Cybersecurity News


Do Cybercriminals Fear Arrest?

Researchers explore how cybercriminals weigh the possibility of arrest and whether it deters criminal activity.
23 March 2021

Phish Leads to Breach at Calif. State Controller

A phishing attack last week gave attackers access to email and files at the California State Controller's Office (SCO), an agency responsible for handling more than $100 billion in public funds each year. The phishers had access for more than 24 hours, and sources tell KrebsOnSecurity the intruders used that time to steal Social Security numbers and sensitive files on thousands of state workers, and to send targeted phishing messages to at least 9,000 other workers and their contacts.
23 March 2021

Disrupting the Cybercriminal Supply Chain

It is time to turn the tables on cybercriminals and use their own tactics against them.
23 March 2021

Podcast: Microsoft Exchange Server Attack Onslaught Continues

Podcast: Microsoft Exchange Server Attack Onslaught Continues Derek Manky, Chief of Security Insights & Global Threat Alliances at Fortinet’s FortiGuard Labs, gives insight into the surge in attacks against vulnerable Microsoft Exchange servers over the last week.
23 March 2021

Paving the way: Inspiring Women in Payments - A podcast featuring Global Payments

 

In recognition of Women’s History Month, the PCI Security Standards Council is pleased to bring you a special edition of our podcast. In this panel discussion, we examine what it means to be female in the tech world with three women from Global Payments, a leading worldwide provider of payment technology and software solutions.

23 March 2021

Cartoon Caption Winner: In Hot Water

Cartoon Caption Winner: In Hot Water And the winner of The Edge's March cartoon caption contest is ...
23 March 2021

Energy Giant Shell Is Latest Victim of Accellion Attacks

Energy Giant Shell Is Latest Victim of Accellion Attacks Attackers accessed personal and business data from the company’s legacy file-transfer service in a recent data-security incident but core IT systems remained untouched.
23 March 2021

Data Protection Is a Group Effort

When every employee is well-versed in customer data privacy principles, the DPO knows the enterprise's sensitive data is in good hands.
23 March 2021

Cybercriminals exchange tips on avoiding arrest, jail in underground forums

Covering early mistakes, who to target, and what to do when on the verge of arrest are all hot topics.
23 March 2021

Debt-chasing UK councils potentially expose private resident data

Text reminders for debts to be paid opened up a security chasm for thousands of taxpayers.
23 March 2021

Cloudflare debuts zero-trust browsing service for remote enterprise workforce

Browsers will run under Cloudflare’s umbrella in an attempt to isolate sessions from cyberattacks.
23 March 2021

Oil giant Shell discloses data breach linked to Accellion FTA vulnerability

The information of stakeholders has been compromised.
23 March 2021

When repairing things you own may make you an outlaw

How do you balance the right to repair with the requirement to remain secure?

The post When repairing things you own may make you an outlaw appeared first on WeLiveSecurity

23 March 2021

IT admin with axe to grind sent to prison for wiping Microsoft user accounts

The victim company’s operations ground to a halt following the attack.
23 March 2021

Researchers Discover Two Dozen Malicious Chrome Extensions

Extensions are being used to serve up unwanted adds, steal data, and divert users to malicious sites, Cato Networks says.
22 March 2021

Acer Reportedly Hit With $50M Ransomware Attack

Reports say a ransomware gang has given Acer until March 28 to pay, or it will double the ransom amount.
22 March 2021

CISA Warns of Security Flaws in GE Power Management Devices

CISA Warns of Security Flaws in GE Power Management Devices The flaws could allow an attacker to access sensitive information, reboot the UR, gain privileged access, or cause a denial-of-service condition.
22 March 2021

RedTorch Formed from Ashes of Norse Corp.

Remember Norse Corp., the company behind the interactive "pew-pew" cyber attack map shown in the image blow? Norse imploded rather suddenly in 2016 following a series of managerial missteps and funding debacles. Now, the founders of Norse have launched a new company with a somewhat different vision: RedTorch, which for the past two years has marketed a mix of services to high end celebrity clients, including spying and anti-spying tools and services.
22 March 2021

CSA & ISACA Team Up on Cloud Auditing Certificate

The Certificate of Cloud Auditing Knowledge aims to fill a gap in the market for cloud IT auditing as more organizations work in cloud environments.
22 March 2021

Critical Security Bugs Fixed in Virtual Learning Software

Critical Security Bugs Fixed in Virtual Learning Software Remote ed software bugs give attackers wide access student computers, data.
22 March 2021