Cybersecurity News


Microsoft, Adobe Exploits Top List of Crooks’ Wish List

Microsoft, Adobe Exploits Top List of Crooks’ Wish List You can’t possibly patch all CVEs, so focus on the exploits crooks are willing to pay for, as tracked in a study of the underground exploit market.
18 May 2021

FBI receives record level of complaints for online scams, investment fraud

Victims are set to lose the most when they fall for romance scams and business email compromise.
18 May 2021

Android stalkerware detection rates surged over 2020

Not only are the apps potentially unethical, but vendors also aren’t interested in fixing core security issues found within them.
18 May 2021

DarkSide Ransomware Variant Targets Disk Partitions

A newly discovered DarkSide ransomware variant can detect and compromise partitioned hard drives, researchers report.
17 May 2021

Magecart Goes Server-Side in Latest Tactics Changeup

Magecart Goes Server-Side in Latest Tactics Changeup The latest Magecart iteration is finding success with a new PHP web shell skimmer.
17 May 2021

47% of Criminals Buying Exploits Target Microsoft Products

Researchers examine English- and Russian-language underground exploits to track how exploits are advertised and sold.
17 May 2021

DDoS Attacks Up 31% in Q1 2021: Report

If pace continues, DDoS attack activity could surpass last year's 10-million attack threshold.
17 May 2021

Rapid7 Is the Latest Victim of a Software Supply Chain Breach

Security vendor says attackers accessed some of its source code using a previously compromised Bash Uploader script from Codecov.
17 May 2021

What a Year It’s Been: RSA 2021 Embraces ‘Resilience’

What a Year It’s Been: RSA 2021 Embraces ‘Resilience’ Keynoters from Cisco, Netflix and RSA highlighted lessons from the last year, and cybersecurity's new mandate in the post-pandemic world: Bounce back stronger.
17 May 2021

RSAC 2021: What Will SolarWinds' CEO Reveal?

RSAC 2021: What Will SolarWinds' CEO Reveal? In a keynote conversation with Forrester analyst Laura Koetzle, Sudhakar Ramakrishna will get candid about the historic breach.
17 May 2021

DarkSide Hits Toshiba; XSS Forum Bans Ransomware

DarkSide Hits Toshiba; XSS Forum Bans Ransomware The criminal forum washed its hands of ransomware after DarkSide's pipeline attack & alleged shutdown: A "loss of servers" that didn't stop another attack.
17 May 2021

Bizarro Banking Trojan Sports Sophisticated Backdoor

Bizarro Banking Trojan Sports Sophisticated Backdoor The advanced Brazilian malware has gone global, harvesting bank logins from Android mobile users.
17 May 2021

CISOs Struggle to Cope with Mounting Job Stress

CISOs Struggle to Cope with Mounting Job Stress Pandemic and evolving IT demands are having a major, negative impact on CISO’s mental health, a survey found.
17 May 2021

Latest Security News From RSAC 2021

Check out Dark Reading's updated, exclusive coverage of the news and security themes that are dominating RSA Conference 2021.
17 May 2021

Latest Security News from RSAC 2021

Check out Dark Reading's updated, exclusive coverage of the news and security themes that are dominating RSA Conference 2021.
17 May 2021

New Technical FAQs for PCI 3DS Security Standards

 

PCI SSC Sr. Manager Jake Marcinko discusses the two newly published PCI 3DS Core and 3DS SDK Technical FAQ documents (found here).

17 May 2021

Try This One Weird Trick Russian Hackers Hate

In a Twitter discussion last week on ransomware attacks, KrebsOnSecurity noted that virtually all ransomware strains have a built-in failsafe designed to cover the backsides of the malware purveyors: They simply will not install on a Microsoft Windows computer that already has one of many types of virtual keyboards installed -- such as Russian or Ukrainian. So many readers had questions in response to the tweet that I thought it was worth a blog post exploring this one weird cyber defense trick.
17 May 2021

Agility Broke AppSec. Now It's Going to Fix It.

Outnumbered 100 to 1 by developers, AppSec needs a new model of agility to catch up and protect everything that needs to be secured.
17 May 2021

Name That Toon: Road Trip

Name That Toon: Road Trip Feeling creative? Submit your caption in the comments, and our panel of experts will reward the winner with a $25 Amazon gift card.
17 May 2021

Take action now – FluBot malware may be on its way

Why FluBot is a major threat for Android users, how to avoid falling victim, and how to get rid of the malware if your device has already been compromised

The post Take action now – FluBot malware may be on its way appeared first on WeLiveSecurity

17 May 2021