Cybersecurity News
Most Organizations Feel More Vulnerable to Breaches Amid Pandemic
More than half of business see the need for significant long-term changes to IT due to COVID-19, research finds.07 May 2021
FBI, NSA, CISA & NCSC Issue Joint Advisory on Russian SVR Activity
The report provides additional details on tactics of Russia's Foreign Intelligence Service following public attribution of the group to last year's SolarWinds attack.07 May 2021
Week in security with Tony Anscombe
Ousaban banking trojan targeting Brazil – How to help your kids use safe passwords – DDoS attack takes Belgian government websites offline
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
07 May 2021
The Edge Pro Quote: Password Empowerment
Despite being a pain in the neck, passwords may hold a psychological purpose that security pros should take into account.07 May 2021
Defending Against Web Scraping Attacks
Web scraping attacks, like Facebook's recent data leak, can easily lead to more significant breaches.07 May 2021
80% of Net Neutrality Comments to FCC Were Fudged
NY's AG: Millions of fake comments – in favor and against – came from a secret broadband-funded campaign or from a 19-year-old's fake identities.07 May 2021
Investment Scammer John Davies Reinvents Himself?
John Bernard, a pseudonym used by a convicted thief and con artist named John Clifton Davies who’s fleeced dozens of technology startups out of an estimated $30 million, appears to have reinvented himself again after being exposed in a recent investigative series published here. Sources tell KrebsOnSecurity that Davies/Bernard is now posing as John Cavendish and head of a new “private office” called Hempton Business Management LLP.07 May 2021
11 Reasons Why You Sorta Love Passwords
We asked you to tell the truth about why you secretly love passwords. From the heartfelt to the hilarious, here's what you had to say.07 May 2021
New Moriya rootkit stealthily backdoors Windows systems
Unknown attackers may have been quietly exploiting networks in attacks reaching back to 2018.07 May 2021
IRS secures order to serve Kraken with customer data request on cryptocurrency traders
Users who have conducted $20,000 in transactions are now on the tax office’s radar.07 May 2021
Google teams up with Stop Scams to tackle financial fraud in the UK
Companies are stepping up to tackle scams on and offline.07 May 2021
Anti-Virus
Make sure you have anti-virus software installed on your computer and that it is automatically updating. However, keep in mind that no anti-virus can catch all malware; your computer can still be infected. That is why it's so important you use common sense and be wary of any messages that seem odd or suspicious.07 May 2021
Troy Hunt: Organizations Make Security Choices Tough for Users
The Have I Been Pwned founder took the virtual stage at Black Hat Asia to share stories about his work and industrywide challenges.06 May 2021
Popular routers found vulnerable to hacker attacks
Millions of Brits could be at risk of cyberattacks due to poor default passwords and a lack of firmware updates
The post Popular routers found vulnerable to hacker attacks appeared first on WeLiveSecurity
06 May 2021
New Techniques Emerge for Abusing Windows Services to Gain System Control
Organizations should apply principles of least privilege to mitigate threats, security researcher says.06 May 2021
Google Plans to Automatically Enable Two-Factor Authentication
The company plans to automatically enroll users in two-step verification if their accounts are properly configured.06 May 2021
Qualcomm Chip Bug Opens Android Fans to Eavesdropping
A malicious app can exploit the issue, which could affect up to 30 percent of Android phones.06 May 2021
CISA Publishes Analysis on New 'FiveHands' Ransomware
Attackers used publicly available tools, FiveHands ransomware, and SombRAT to successfully target an organization, officials report.06 May 2021
Critical Cisco SD-WAN, HyperFlex Bugs Threaten Corporate Networks
The networking giant has rolled out patches for remote code-execution and command-injection security holes that could give attackers keys to the kingdom.06 May 2021
Ryuk Ransomware Attack Sprung by Frugal Student
The student opted for “free” software packed with a keylogger that grabbed credentials later used by "Totoro" to get into a biomolecular institute.06 May 2021