Cybersecurity News
Prominent security expert Dan Kaminsky passes away at 42
Kaminsky is being remembered not only for his kindness but also for being a “force of nature” in the infosec community.26 April 2021
4 common ways scammers use celebrity names to lure victims
All that glitters is not gold – look out for fake celebrity endorsements and other con jobs that aren’t going out of fashion any time soon
The post 4 common ways scammers use celebrity names to lure victims appeared first on WeLiveSecurity
26 April 2021
Thodex cryptocurrency exchange chief allegedly goes on the run with $2bn in client funds
The exchange claims such reports are “unfounded.”26 April 2021
Never Give Your Password Over the Phone
Never give your password to someone over the phone. If someone calls you and asks for your password while saying they are from the Help Desk or Tech Support team, it is most likely an attacker attempting to gain access to your account.26 April 2021
Window Snyder Launches Startup to Fill IoT Security Gaps
Thistle Technologies aims to help connected device manufacturers securely deliver updates to their products.
23 April 2021
Oscar-Bait, Literally: Hackers Abuse Nominated Films for Phishing, Malware
Judas and the Black Messiah may be a favorite for Best Picture at the 93rd Academy Awards on Sunday, but it's a fave for cybercriminals too.
23 April 2021
Password Manager Suffers 'Supply Chain' Attack
A software update to Click Studios' Passwordstate password manager contained malware.23 April 2021
Insider Data Leaks: A Growing Enterprise Threat
Report finds 85% of employees are more likely to leak sensitive files now than before the COVID-19 pandemic.23 April 2021
Prometei Botnet Could Fire Up APT-Style Attacks
The malware is for now using exploits for the Microsoft Exchange "ProxyLogon" security bugs to install Monero-mining malware on targets.
23 April 2021
5 Fundamental But Effective IoT Device Security Controls
Matt Dunn, the associate managing director for cyber-risk at Kroll, discusses how to keep networks safe from insecure IoT devices.
23 April 2021
KnowBe4 Issues IPO to Drive Global Expansion, New Automation Features
Security awareness firm aims expand into Europe and Asia, and add automation and machine learning to its technology.23 April 2021
Week in security with Tony Anscombe
WhatsApp Pink is not an update – Security holes in Apple's AirDrop – New zero-day plugged in Chrome
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
23 April 2021
Instagram rolls out new features to help prevent cyberbullying
The social media platform is stepping up efforts to help stomp out harassment and other abusive behavior
The post Instagram rolls out new features to help prevent cyberbullying appeared first on WeLiveSecurity
23 April 2021
SOC 2 Attestation Tips for SaaS Companies
Attestation helps SaaS vendors demonstrate that digital security is a primary focus.23 April 2021
Tell Us the Truth: Why Do You LOVE Passwords?
There must be something you appreciate about the humble password, right? Tell us what you think.
23 April 2021
REvil’s Big Apple Ransomware Gambit Looks to Pay Off
The notorious cybercrime gang could make out whether or not Apple pays the $50 million ransom by May 1 as demanded.
23 April 2021
ToxicEye: Trojan abuses Telegram platform to steal your data
The RAT is using bots to propagate across Telegram channels.23 April 2021
Major News Events
When a major news event happens, cyber criminals will take advantage of the incident and send phishing emails with a subject line related to the event. These phishing emails often include a link to malicious websites, an infected attachment or are a scam designed to trick you out of your money.23 April 2021
Supernova Malware Actors Masqueraded as Remote Workers to Access Breached Network
China-based Spiral group is believed to be behind year-long ttack, which exploited a flaw in SolarWinds Orion technology to drop a Web shell.22 April 2021
The Edge Pro Tip: Brush Up on Web Shells
While neither new nor novel, Web shells are making an impact with a surge of Exchange attacks.
22 April 2021