Cybersecurity News


A Cyber ‘Vigilante’ is Sabotaging Emotet’s Return

A Cyber ‘Vigilante’ is Sabotaging Emotet’s Return During Black Hat USA 2020, Threatpost talks to Sherrod DeGrippo, with Proofpoint, about Emotet's recent return -and how a cyber vigilante is attempting to thwart the malware's comeback.
05 August 2020

Less Than Half of Security Pros Can Identify Their Organization's Level of Risk

Just 51% work with the business side of the house on risk reduction objectives, new study shows.
05 August 2020

Pen Testers Who Got Arrested Doing Their Jobs Tell All

Coalfire's Gary De Mercurio and Justin Wynn share the details of their physical penetration-testing engagement gone wrong, as well as recommendations for protecting all red teamers.
05 August 2020

FBI issues warning over Windows 7 end-of-life

The FBI says companies running Windows 7 systems are now in greater risk of getting hacked due to a lack of security updates.
05 August 2020

Cluster of 295 Chrome extensions caught hijacking Google and Bing search results

The malicious Chrome extensions have been installed by more than 80 million users.
04 August 2020

Hacker leaks passwords for 900+ enterprise VPN servers

EXCLUSIVE: The list has been shared on a Russian-speaking hacker forum frequented by multiple ransomware gangs.
04 August 2020

How Ransomware Threats Are Evolving & How to Spot Them

A series of new reports explains how ransomware attackers are changing techniques and how organizations can spot stealthy criminals.
04 August 2020

NetWalker Ransomware Rakes in $29M Since March

NetWalker Ransomware Rakes in $29M Since March The ransomware has surged since moving to a RaaS model.
04 August 2020

New Spin on a Longtime DNS Intel Tool

Domain Name Service database service Farsight Security, the brainchild of DNS expert Paul Vixie, celebrates 10 years with new modern features.
04 August 2020

6 Dangerous Defaults Attackers Love (and You Should Know)

6 Dangerous Defaults Attackers Love (and You Should Know) Default configurations can be massive vulnerabilities. Here are a half dozen to check on for your network.
04 August 2020

Newsletter WordPress Plugin Opens Door to Site Takeover

Newsletter WordPress Plugin Opens Door to Site Takeover An XSS bug and a PHP object-injection vulnerability are present in a plugin used by hundreds of thousands of websites.
04 August 2020

Firefox adds protections against redirect tracking

New protection already active in Firefox 79; will roll out to all Firefox users in the next few weeks.
04 August 2020

Retooling the SOC for a Post-COVID World

Residual work-from-home policies will require changes to security policies, procedures, and technologies.
04 August 2020

Iranian hacker group becomes first known APT to weaponize DNS-over-HTTPS (DoH)

Kaspersky says Oilrig (APT34) group has been using DoH to silently exfiltrate data from hacked networks.
04 August 2020

FPGAs Do It Faster Than CPUs

Attacks are becoming faster and more efficient
04 August 2020

FBI warns of surge in online shopping scams

In one scheme, shoppers ordering gadgets or gym equipment are in for a rude surprise – they receive disposable face masks instead

The post FBI warns of surge in online shopping scams appeared first on WeLiveSecurity

04 August 2020

Google & Amazon Replace Apple as Phishers' Favorite Brands

Google and Amazon were the most imitated brands in the second quarter, knocking out Apple.
04 August 2020

Twitter Could Face $250M FTC Fine Over Improper Data Use

Twitter Could Face $250M FTC Fine Over Improper Data Use The potential FTC fine comes after Twitter last year acknowledged that user emails and phone numbers were being used for targeted advertising.
04 August 2020

Securing IoT as a Remote Workforce Strategy

Digital transformation with Internet of Things devices offers organizations a way forward in the era of COVID-19. Optimizing this approach for the future will need to start with security.
04 August 2020

Apple Knocked Off Perch as Most Imitated Brand for Phishing Attacks

Apple Knocked Off Perch as Most Imitated Brand for Phishing Attacks COVID-19 pandemic spurs spoofing preference changes, plus a surge in email-based attacks.
04 August 2020