Cybersecurity News


Ryuk Ransomware Hit Multiple Oil & Gas Facilities, ICS Security Expert Says

Attackers 'weaponized' Active Directory to spread the ransomware.
23 January 2020

Microsoft exposed 250 million customer support records

Databases containing 14 years’ worth of customer support logs were publicly accessible with no password protection

The post Microsoft exposed 250 million customer support records appeared first on WeLiveSecurity

23 January 2020

Microsoft exposed 250 million customer support records

Databases containing 14 years’ worth of customer support logs were publicly accessible with no password protection

The post Microsoft exposed 250 million customer support records appeared first on WeLiveSecurity

23 January 2020

Google: Flaws in Apple’s Private-Browsing Technology Allow for Third-Party Tracking

Google: Flaws in Apple’s Private-Browsing Technology Allow for Third-Party Tracking New research outlines vulnerabilities in Safari’s Intelligent Tracking Protection that can reveal user browsing behavior to third parties.
23 January 2020

To Avoid Disruption, Ransomware Victims Continue to Pay Up

For all the cautions against doing so, one-third of organizations in a Proofpoint survey said they paid their attackers after getting infected with ransomware.
23 January 2020

Securely Disposing Mobile Devices

Do you plan on giving away or selling one of your older mobile devices? Make sure you wipe or reset your device before disposing of it. If you don't, the next person who owns it will have access to all of your accounts and personal information.
23 January 2020

Pwn2Own Miami Contestants Haul in $180K for Hacking ICS Equipment

Pwn2Own Miami Contestants Haul in $180K for Hacking ICS Equipment The competition targets the systems that run critical infrastructure and more.
22 January 2020

Apple Addresses iPhone 11 Location Privacy Concern

Apple is rolling out a new update to its iOS operating system that addresses the location privacy issue on iPhone 11 devices that was first detailed here last month.
22 January 2020

Vivin Nets Thousands of Dollars Using Cryptomining Malware

Vivin Nets Thousands of Dollars Using Cryptomining Malware A newly discovered threat actor named Vivin is raking in Monero from cryptomining malware, showing that this type of attack isn't going away anytime soon.
22 January 2020

For Mismanaged SOCs, The Price Is Not Right

New research finds security operations centers suffer high turnover and yield mediocre results for the investment they require.
22 January 2020

A timeline of events surrounding the Bezos phone hack

Bezos hack connected to Khashoggi murder and the Washington Post's subsequent media coverage.
22 January 2020

Eight Flaws in MSP Software Highlight Potential Ransomware Vector

An attack chain of vulnerabilities in ConnectWise's software for MSPs has similarities to some of the details of the August attack on Texas local and state agencies.
22 January 2020

Why DPOs and CISOs Must Work Closely Together

Recent data protection laws mean that the data protection officer and CISO must work in tandem to make sure users' data is protected.
22 January 2020

Configuration Error Reveals 250 Million Microsoft Support Records

Some the records, found on five identically configured servers, might have contained data in clear text.
22 January 2020

'We Only Have Two of the Blinky Boxes Left to Go'

Exactly who is king of the castle here?
22 January 2020

Startup Privafy Raises $22M with New Approach to Network Security

The company today disclosed an approach to data security designed to protect against modern threats at a lower cost than complex network tools.
22 January 2020

sLoad Malware Revamped as Powerful ‘StarsLord’ Loader

sLoad Malware Revamped as Powerful ‘StarsLord’ Loader The newest version of the sLoad malware dropper comes equipped with infection tracking capabilities and an anti-analysis trick.
22 January 2020

Dating apps share personal data with advertisers, study says

Some of the most popular dating services may be violating GDPR or other privacy laws

The post Dating apps share personal data with advertisers, study says appeared first on WeLiveSecurity

22 January 2020

Dating apps share personal data with advertisers, study says

Some of the most popular dating services may be violating GDPR or other privacy laws

The post Dating apps share personal data with advertisers, study says appeared first on WeLiveSecurity

22 January 2020

Microsoft Leaves 250M Customer Service Records Open to the Web

Microsoft Leaves 250M Customer Service Records Open to the Web The trove of information is potentially a scammer's bonanza.
22 January 2020