Cybersecurity News
A Cyber ‘Vigilante’ is Sabotaging Emotet’s Return
During Black Hat USA 2020, Threatpost talks to Sherrod DeGrippo, with Proofpoint, about Emotet's recent return -and how a cyber vigilante is attempting to thwart the malware's comeback.
05 August 2020
Less Than Half of Security Pros Can Identify Their Organization's Level of Risk
Just 51% work with the business side of the house on risk reduction objectives, new study shows.05 August 2020
Pen Testers Who Got Arrested Doing Their Jobs Tell All
Coalfire's Gary De Mercurio and Justin Wynn share the details of their physical penetration-testing engagement gone wrong, as well as recommendations for protecting all red teamers.05 August 2020
FBI issues warning over Windows 7 end-of-life
The FBI says companies running Windows 7 systems are now in greater risk of getting hacked due to a lack of security updates.05 August 2020
Cluster of 295 Chrome extensions caught hijacking Google and Bing search results
The malicious Chrome extensions have been installed by more than 80 million users.04 August 2020
Hacker leaks passwords for 900+ enterprise VPN servers
EXCLUSIVE: The list has been shared on a Russian-speaking hacker forum frequented by multiple ransomware gangs.04 August 2020
How Ransomware Threats Are Evolving & How to Spot Them
A series of new reports explains how ransomware attackers are changing techniques and how organizations can spot stealthy criminals.04 August 2020
NetWalker Ransomware Rakes in $29M Since March
The ransomware has surged since moving to a RaaS model.
04 August 2020
New Spin on a Longtime DNS Intel Tool
Domain Name Service database service Farsight Security, the brainchild of DNS expert Paul Vixie, celebrates 10 years with new modern features.04 August 2020
6 Dangerous Defaults Attackers Love (and You Should Know)
Default configurations can be massive vulnerabilities. Here are a half dozen to check on for your network.
04 August 2020
Newsletter WordPress Plugin Opens Door to Site Takeover
An XSS bug and a PHP object-injection vulnerability are present in a plugin used by hundreds of thousands of websites.
04 August 2020
Firefox adds protections against redirect tracking
New protection already active in Firefox 79; will roll out to all Firefox users in the next few weeks.04 August 2020
Retooling the SOC for a Post-COVID World
Residual work-from-home policies will require changes to security policies, procedures, and technologies.04 August 2020
Iranian hacker group becomes first known APT to weaponize DNS-over-HTTPS (DoH)
Kaspersky says Oilrig (APT34) group has been using DoH to silently exfiltrate data from hacked networks.04 August 2020
FBI warns of surge in online shopping scams
In one scheme, shoppers ordering gadgets or gym equipment are in for a rude surprise – they receive disposable face masks instead
The post FBI warns of surge in online shopping scams appeared first on WeLiveSecurity
04 August 2020
Google & Amazon Replace Apple as Phishers' Favorite Brands
Google and Amazon were the most imitated brands in the second quarter, knocking out Apple.04 August 2020
Twitter Could Face $250M FTC Fine Over Improper Data Use
The potential FTC fine comes after Twitter last year acknowledged that user emails and phone numbers were being used for targeted advertising.
04 August 2020
Securing IoT as a Remote Workforce Strategy
Digital transformation with Internet of Things devices offers organizations a way forward in the era of COVID-19. Optimizing this approach for the future will need to start with security.04 August 2020
Apple Knocked Off Perch as Most Imitated Brand for Phishing Attacks
COVID-19 pandemic spurs spoofing preference changes, plus a surge in email-based attacks.
04 August 2020