Cybersecurity News


Compromised Website Images Camouflage ObliqueRAT Malware

Compromised Website Images Camouflage ObliqueRAT Malware Emails spreading the ObliqueRAT malware now make use of steganography, disguising their payloads on compromised websites.
02 March 2021

Ryuk Ransomware: Now with Worming Self-Propagation

Ryuk Ransomware: Now with Worming Self-Propagation The Ryuk scourge has a new trick in its arsenal: Self-replication via SMB shares and port scanning.
02 March 2021

Why Cloud Security Risks Have Shifted to Identities and Entitlements

Traditional security tools focus on the network perimeter, leaving user and service accounts vulnerable to hackers.
02 March 2021

Name That Edge Toon: In Hot Water

Name That Edge Toon: In Hot Water Feeling creative? Submit your caption in the comments, and our panel of experts will reward the winner with a $25 Amazon gift card.
02 March 2021

Attacker Expands Use of Malicious SEO Techniques to Distribute Malware

The operators of REvil and Gootkit have begun using a tried and tested technique to distribute additional malware, Sophos says.
02 March 2021

ObliqueRAT Trojan now lurks in images on compromised websites

The malware has been upgraded in new campaigns across Asia.
02 March 2021

Oxfam Australia supporters embroiled in new data breach

Personal data, including partial payment information, is thought to be included.
02 March 2021

Google addresses customer data protection, security in Workspace

Google has also introduced new Workspace features as we continue to work from home.
02 March 2021

Twitter’s new strike system will target prolific COVID-19 fake information spreaders

Twitter says repeat offenders will be booted from the platform.
02 March 2021

Mobile Adware Booms, Online Banks Become Prime Target for Attacks

Mobile Adware Booms, Online Banks Become Prime Target for Attacks A snapshot of the 2020 mobile threat landscape reveals major shifts toward adware and threats to online banks.
01 March 2021

Malware Loader Abuses Google SEO to Expand Payload Delivery

Malware Loader Abuses Google SEO to Expand Payload Delivery Gootloader has expanded its payloads beyond the Gootkit malware family, using Google SEO poisoning to gain traction.
01 March 2021

Universal Health Services Suffered $67 Million Loss Due to Ransomware Attack

Earnings report points to diversion of care during incident for financial loss.
01 March 2021

New Jailbreak Tool Works on Most iPhones

The Unc0ver team has released a tool that works on iOS 11 and later, and exploits a vulnerability that was recently under attack.
01 March 2021

Passwords, Private Posts Exposed in Hack of Gab Social Network

Passwords, Private Posts Exposed in Hack of Gab Social Network The Distributed Denial of Secrets group claim they have received more than 70 gigabytes of data exfiltrated from social media platform Gab.
01 March 2021

SolarWinds security fiasco may have started with simple password blunders

Many things came together to crack SolarWinds, but it may all have started with that classic mistake of leaking a lousy password.
01 March 2021

Is Your Browser Extension a Botnet Backdoor?

A company that rents out access to more than 10 million Web browsers so that clients can hide their true Internet addresses has built its network by paying browser extension makers to quietly include its code in their creations. This story examines the lopsided economics of extension development, and why installing an extension can be such a risky proposition.
01 March 2021

MSP Provider Builds Red Team as Attackers Target Industry

NinjaRMM, which provides tools for managed service providers, aims to create a red team capability following years of attacks against MSPs.
01 March 2021

Popular password manager in the spotlight over web trackers

While the trackers in LastPass’ Android app don’t collect any personal data, the news may not sit well with some privacy-minded users

The post Popular password manager in the spotlight over web trackers appeared first on WeLiveSecurity

01 March 2021

Firewall Vendor Patches Critical Auth Bypass Flaw

Firewall Vendor Patches Critical Auth Bypass Flaw Cybersecurity firm Genua fixes a critical flaw in its GenuGate High Resistance Firewall, allowing attackers to log in as root users.
01 March 2021

Cybercrime 'Help Wanted': Job Hunting on the Dark Web

Cybercrime 'Help Wanted': Job Hunting on the Dark Web How's your 'Probiv'? How about customer service? Here's how Dark Web forums connect cybercriminals looking for talent with those looking for work -- and which skills are hot right now.
01 March 2021