity