Cybersecurity News


xHelper: The Russian Nesting Doll of Android Malware

xHelper: The Russian Nesting Doll of Android Malware Ultimately delivering the Triada payload, xHelper goes to great lengths to become virtually indestructible once installed on a smartphone.
07 April 2020

FIN6 and TrickBot Combine Forces in ‘Anchor’ Attacks

FIN6 and TrickBot Combine Forces in ‘Anchor’ Attacks FIN6 fingerprints were spotted in recent cyberattacks that initially infected victims with the TrickBot trojan, and then eventually downloaded the Anchor backdoor malware.
07 April 2020

71% of Security Pros See Threats Jump Since COVID-19 Outbreak

Phishing is the top threat, followed by websites offering false information about the pandemic, malware, and ransomware attacks.
07 April 2020

Women in Payments: Q&A with Tracey Long


After 10 years on the police force, Tracey Long knew a thing or two about fraud. In this month’s blog series, Long explains how her former training was a natural path into cybersecurity and how both professions are all about getting people to comply.

07 April 2020

600,000 people affected in email provider breach

The users' personal data are now up for grabs on the dark web for anywhere between US$3,500 and US$22,000 worth of Bitcoin

The post 600,000 people affected in email provider breach appeared first on WeLiveSecurity

07 April 2020

Using Application Telemetry to Reveal Insider & Evasive Threats

Data from application processes and other systems leave a trail of threat crumbs that can be used to detect and shut down attacks.
07 April 2020

Official Government COVID-19 Mobile Apps Hide a Raft of Threats

Official Government COVID-19 Mobile Apps Hide a Raft of Threats Android apps launched for citizens in Iran, Colombia and Italy offer cyberattackers new attack vectors.
07 April 2020

Microsoft Buys Corp.com So Bad Guys Can’t

In February, KrebsOnSecurity told the story of a private citizen auctioning off the dangerous domain corp.com for the starting price of $1.7 million. Domain experts called corp.com dangerous because years of testing have shown whoever wields it would have access to an unending stream of passwords, email and other sensitive data from hundreds of thousands of Microsoft Windows PCs at major companies around the globe. This week, Microsoft Corp. agreed to buy the domain in a bid to keep it out of the hands of those who might abuse its awesome power.
07 April 2020

9 Security Podcasts Worth Tuning In To

9 Security Podcasts Worth Tuning In To Recommendations for podcasts discussing news, trends, guidance, and stories across the cybersecurity industry.
07 April 2020

Europol arrests man for coronavirus business email scam peddling masks, sanitizer

European police continue to fight criminal activity linked to the spread of COVID-19.
07 April 2020

Microsoft announces IPE, a new code integrity feature for Linux

Microsoft says IPE (Integrity Policy Enforcement) was designed for immutable and embedded systems (e.g. network firewall device in a data center).
07 April 2020

Shopping Online Securely

When shopping online, always use your credit cards instead of a debit card. If any fraud happens, it is far easier to recover your money from a credit card transaction. Gift cards and one-time-use credit card numbers are even more secure.
07 April 2020

Email provider got hacked, data of 600,000 users now sold on the dark web

Italian email provider Email.it confirms security breach.
07 April 2020

More Attackers Have Begun Using Zero-Day Exploits

Vendors of offensive cyber tools have made it easy for any threat group with the right funds to leverage unpatched bugs, FireEye says.
06 April 2020

Misconfigured Containers Again Targeted by Cryptominer Malware

An attack group is searching for insecure containers exposing the Docker API and then installing a program that attempts to mine cryptocurrency. It's not the first time.
06 April 2020

Microsoft: Emotet Attack Shut Down an Entire Business Network

The infection started with a phishing email and spread throughout the organization, overheating all machines and flooding its Internet connection.
06 April 2020

A Brisk Private Trade in Zero-Days Widens Their Use

A Brisk Private Trade in Zero-Days Widens Their Use More zero-day exploits coming up for sale by NSO Group and others is democratizing the attack vector and placing them within reach of less sophisticated attackers.
06 April 2020

FBI Threatens ‘Zoom Bombing’ Trolls With Jail Time

FBI Threatens ‘Zoom Bombing’ Trolls With Jail Time The FBI is cracking down on the practice of Zoom bombing, saying the hijacking of web conferences can be punishable by jail time.
06 April 2020

FBI Warns of BEC Dangers

A new PSA warns of attacks launched against users of two popular cloud-based email systems.
06 April 2020

Apple Safari Flaws Enable One-Click Webcam Access

Apple Safari Flaws Enable One-Click Webcam Access The white hat hacker who discovered the vulnerabilities received a $75,000 from Apple's bug-bounty program.
06 April 2020