Cybersecurity News


Spotify launches ‘rolling reset’ on customer accounts, passwords linked to data leak

A third-party server containing Spotify credentials was uncovered by researchers.
24 November 2020

Tesla Hacked and Stolen Again Using Key Fob

Tesla Hacked and Stolen Again Using Key Fob Belgian researchers demonstrate third attack on the car manufacturer’s keyless entry system, this time to break into a Model X within minutes.
24 November 2020

Baidu's Android apps caught collecting sensitive user details

Data collection issue identified in Baidu Maps and Baidu Search Box apps, both removed from the Play Store in October 2020.
24 November 2020

New WAPDropper malware abuses Android devices for WAP fraud

New WAPDropper malware signs up Android users to premium services provided by telecoms in Thailand and Malaysia.
24 November 2020

SEC alleges Benja CEO duped investors to fund a non-existent e-commerce empire

The agency claims that business deals were made up to lure investors into funding the startup.
24 November 2020

Hacker leaks the user data of event management app Peatix

More than 4.2 million user accounts have been made available for download online earlier this month.
24 November 2020

'Antiquated process': data regulator on obtaining Cambridge Analytica warrant

'Antiquated process': data regulator on obtaining Cambridge Analytica warrant

UK information commissioner calls for international approach to emerging threat

The information commissioner has criticised the “antiquated process” that led to Facebook getting hold of Cambridge Analytica’s servers before the UK regulator itself, and renewed calls for an international approach to data privacy to tackle the emerging threat of data havens.

Elizabeth Denham, the information commissioner, spoke to Damian Collins MP, the former chair of the digital, culture, media and sport committee, who led the parliamentary enquiry into disinformation, on his podcast Infotagion. She described discovering that Facebook was inside the offices of defunct electioneering consultancy Cambridge Analytica while in the middle of an interview with Channel 4’s Jon Snow.

Continue reading...
23 November 2020

Security Researchers Sound Alarm on Smart Doorbells

A new analysis of 11 relatively inexpensive video doorbells uncovered high-risk vulnerabilities in all of them.
23 November 2020

As 'Anywhere Work' Evolves, Security Will Be Key Challenge

Companies should plan their future workforce model now, so they have time to implement the necessary tools, including cybersecurity and seamless remote access, a Forrester report says.
23 November 2020

Ransomware Grows Easier to Spread, Harder to Block

Researchers illustrate the evolution toward more complete and effective ransomware attacks designed to cripple target organizations.
23 November 2020

Critical VMware Zero-Day Bug Allows Command Injection; Patch Pending

Critical VMware Zero-Day Bug Allows Command Injection; Patch Pending VMware explained it has no patch for a critical escalation-of-privileges bug that impacts both Windows and Linux operating systems and its Workspace One.
23 November 2020

Evidence-Based Trust Gets Black Hat Europe Spotlight

An FPGA-based system could change the balance of power between hardware attackers and defenders within IT security.
23 November 2020

GoDaddy Employees Tricked into Compromising Cryptocurrency Sites

GoDaddy Employees Tricked into Compromising Cryptocurrency Sites ‘Vishing’ attack on GoDaddy employees gave fraudsters access to cryptocurrency service domains NiceHash, Liquid.
23 November 2020

Security flaws in smart doorbells may open the door to hackers

The peace of mind that comes with connected home security gadgets may be false – your smart doorbell may make an inviting target for unwanted visitors

The post Security flaws in smart doorbells may open the door to hackers appeared first on WeLiveSecurity

23 November 2020

Manchester United Suffers Cyberattack

Premier League soccer club says the attack didn't affect its website and app, and it doesn't appears to have exposed any fan or customer data either.
23 November 2020

TA416 APT Rebounds With New PlugX Malware Variant

TA416 APT Rebounds With New PlugX Malware Variant The TA416 APT has returned in spear phishing attacks against a range of victims - from the Vatican to diplomats in Africa - with a new Golang version of its PlugX malware loader.
23 November 2020

Chinese APT Group Returns to Target Catholic Church & Diplomatic Groups

APT group TA416 reemerges with new changes to its documented tool sets so it can continue launching espionage campaigns.
23 November 2020

Spotify Users Hit with Rash of Account Takeovers

Spotify Users Hit with Rash of Account Takeovers Users of the music streaming service were targeted by attackers using credential-stuffing approaches.
23 November 2020

Tesla Model X hacked and stolen in minutes using new key fob hack

Tesla is rolling out over-the-air software updates this week to prevent the attack from hijacking owner key fobs.
23 November 2020

Manchester United: IT Systems Disrupted in Cyberattack

Manchester United: IT Systems Disrupted in Cyberattack The popular U.K. soccer club confirmed an attack but said personal fan data remains secure.
23 November 2020