Cybersecurity News


XSS vulnerability found in popular WYSIWYG website editor

The security flaw was found in how HTML sanitizing is performed.
02 June 2021

Amazon Sidewalk Poised to Sweep You Into Its Mesh

Amazon Sidewalk Poised to Sweep You Into Its Mesh On June 8, Amazon’s pulling all its devices into a device-to-device wireless mix, inspiring FUD along the way. Now's the time to opt out if you're be-FUDdled.
02 June 2021

Russian underground forums launch competitions for cryptocurrency, NFT hacks

Prizes are on offer for everything from stealing wallet funds to compromising NFTs.
02 June 2021

US schools land IBM grants to protect themselves against ransomware

The grants are worth a total of $3 million.
02 June 2021

US Seizes Attacker Domains Used in USAID Phishing Campaign

The move follows last week's disclosure of an ongoing attack designed to mimic emails from the US Agency for International Development.
01 June 2021

New Barebones Ransomware Strain Surfaces

The authors of Epsilon Red have offloaded many tasks that are usually integrated into the ransomware -- such as Volume Shadow Copy deletion -- to PowerShell scripts.
01 June 2021

Cyber-Insurance Fuels Ransomware Payment Surge

Cyber-Insurance Fuels Ransomware Payment Surge Companies relying on their cyber-insurance policies to pay off ransomware criminals are being blamed for a recent uptick in ransomware attacks.
01 June 2021

Meat Producer JBS USA Hit By Ransomware Attack

The company says recovery from the attack may delay transactions with customers and suppliers.
01 June 2021

Where Bug Bounty Programs Fall Flat

Where Bug Bounty Programs Fall Flat Some criminals package exploits into bundles to sell on cybercriminal forums years after they were zero days, while others say bounties aren't enough .
01 June 2021

The Future of PCI SSC Mobile Standards

 

The Council is currently working on the next evolution of its mobile security standards. To date, PCI SSC has two mobile standards: PCI Software-based PIN Entry on COTS (SPoC) Standard, which provides a software-based approach for protecting PIN entry on the wide variety of COTS devices, and PCI Contactless Payments on COTS (CPoC) Standard which addresses security for solutions that enable merchants to accept contactless payments using a smartphone or other commercial off-the-shelf (COTS) mobile device with near-field communication (NFC).

01 June 2021

Return to Basics: Email Security in the Post-COVID Workplace

As we reimagine the post-pandemic workplace, we must also reevaluate post-pandemic email security practices.
01 June 2021

Name That Edge Toon: In Tow

Name That Edge Toon: In Tow Feeling creative? Submit your caption in the comments, and our panel of experts will reward the winner with a $25 Amazon gift card.
01 June 2021

CISO Confidence Is Rising, but Issues Remain

New research reveals how global CISOs dealt with COVID-19 and their plans for 2022-2023.
01 June 2021

How Mobile Ad Fraud has Evolved in the Year of the Pandemic

How Mobile Ad Fraud has Evolved in the Year of the Pandemic Mobile ad fraud has always been a challenge for network operators in all parts of the globe, but the pandemic has made users more vulnerable than ever before due to the sheer amount of time they now spend with their devices.
01 June 2021

Cybersecurity Group Hopes to Push 30 More National Priorities

The Cyberspace Solarium Commission worked with legislators and the Trump administration to get 27 recommendations implemented in policy last year. It's aiming for 30 more in 2021.
01 June 2021

Cyberattack Forces Meat Producer to Shut Down Operations in U.S., Australia

Cyberattack Forces Meat Producer to Shut Down Operations in U.S., Australia Global food distributor JBS Foods suffered an unspecified incident over the weekend that disrupted several servers supporting IT systems and could affect the supply chain for some time.
01 June 2021

GPs urged to refuse to hand over patient details to NHS Digital

GPs urged to refuse to hand over patient details to NHS Digital

Senior doctors call on colleagues not to share personal data, in effort to buy time to raise awareness of plans

Senior GPs have called on colleagues to refuse to hand over patients’ personal data to NHS Digital, in a move they hope will buy time to raise awareness of plans to place all medical records in England on a central database.

All 36 doctors’ surgeries in Tower Hamlets, east London, have already agreed to withhold the data when collection begins on 1 July, the Guardian understands. An email has been circulated to about 100 practices across north-east London calling on them to also consider whether the data collection is legitimate, with the hope that it will spread to many more. The email makes clear the refusal to share the data is technically a breach of the Health and Social Care Act 2012.

Related: The Guardian view on medical records: NHS data grab needs explaining | Editorial

Continue reading...
01 June 2021

Asian cybercrime takedown leads to intercept of $83 million in financial theft

Police intercepted funds that were on their way to the accounts of financial fraudsters.
01 June 2021

SEC charges US promoters for marketing alleged BitConnect cryptocurrency Ponzi scheme

Promoters of a suspected, high-profile exit scam are now in the hot seat.
01 June 2021

5 common scams targeting teens – and how to stay safe

From knock-off designer products to too-good-to-be-true job offers, here are five common schemes fraudsters use to trick teenagers out of their money and sensitive data

The post 5 common scams targeting teens – and how to stay safe appeared first on WeLiveSecurity

01 June 2021