Cybersecurity News


Joker’s Stash Carding Site Taken Down, for Now

Joker’s Stash Carding Site Taken Down, for Now The underground payment-card data broker saw its blockchain DNS sites taken offline after an apparent law-enforcement effort.
22 December 2020

Security as Code: How Repeatable Policy-Driven Deployment Improves Security

The SaC approach lets users codify and enforce a secure state of application configuration deployment that limits risk.
22 December 2020

Patrick Wardle on Hackers Leveraging ‘Powerful’ iOS Bugs in High-Level Attacks

Patrick Wardle on Hackers Leveraging ‘Powerful’ iOS Bugs in High-Level Attacks Noted Apple security expert Patrick Wardle discusses how cybercriminals are stepping up their game in targeting Apple users with new techniques and cyberattacks.
22 December 2020

Law enforcement take down three bulletproof VPN providers

The three VPN services provided safe haven for cybercriminals to carry out ransomware attacks, web skimming operations, spearphishing, and account takeovers.
22 December 2020

Microsoft and McAfee headline newly-formed 'Ransomware Task Force'

The newly-founded Ransomware Task Force will work to put together a standard framework for dealing with ransomware attacks.
22 December 2020

Microsoft, Google, Cisco, and others file amicus brief in support of Facebook's NSO lawsuit

Tech giants show support for Facebook's legal case against spyware vendor NSO Group.
21 December 2020

Cisco, Intel, Deloitte Among Victims of SolarWinds Breach: Report

The Wall Street Journal identified 24 businesses so far that have downloaded the SolarWinds software infected with malicious code.
21 December 2020

Nosy Ex-Partners Armed with Instagram Passwords Pose a Serious Threat

Nosy Ex-Partners Armed with Instagram Passwords Pose a Serious Threat A survey of single people found almost a third are still logging into their ex’s social-media accounts, some for revenge.
21 December 2020

Smart Doorbell Disaster: Many Brands Vulnerable to Attack

Smart Doorbell Disaster: Many Brands Vulnerable to Attack Investigation reveals device sector is problem plagued when it comes to security bugs.
21 December 2020

NSA, CISA Warn of Attacks on Federated Authentication

While incident responders focus on attacks using SolarWinds Orion, government cyber defenders highlight other methods likely being used as well.
21 December 2020

Defending Against State and State-Sponsored Threat Actors

Defending Against State and State-Sponsored Threat Actors Saryu Nayyar of Gurucul discusses state and state-sponsored threat actors, the apex predators of the cybersecurity world.
21 December 2020

Partial lists of organizations infected with Sunburst malware released online

As security researchers dig through forensic evidence in the aftermath of the SolarWinds supply chain attack, victim names are slowly starting to surface.
21 December 2020

7 Infamous Moments in Adobe Flash's Security History

7 Infamous Moments in Adobe Flash's Security History End-of-life is here: Adobe's support for Flash is gone as of Jan. 1. Here's what we won't miss about the multimedia software platform.
21 December 2020

Zero-Click Apple Zero-Day Uncovered in Pegasus Spy Attack

Zero-Click Apple Zero-Day Uncovered in Pegasus Spy Attack The phones of 36 journalists were infected by four APTs, possibly linked to Saudi Arabia or the UAE.
21 December 2020

Simplifying Proactive Defense With Threat Playbooks

Simplifying Proactive Defense With Threat Playbooks Fortinet's Derek Manky talks about how threat playbooks can equip defense teams with the tools they need to fight back against evolving attacker TTPs.
21 December 2020

Dark Web Pricing Skyrockets for Microsoft RDP Servers, Payment-Card Data

Dark Web Pricing Skyrockets for Microsoft RDP Servers, Payment-Card Data Underground marketplace pricing on RDP server access, compromised payment card data and DDoS-For-Hire services are surging.
21 December 2020

Critical Bugs in Dell Wyse Thin Clients Allow Code Execution, Client Takeovers

Critical Bugs in Dell Wyse Thin Clients Allow Code Execution, Client Takeovers The bugs rate 10 out of 10 on the vulnerability-severity scale, thanks to the ease of exploitation.
21 December 2020

Hacker Dumps Crypto Wallet Customer Data; Active Attacks Follow

Hacker Dumps Crypto Wallet Customer Data; Active Attacks Follow Customer data from a June attack against cryptocurrency wallet firm Ledger is now public and actively being used in attacks.
21 December 2020

Cybersecurity Advent calendar: Stay aware, stay safe!

When it comes to holiday gifts, surprise and wonder are always welcome. When it comes to protecting your security, however, you don’t want to leave anything to chance.

The post Cybersecurity Advent calendar: Stay aware, stay safe! appeared first on WeLiveSecurity

21 December 2020

We Have a National Cybersecurity Emergency -- Here's How We Can Respond

Let's prioritize bipartisan strategic actions that can ensure our national security and strengthen the economy. Here are five ideas for how to do that.
21 December 2020