Cybersecurity News
Apple Patches Two iOS Zero-Days Abused for Years
Researchers revealed two zero-day security vulnerabilities affecting Apple's stock Mail app on iOS devices.
Connected Home Hubs Open Houses to Full Remote Takeover
Users should update their firmware for three popular smart-home hubs.
Making the Case for Process Documentation in Cyber Threat Intel
Standard language and processes, not to mention more efficient dissemination of findings and alerts all make documenting your security processes a mustLA County Hit with DoppelPaymer Ransomware Attack
The DoppelPaymer ransomware group is claiming that it launched a cyberattack against Torrance - and is now leaking the LA city's data online.
Apple investigating report of a new iOS exploit being used in the wild
Cyber-security firm ZecOps said today it detected attacks against high-profile targets using a new iOS email exploit.Updated Guidance: Responding to a Data Breach
PCI Security Standards Council recently updated the guidance document: Responding to a Cardholder Data Breach. This guide is intended to help merchants and service providers with incident response preparation. This guide also describes how and when a Payment Card Industry Forensic Investigator (PFI) should be engaged to assist.
Microsoft Issues Out-Of-Band Security Update For Office, Paint 3D
The flaws exist in Autodesk's FBX library, integrated in Microsoft's Office, Office 365 ProPlus and Paint 3D applications.
8 Steps to Enhance Government Agencies' Security Posture
Given the heterogeneous architectures of critical state and local systems, it's imperative we learn from the security exposures of other critical infrastructure and pledge to be betterSBA Security Incident May Affect Nearly 8,000 Businesses
Business owners who applied for federal disaster loans may have had information exposed to other applicants, the Small Business Administration reports.Poll: Worried About Losing Your Job?
With the unemployment rate surging due to COVID-19, are you concerned your job is in jeopardy?Small Businesses Tapping COVID-19 Loans Hit with Data Exposure
The SBA said sensitive information about applicants may have been revealed to others applying for disaster loan program funds.
This is what happens to cryptocurrency paid out in sextortion campaigns
Researchers have followed the trail of dirty coins generated through extorting sextortion spam victims.Hackers have breached 60 ad servers to load their own malicious ads
Why buy legitimate ad slots to deliver malvertising when you can just hack the server instead.Domain Registrars Under Pressure to Combat COVID-19-Related Scams
A huge increase in malicious website registrations has prompted concern from US lawmakers.Using Big Tech to tackle coronavirus risks swapping one lockdown for another | Adam Smith
An app that logs movements and contacts might seem like a fair trade now but we risk giving away our privacy for good
Even when the lockdown is lifted, there is no guarantee that life will ever return to normal. To prevent a future outbreak of coronavirus, the UK will need to roll out mass testing, maintain some social distancing measures and closely monitor communities to curb future flare-ups.
In pursuing that last aim, governments across the world are developing technology to track our movements. When lockdown ends, technology could be a valuable means of controlling future outbreaks, alerting people to cases of Covid-19 in their area and hopefully preventing future shutdowns.
Related: The expansion of mass surveillance to stop coronavirus should worry us all | Veena Dubal
Adam Smith is a technology reporter at the Independent
Continue reading...Buying a secondhand device? Here’s what to keep in mind
If you’re trying to be responsible towards the planet, also be responsible to yourself and take these steps so that the device doesn’t end up costing you more than you’ve saved
The post Buying a secondhand device? Here’s what to keep in mind appeared first on WeLiveSecurity
Smart IoT home hubs vulnerable to remote code execution attacks
IoT hubs used in homes and offices were found to be susceptible to exploit due to critical bugs in their firmware.Serious flaws found in multiple smart home hubs: Is your device among them?
In worst-case scenarios, some vulnerabilities could even allow attackers to take control over the central units and all peripheral devices connected to them
The post Serious flaws found in multiple smart home hubs: Is your device among them? appeared first on WeLiveSecurity
Automated Bots Are Increasingly Scraping Data & Attempting Logins
The share of bot traffic to online sites declines, but businesses are seeing an overall increase in automated scraping of data, login attempts, and other detrimental activity.Banking.BR Android Trojan Emerges in Credential-Stealing Attacks
A new Android trojan targets banking customers with overlay attacks to steal their bank credentials and ultimately take over their accounts.