Cybersecurity News


Kids’ Apps on Google Play Rife with Privacy Violations

Kids’ Apps on Google Play Rife with Privacy Violations One in five of the most-popular apps for kids under 13 on Google Play don't comply with COPPA regulations on how children's information is collected and used.
22 June 2021

Lexmark Printers Open to Arbitrary Code-Execution Zero-Day

Lexmark Printers Open to Arbitrary Code-Execution Zero-Day “No remedy available as of June 21, 2021," according to the researcher who discovered the easy-to-exploit, no-user-action-required bug.
22 June 2021

7 Powerful Cybersecurity Skills the Energy Sector Needs Most

7 Powerful Cybersecurity Skills the Energy Sector Needs Most Those looking to join the fight might want to polish up or acquire some (or all) of these hottest skills on the market.
22 June 2021

Does Your Cyberattack Plan Include a Crisis Communications Strategy? 5 Tips to Get Started

Don't overlook crisis communications in your cybersecurity incident response planning.
22 June 2021

Six Flags to Pay $36M Over Collection of Fingerprints

Six Flags to Pay $36M Over Collection of Fingerprints Illinois Supreme Court rules in favor of class action against company’s practice of scanning people’s fingers when they enter amusement parks.
22 June 2021

Did Companies Fail to Disclose Being Affected by SolarWinds Breach?

The SEC has sent out letters to some investment firms and publicly listed companies seeking information, Reuters says.
21 June 2021

Software-Container Supply Chain Sees Spike in Attacks

Attackers target companies' container supply chain, driving a sixfold increase in a year, aiming to steal processing time for cryptomining and compromise cloud infrastructure.
21 June 2021

Wegmans Exposes Customer Data in Misconfigured Databases

Wegmans Exposes Customer Data in Misconfigured Databases Cleanup in aisle "Oops": The supermarket chain said that it misconfigured two cloud databases, exposing customer data to public scrutiny.
21 June 2021

Data Leaked in Fertility Clinic Ransomware Attack

Reproductive Biology Associates says the data of 38,000 patients may have been compromised in the April cyberattack.
21 June 2021

Bugs in NVIDIA’s Jetson Chipset Opens Door to DoS Attacks, Data Theft

Bugs in NVIDIA’s Jetson Chipset Opens Door to DoS Attacks, Data Theft Chipmaker patches nine high-severity bugs in its Jetson SoC framework tied to the way it handles low-level cryptographic algorithms.
21 June 2021

Baltimore County Public Schools' Ransomware Recovery Tops $8M

The school district has spent seven months and a reported $8.1 million recovering from the November attack.
21 June 2021

Embryology Data Breach Follows Fertility Clinic Ransomware Hit

Embryology Data Breach Follows Fertility Clinic Ransomware Hit Approximately 38,000 of RBA's customers had their embryology data stolen by a ransomware gang.
21 June 2021

How Cyber Safe is Your Drinking Water Supply?

Amid multiple recent reports of hackers breaking into and tampering with drinking water treatment systems comes a new industry survey with some sobering findings: A majority of the 52,000 separate drinking water systems in the United States still haven't inventoried some or any of their information technology systems -- a basic first step in protecting networks from cyberattacks.
21 June 2021

Agent Tesla RAT Returns in COVID-19 Vax Phish

Agent Tesla RAT Returns in COVID-19 Vax Phish An unsophisticated campaign shows that the pandemic still has long legs when it comes to being social-engineering bait.
21 June 2021

iPhone Wi-Fi Crushed by Weird Network

iPhone Wi-Fi Crushed by Weird Network … until you reset network settings and stop connecting to a weirdly named network, that is. FUD is spreading. iOS Wi-Fi demolition is not.
21 June 2021

Are Ransomware Attacks the New Pandemic?

Ransomware has been a problem for decades, so why is government just now beginning to address it?
21 June 2021

State‑sponsored or financially motivated: Is there any difference anymore?

What does the increasingly fuzzy line between traditional cybercrime and attacks attributed to state-backed groups mean for the future of the threat landscape?

The post State‑sponsored or financially motivated: Is there any difference anymore? appeared first on WeLiveSecurity

21 June 2021

Attackers Find New Way to Exploit Google Docs for Phishing

Tactic continues recent trend by attackers to use trusted cloud services to send and host malicious content.
18 June 2021

Accidental Insider Leaks Prove Major Source of Risk

Research reports highlight growing concerns around insider negligence that leads to data breaches.
18 June 2021

This Week in Database Leaks: Cognyte, CVS, Wegmans

Billions of records were found exposed this week due to unprotected databases owned by major corporations and third-party providers.
18 June 2021