Cybersecurity News


CISA Publishes Analysis on New 'FiveHands' Ransomware

Attackers used publicly available tools, FiveHands ransomware, and SombRAT to successfully target an organization, officials report.
06 May 2021

Critical Cisco SD-WAN, HyperFlex Bugs Threaten Corporate Networks

Critical Cisco SD-WAN, HyperFlex Bugs Threaten Corporate Networks The networking giant has rolled out patches for remote code-execution and command-injection security holes that could give attackers keys to the kingdom.
06 May 2021

Ryuk Ransomware Attack Sprung by Frugal Student

Ryuk Ransomware Attack Sprung by Frugal Student The student opted for “free” software packed with a keylogger that grabbed credentials later used by "Totoro" to get into a biomolecular institute. 
06 May 2021

Securing the Internet of Things in the Age of Quantum Computing

Securing the Internet of Things in the Age of Quantum Computing Internet security, privacy, and authentication aren't new issues, but IoT presents unique security challenges.
06 May 2021

Cloud-Native Businesses Struggle with Security

More companies moved to cloud-native infrastructure in the past year, and security incidents and malware moved right along with them.
06 May 2021

Massive DDoS Attack Disrupts Belgium Parliament

Massive DDoS Attack Disrupts Belgium Parliament A large-scale incident earlier this week against Belnet and other ISPs has sent a wave of internet disruption across numerous Belgian government, scientific and educational institutions.
06 May 2021

Biden's Supply Chain Initiative Depends on Cybersecurity Insights

Those helming the US supply chain executive order need to leverage standards, measurement, and the lessons cybersecurity leaders have learned.
06 May 2021

How to Move Beyond Passwords and Basic MFA

How to Move Beyond Passwords and Basic MFA It's not a question of whether passwordless is coming -- it's simply a question of when. How should your organization prepare? (Part two of a two-part series.)
06 May 2021

Data leak implicates over 200,000 people in Amazon fake product review scam

Names, email addresses, and PayPal details were exposed and left online.
06 May 2021

Ryuk ransomware finds foothold in bio research institute through student who wouldn’t pay for software

The incident started with a student who didn't want to pay for a license and ended with the loss of research.
06 May 2021

Fantastic passwords and where your children can find them

How witches, wizards and superheroes can help your kids stay safe from cyber-villains, plus other parenting hacks to encourage your children to use secure passwords

The post Fantastic passwords and where your children can find them appeared first on WeLiveSecurity

06 May 2021

Black Hat Asia Speakers Share Secrets About Sandboxes, Smart Doors, and Security

Find video interviews with some of the coolest Black Hat Asia experts right here, as part of the Dark Reading News Desk this week.
06 May 2021

Older Generation

Using technology securely can be overwhelming or confusing, especially for those who did not grow up with it. When helping secure those who are uncomfortable with technology focus on just the basics - 1) be aware of social engineering attacks 2) secure your home network 3) keep your systems updated 4) use strong, unique passwords 5) backup your key personal data
06 May 2021

Attackers Seek New Strategies to Improve Macros' Effectiveness

The ubiquity of Microsoft Office document formats means attackers will continue to use them to spread malware and infect systems.
05 May 2021

New Crypto-Stealer ‘Panda’ Spread via Discord

New Crypto-Stealer ‘Panda’ Spread via Discord PandaStealer is delivered in rigged Excel files masquerading as business quotes, bent on stealing victims' cryptocurrency and other info.
05 May 2021

Anti-Spam WordPress Plugin Could Expose Website User Data

Anti-Spam WordPress Plugin Could Expose Website User Data 'Spam protection, AntiSpam, FireWall by CleanTalk' is installed on more than 100,000 sites -- and could offer up sensitive info to attackers that aren't even logged in.
05 May 2021

Gap Between Security and Networking Teams May Hinder Tech Projects

Professionals in each field describe a poor working relationship between the two teams
05 May 2021

DoD Lets Researchers Target All Publicly Accessible Info Systems

The Department of Defense expands its vulnerability disclosure program to include a broad range of new targets.
05 May 2021

Wanted: The (Elusive) Cybersecurity 'All-Star'

Wanted: The (Elusive) Cybersecurity 'All-Star' Separate workforce studies by (ISC) 2 and ISACA point to the need for security departments to work with existing staff to identify needs and bring entry-level people into the field.
05 May 2021

Debating Law Enforcement's Role in the Fight Against Cybercrime

Debating Law Enforcement's Role in the Fight Against Cybercrime The FBI's action to remove Web shells from compromised Microsoft Exchange Servers sparks a broader discussion about officials' response to cyberattacks.
05 May 2021