Cybersecurity News


Zxyel Flaw Powers New Mirai IoT Botnet Strain

In February, hardware maker Zyxel fixed a zero-day vulnerability in its routers and VPN firewall products after KrebsOnSecurity told the company the flaw was being abused by attackers to break into devices. This week, security researchers said they spotted that same vulnerability being exploited by a new variant of Mirai, a malware strain that targets vulnerable Internet of Things (IoT) devices for use in large-scale attacks and as proxies for other cybercrime activity.
20 March 2020

WHO chief emails claiming to offer coronavirus drug advice plant keyloggers on your PC

Fraudsters are trying to capitalize on fears surrounding the illness in new phishing campaigns.
20 March 2020

Security Ratings Are a Dangerous Fantasy

They don't predict breaches, and they don't help people make valuable business decisions or make users any safer.
20 March 2020

Covid-19 Spurs Facial Recognition Tracking, Privacy Fears

Covid-19 Spurs Facial Recognition Tracking, Privacy Fears The coronavirus pandemic is creating a lucrative market for facial recognition manufacturers. But privacy issues need to be top of mind, tech experts warn.
20 March 2020

Covid-19 Spurs Facial Recognition Tracking, Privacy Fears

Covid-19 Spurs Facial Recognition Tracking, Privacy Fears The coronavirus pandemic is creating a lucrative market for facial recognition manufacturers. But privacy issues need to be top of mind, tech experts warn.
20 March 2020

New Mirai Variant ‘Mukashi’ Targets Zyxel NAS Devices

New Mirai Variant ‘Mukashi’ Targets Zyxel NAS Devices The botnet exploits a vulnerability discovered last month that can allow threat actors to remotely compromise and control devices.
20 March 2020

New Mirai Variant ‘Mukashi’ Targets Zyxel NAS Devices

New Mirai Variant ‘Mukashi’ Targets Zyxel NAS Devices The botnet exploits a vulnerability discovered last month that can allow threat actors to remotely compromise and control devices.
20 March 2020

Attack Surface, Vulnerabilities Increase as Orgs Respond to COVID-19 Crisis

In typical fashion, attackers are gearing up to take advantage of the surge in teleworking prompted by the pandemic.
20 March 2020

What to do if your Twitter account has been hacked

Losing access to your account can be stressful, but there are steps you can take to get it back – and to avoid getting hacked again

The post What to do if your Twitter account has been hacked appeared first on WeLiveSecurity

20 March 2020

Windows, Ubuntu, macOS, VirtualBox fall at Pwn2Own hacking contest

Team Fluoroacetate wins fourth tournament in a row.
20 March 2020

APT28 has been scanning vulnerable email servers for more than a year

Scans have been observed against webmail and Microsoft Exchange Autodiscover servers.
20 March 2020

US, Israel, South Korea, and China look at intrusive surveillance solutions for tracking COVID-19

As the coronavirus (COVID-19) outbreak spreads across the world, some governments are deploying or exploring the idea of deploying privacy-intrusive solutions for tracking the disease's spread.
19 March 2020

Misconfigured Elasticsearch Instance Exposes More Than 5 Billion Records

The collections contained information collected by a UK research firm on data breaches from the years 2012 to 2019.
19 March 2020

Coronavirus Poll Results: Cyberattacks Ramp Up, WFH Prep Uneven

Coronavirus Poll Results: Cyberattacks Ramp Up, WFH Prep Uneven A poll of Threatpost readers shows that security preparedness is uneven as organizations make an unprecedented transition to remote working.
19 March 2020

Coronavirus Poll: Cyberattacks Ramp Up as Work from Home Takes Hold

Coronavirus Poll: Cyberattacks Ramp Up as Work from Home Takes Hold A poll of Threatpost readers shows that security preparedness is uneven as organizations make an unprecedented transition to remote working.
19 March 2020

Security flaws found in popular password managers

Not all they’re cracked up to be? Several password vaults have been found to contain vulnerabilities, both new and previously disclosed but never patched, a study says

The post Security flaws found in popular password managers appeared first on WeLiveSecurity

19 March 2020

Cisco Warns of High-Severity SD-WAN Flaws

Cisco Warns of High-Severity SD-WAN Flaws The high-severity flaws exist in the products using SD-WAN software earlier than Release 19.2.2.
19 March 2020

DDoS Attack Targets German Food Delivery Service

Liefrando delivers food from more than 15,000 restaurants in Germany, where people under COVID-19 restrictions depend on the service.
19 March 2020

VPN Usage Surges as More Nations Shut Down Offices

As social distancing becomes the norm, interest in virtual private networks has rocketed, with some providers already seeing a doubling in users and traffic since the beginning of the year.
19 March 2020

Work from home: Improve your security with MFA

Remote work can be much safer with the right cyber‑hygiene practices in place – multi‑factor authentication is one of them

The post Work from home: Improve your security with MFA appeared first on WeLiveSecurity

19 March 2020