Cybersecurity News


WordPress Plug-in Updated in Rare Forced Action

The Logonizer login security plug-in was automatically updated to patch a SQL injection vulnerability.
22 October 2020

8 New and Hot Cybersecurity Certifications for 2020

8 New and Hot Cybersecurity Certifications for 2020 While the usual security certs remain popular, interest in privacy skills and cloud experience are pushing new credentials into the market.
22 October 2020

Researcher: I Hacked Trump’s Twitter by Guessing Password

Researcher: I Hacked Trump’s Twitter by Guessing Password Trump’s weak Twitter password and lack of basic two-factor authentication protections made it shockingly simple to hack his account, Dutch security researcher Victor Gevers reported.  
22 October 2020

To Err Is Human: Misconfigurations & Employee Neglect Are a Fact of Life

The cyber kill chain is only as strong as its weakest link, so organizations should reinforce that link with a properly equipped dedicated security team.
22 October 2020

Facebook, News and XSS Underpin Complex Browser Locker Attack

Facebook, News and XSS Underpin Complex Browser Locker Attack An elaborate set of redirections and hundreds of URLs make up a wide-ranging tech-support scam.
22 October 2020

Microsoft Teams Phishing Attack Targets Office 365 Users

Microsoft Teams Phishing Attack Targets Office 365 Users Up to 50,000 Office 365 users are being targeted by a phishing campaign that purports to notify them of a "missed chat" from Microsoft Teams.
22 October 2020

EU sanctions Russia over 2015 German Parliament hack

Germany had been asking and pushing EU officials for an official statement and sanctions against Russia since earlier this year.
22 October 2020

Chrome 86 Aims to Bar Abusive Notification Content

Chrome 86 Aims to Bar Abusive Notification Content Google said Chrome 86 will automatically block malicious notifications that may be used for phishing or malware.
22 October 2020

Fraudsters crave loyalty points amid COVID‑19

Scammers even run their own dark-web “travel agencies”, misusing stolen loyalty points and credit card numbers

The post Fraudsters crave loyalty points amid COVID‑19 appeared first on WeLiveSecurity

22 October 2020

McAfee Raises $740M in Second IPO

The security software giant and its investors sold 37 million shares priced at $20 each, putting McAfee's value around $8.6 billion.
22 October 2020

Making a Difference: Global Payments

 

The PCI Security Standards Council (PCI SSC) recently announced the nomination period for the next PCI SSC Board of Advisors. The Board of Advisors represents PCI SSC Participating Organizations worldwide to ensure global industry involvement in the development of PCI Security Standards. As strategic partners, they bring industry, geographical and technical insight to PCI Council plans and projects. In this post, we talk with 2018 - 2020 PCI SSC Board of Advisor Member Stacy Hughes, Chief Information Security Officer, at Global Payments about the role of the PCI SSC Board of Advisors in shaping payment security globally.

22 October 2020

Firefox 'Site Isolation' feature enters user testing, expected next year

Users can test Firefox Site Isolation in Nightly builds.
22 October 2020

Need for 'Guardrails' in Cloud-Native Applications Intensifies

With more organizations shifting to cloud services in the pandemic, experts say the traditionally manual process of securing them will be replaced by automated tools in 2021 and beyond.
22 October 2020

Implementing Proactive Cyber Controls in OT: Myths vs. Reality

Debunking the myths surrounding the implementation of proactive cyber controls in operational technology.
22 October 2020

Feds: Iran Behind ‘Proud Boys’ Email Attacks on Democratic Voters

Feds: Iran Behind ‘Proud Boys’ Email Attacks on Democratic Voters Messages that threaten people to ‘vote for Trump or else’ are part of foreign adversaries’ attempts to interfere with the Nov. 3 election, according to feds.
22 October 2020

New Windows RAT can be controlled via a Telegram channel

New RAT shows a rising trend in the cybercrime underground, with more malware being released with control-by-Telegram features.
22 October 2020

SEC issues Kik $5 million penalty over illegal cryptocurrency offering

The US regulator alleged that Kik’s ICO flouted investment and securities law.
22 October 2020

US blames Iran for spoofed Proud Boys emails threatening Democrat voters

US claims Iran is behind a wave of emails purporting to be from right-wing Proud Boys group that threatened registered Democrat voters with repercussions if they didn't vote for Trump.
21 October 2020

FIRST Announces Cyber-Response Ethical Guidelines

The 12 points seek to provide security professionals with advice on ethical behavior during incident response.
21 October 2020

Oracle Releases Another Mammoth Security Patch Update

October's CPU contains 402 patches for vulnerabilities across 29 product sets, many of which are remotely executable without the need for authentication.
21 October 2020