Cybersecurity News


Week in security with Tony Anscombe

What COVID-19 may mean for privacy rights – Managing supply-chain disruptions – Unpatched Windows zero-day under attack

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

27 March 2020

Apple Unpatched VPN Bypass Bug Impacts iOS 13, Warn Researchers

Apple Unpatched VPN Bypass Bug Impacts iOS 13, Warn Researchers The vulnerability can be exploited to reveal limited traffic data including a device’s IP address.
27 March 2020

What happens when the global supply chain breaks?

If we can’t secure the supply chain, eventually everything else will break

The post What happens when the global supply chain breaks? appeared first on WeLiveSecurity

27 March 2020

InfoSec News Signal Boost – March 27, 2020

By William Knowles @c4i Senior Editor InfoSec News March 27, 2020 As we try to get used to the new normal, InfoSec News understands many cyber and information security professionals (including myself) are looking for their new security forever homes. As I find these calls for security professionals, I’m hopeful this might be the catalyst for breaking […]
27 March 2020

Booz Allen analyzed 200+ Russian hacking operations to better understand their tactics

Booz Allen: Russia uses its GRU military hackers following predictable patterns based on a public military doctrine.
26 March 2020

Cyber Version of 'Justice League' Launches to Fight COVID-19 Related Hacks

Goal is to help organizations - especially healthcare entities - protect against cybercriminals trying to take advantage of the pandemic.
26 March 2020

Insurance Giant Chubb Might Be Ransomware Victim

A ransomware operator claims to have successfully attacked Chubb Insurance databases.
26 March 2020

How to Evict Attackers Living Off Your Land

How to Evict Attackers Living Off Your Land As cyber defenses improve, adversaries are shifting to stealthy "living-off-the-land" attacks that use targets' own tools against them. Here are some tips to defend your turf.
26 March 2020

How Zoom, Netflix, and Dropbox are Staying Online During the Pandemic

Inside the efforts to keep the quarantined world's popular Internet services running smoothly.
26 March 2020

Critical CODESYS Bug Allows Remote Code Execution

Critical CODESYS Bug Allows Remote Code Execution CVE-2020-10245, a heap-based buffer overflow that rates 10 out of 10 in severity, exists in the CODESYS web server and takes little skill to exploit.
26 March 2020

6 tips for safe and secure remote working

Getting cybersecurity right in the work-from-home world can feel daunting. ESET Chief Security Evangelist Tony Anscombe shares 6 best practices that will steer you in the right direction.

The post 6 tips for safe and secure remote working appeared first on WeLiveSecurity

26 March 2020

10 Security Services Options for SMBs

10 Security Services Options for SMBs Outsourcing security remains one of the best ways for small to midsize businesses to protect themselves from cyberthreats.
26 March 2020

Google says no APP users have been phished to date

Google lauds its Advanced Protection Program (APP) that provides enhanced security features.
26 March 2020

Tupperware Cyberattack Stores Away Customer Payment Cards

Tupperware Cyberattack Stores Away Customer Payment Cards The food container company's main website had a card skimmer that scooped up online customers' payment card data.
26 March 2020

Security Not a Priority for SAP Projects, Users Report

Nearly 70% of SAP users surveyed believe organizations lacked focus on IT security during previous SAP implementations.
26 March 2020

3 Mobile Security Problems That Most Security Teams Haven't Fixed Yet

Mobility must be included in the security operations workflow so that company data is protected regardless of where remote workers are located.
26 March 2020

Emerging APT Mounts Mass iPhone Surveillance Campaign

Emerging APT Mounts Mass iPhone Surveillance Campaign The malware, the work of a new APT called TwoSail Junk, allows deep surveillance and total control over iOS devices.
26 March 2020

Russians Shut Down Huge Card Fraud Ring

Federal investigators in Russia have charged at least 25 people accused of operating a sprawling international credit card theft ring. Cybersecurity experts say the raid included the charging of a major carding kingpin thought to be tied to dozens of carding shops and to some of the bigger data breaches targeting western retailers over the past decade. In a statement released this week, the Russian Federal Security Service (FSB) said 25 individuals were charged with circulating illegal means of payment in connection with some 90 websites that sold stolen credit card data.
26 March 2020

Google to resume Chrome updates it paused last week due to COVID-19

Google Chrome 81 to be released next month, on April 7.
26 March 2020

How the PCI DSS Can Help Remote Workers


PCI SSC shares guidance for protecting payment data and how to work securely when connecting and working remotely.

26 March 2020