Cybersecurity News
Manufacturing Firms Learn Cybersecurity the Hard Way
Although 61% of smart factories have experienced a cybersecurity incident, IT groups and operational technology groups still don't collaborate enough on security.29 March 2021
Pair of Apex Legends Players Banned for DDoS Server Attacks
Predator-ranked players on Xbox console game version rigged matches with DDoS attacks.
29 March 2021
Attackers Target PHP Git Server to Backdoor Source Code
The PHP maintainers have decided to make GitHub the official source for PHP repositories going forward.29 March 2021
SolarWinds Hackers Accessed DHS Chief's Email
Several high-level government accounts were also breached in the attack.29 March 2021
Hades Ransomware Gang Exhibits Connections to Hafnium
There could be more than immediately meets the eye with this targeted attack group.
29 March 2021
PHP Infiltrated with Backdoor Malware
The server for the web-application scripting language was compromised on Sunday.
29 March 2021
Apple rushes to patch zero‑day flaw in iOS, iPadOS
The bug is under active exploitation by unknown attackers and affects a wide range of devices, including iPhones, iPads and Apple Watches
The post Apple rushes to patch zero‑day flaw in iOS, iPadOS appeared first on WeLiveSecurity
29 March 2021
4 Open Source Tools to Add to Your Security Arsenal
Open source solutions can offer an accessible and powerful way to enhance your security-testing capabilities.
29 March 2021
Official PHP Git server targeted in attempt to bury malware in code base
The cyberattack has prompted a rapid and permanent move to GitHub.29 March 2021
CISA Builds Out Defensive Tools for Security Teams
Need a tool to hunt for attacks in your network? The DHS agency bolsters the offerings in its open source toolbox.29 March 2021
US charges close to 500 individuals for COVID-19 fraud, criminal activity
Everything from PPE fraud, disaster loan schemes, and unemployment scams are on the books.29 March 2021
This Android malware hides as a System Update app to spy on you
The spyware triggers when certain actions are performed, such as new adding a contact.29 March 2021
Brian Krebs: No, I didn’t hack your Microsoft Exchange server
The KrebsOnSecurity name is, once again, being abused by cyberattackers.29 March 2021
No, I Did Not Hack Your MS Exchange Server
New data suggests someone has compromised more than 21,000 Microsoft Exchange Server email systems worldwide and infected them with malware that invokes both KrebsOnSecurity and Yours Truly by name. Let's just get this out of the way right now: It wasn't me.28 March 2021
SolarWinds Experimenting With New Software Build System in Wake of Breach
CISO of SolarWinds now has complete autonomy to stop product releases if security concerns exist, CEO says.26 March 2021
40% of Apps Leaking Information
Apps in manufacturing most at risk, according to WhiteHat Security.26 March 2021
Apple Patches iOS Zero-Day
Apple today released iOS 14.4.2 to address a security vulnerability that may have been actively exploited.26 March 2021
Executive Order Would Strengthen Cybersecurity Requirements for Federal Agencies
The post-SolarWinds EO could be issued as soon as next week, according to a report.
26 March 2021
Microsoft Shares Exchange Server Post-Compromise Attack Activity
Microsoft shares the details of post-exploitation attack activity, including multiple ransomware payloads and a cryptocurrency botnet.26 March 2021
Employee Lockdown Stress May Spark Cybersecurity Risk
Younger employees and caregivers report more stress than other groups-- and more shadow IT usage.
26 March 2021