Cybersecurity News


Emotet Takedown: Short-Term Celebration, Long-Term Concerns

Security researchers examine how and when Emotet's operators may resurface, and the threats that could evolve in the meantime.
08 February 2021

Malicious Code Injected via Google Chrome Extension Highlights App Risks

An open source plug-in purportedly introduced tracking and malicious download code to infect nearly 2 million users, reports say.
08 February 2021

Hacker modified drinking water chemical levels in a US city

The intrusion was detected right away and the hacker's modifications have been reversed right away.
08 February 2021

Hacker Raised Chemical Settings at Water Treatment Plant to Dangerous Levels

Remote access interface breached at Florida utility; attacker detected raising level of sodium hydroxide in water.
08 February 2021

Billions of Passwords Offered for $2 in Cyber-Underground

Billions of Passwords Offered for $2 in Cyber-Underground About 3.27 billion stolen account logins have been posted to the RaidForums English-language cybercrime community in a 'COMB' collection.
08 February 2021

Critical WordPress Plugin Flaw Allows Site Takeover

Critical WordPress Plugin Flaw Allows Site Takeover A patch in the NextGen Gallery WordPress plugin fixes critical and high-severity cross-site request forgery flaws.
08 February 2021

Ransomware Demands Spike 320%, Payments Rise

Ransomware Demands Spike 320%, Payments Rise Remote work continues to fueling a spike in phishing and cyberattacks, particularly in the U.S.
08 February 2021

What's the Difference Between 'Observability' and 'Visibility' in Security?

To drive holistic security success, we have to start with the interlinking of visibility and observability.
08 February 2021

Android App Infects Millions of Devices With a Single Update

The popular Barcode Scanner app, which as been available on Google Play for years, turned malicious with one software update.
08 February 2021

Microsoft to add 'nation-state activity alerts' to Defender for Office 365

Microsoft has been alerting users of nation-state attacks since 2016. Alerts will now be added to the Defender for Office 365 dashboard so companies can take quicker action.
08 February 2021

Fake Forcepoint Google Chrome Extension Hacks Windows Users

Fake Forcepoint Google Chrome Extension Hacks Windows Users In a unique attack, cybercriminals locally install an extension to manipulate data in internal web applications that the victims have access to.
08 February 2021

WestRock Ransomware Attack Hinders Packaging Production

WestRock Ransomware Attack Hinders Packaging Production The ransomware attack, affecting OT systems, resulted in some of WestRock's facilities lagging in production levels.
08 February 2021

iPhone 12 magnet array can disrupt implantable medical devices

Doctors issue warning about new magnet-based MagSafe technology included with newer-gen iPhones.
08 February 2021

Hidden Dangers of Microsoft 365's Power Automate and eDiscovery Tools

Hidden Dangers of Microsoft 365's Power Automate and eDiscovery Tools Attackers are using legitimate enterprise tools to execute attacks and carry out malicious actions. Security teams must take action now.
08 February 2021

Cartoon Caption Winner: Insider Threat

Cartoon Caption Winner: Insider Threat And the winner of Dark Reading's January cartoon caption contest is ...
08 February 2021

With one update, this malicious Android app hijacked millions of devices

All it takes is one tweak to change a legitimate app into a frustrating parasite on your handset.
08 February 2021

Domestic Kitten hacking group strikes local citizens considered a threat to Iranian regime

FurBall spyware pretends to be everything from a security app to screen wallpapers.
08 February 2021

ESET Threat Report Q4 2020

A view of the Q4 2020 threat landscape as seen by ESET telemetry and from the perspective of ESET threat detection and research experts

The post ESET Threat Report Q4 2020 appeared first on WeLiveSecurity

08 February 2021

Hacktivists deface multiple Sri Lankan domains, including Google.lk

Authorities said they detected the attack a few hours after it started and blocked it on Saturday.
07 February 2021

Industrial Networks See Sharp Uptick in Hackable Security Holes

Industrial Networks See Sharp Uptick in Hackable Security Holes Claroty reports that adversaries, CISOs and researchers have all turned their attention to finding critical security bugs in ICS networks.
05 February 2021