Cybersecurity News


Paleohacks data leak exposes customer records, password reset tokens

The leak wasn’t dealt with until Amazon was contacted directly.
29 April 2021

RotaJakiro: A Linux backdoor that has flown under the radar for years

The malware remains undetected by most VirusTotal engines.
29 April 2021

Prime targets: Governments shouldn’t go it alone on cybersecurity

A year into the pandemic, ESET reveals new research into activities of the LuckyMouse APT group and considers how governments can rise to the cybersecurity challenges of the accelerated shift to digital

The post Prime targets: Governments shouldn’t go it alone on cybersecurity appeared first on WeLiveSecurity

29 April 2021

Accenture acquires French cybersecurity firm Openminded

The bid is aimed at expanding Accenture’s European footprint.
29 April 2021

Securely Disposing Mobile Devices

Do you plan on giving away or selling one of your older mobile devices? Make sure you wipe or reset your device before disposing of it. If you don't, the next person who owns it will have access to all of your accounts and personal information.
29 April 2021

Adobe Open Sources Tool for Anomaly Research

The One-Stop Anomaly Shop (OSAS) project packages machine-learning algorithms into a Docker container for finding anomalies in security log data.
29 April 2021

Experian API Exposed Credit Scores of Most Americans

Big-three consumer credit bureau Experian just fixed a weakness with a partner website that let anyone look up the credit score of tens of millions of Americans just by supplying their name and mailing address, KrebsOnSecurity has learned. Experian says it has plugged the data leak, but the researcher who reported the finding says he fears the same weakness may be present at countless other lending websites that work with the credit bureau.
28 April 2021

FluBot Malware's Rapid Spread May Soon Hit US Phones

The FluBot Android malware has spread throughout several European countries through an SMS package delivery scam.
28 April 2021

74% of Financial Institutions See Spike in COVID-Related Threats

Financial losses have also increased among organizations in the last year, with the average cost reaching $720,000.
28 April 2021

Microsoft Office SharePoint Targeted With High-Risk Phish, Ransomware Attacks

Microsoft Office SharePoint Targeted With High-Risk Phish, Ransomware Attacks SharePoint servers are being picked at with high-risk, legitimate-looking, branded phish messages and preyed on by a ransomware gang using an old bug.
28 April 2021

FBI Works With 'Have I Been Pwned' to Notify Emotet Victims

Officials shared 4.3 million email addresses with the HIBP website to help inform companies and individuals if Emotet compromised their accounts.
28 April 2021

Google Chrome V8 Bug Allows Remote Code-Execution

Google Chrome V8 Bug Allows Remote Code-Execution The internet behemoth rolled out the Chrome 90 stable channel release to address this and eight other security vulnerabilities.
28 April 2021

How to Secure Employees' Home Wi-Fi Networks

Businesses must ensure their remote workers' Wi-Fi networks don't risk exposing business data or secrets due to fixable vulnerabilities.
28 April 2021

Cartoon Caption Winner: Rough Patch?

Cartoon Caption Winner: Rough Patch? And the winner of The Edge's April cartoon caption contest is ...
28 April 2021

Chase Bank Phish Swims Past Exchange Email Protections

Chase Bank Phish Swims Past Exchange Email Protections Two phishing attacks elude Exchange security protections and spoof real-life account scenarios in an attempt to fool victims.
28 April 2021

Is Your Cloud Raining Sensitive Data?

Learn common Kubernetes vulnerabilities and ways to avoid them.
28 April 2021

Attacks Targeting ADFS Token Signing Certificates Could Become Next Big Threat

New research shows how threat actors can steal and decrypt signing certificates so SAML tokens can be forged.
28 April 2021

Apple patches macOS Gatekeeper bypass vulnerability exploited in the wild

The patch tackles a zero-day bug actively exploited by Shlayer malware.
28 April 2021

Linux kernel vulnerability exposes stack memory, causes data leaks

The bug could also be used as a conduit for more severe attacks.
28 April 2021

Microsoft mulls over tweaks to threat data, code-sharing scheme following Exchange Server debacle

It has been suspected that exploit code used in the wave of attacks may have been sourced from the program.
28 April 2021