Cybersecurity News


PCI DSS in Practice Case Study: CSU

 

In this PCI DSS in Practice Case Study, Brazil Regional Engagement Board Member CSU Cardsystem S.A. discusses challenges with balancing the constant evolution and launch of new technologies with simplicity, security, and compliance.

02 September 2020

Joker Spyware Plagues More Google Play Apps

Joker Spyware Plagues More Google Play Apps The six malicious apps have been removed from Google Play, but could still threaten 200,000 installs.
02 September 2020

Backdoors left unpatched in MoFi routers

MoFi Network patched only six of ten reported vulnerabilities, leaving three hard-coded undocumented backdoor systems in place.
02 September 2020

5 Tips for Triaging Risk from Exposed Credentials

5 Tips for Triaging Risk from Exposed Credentials Not all exposed usernames and passwords present a threat. Here's how to quickly identify the ones that do.
02 September 2020

DHS Partners with Industry to Offer State, Local Gov'ts Cybersecurity Aid

The US Department of Homeland Security teams up with Akamai and the Center for Internet Security to provide state and local governments with cybersecurity through DNS for free.
02 September 2020

Why Kubernetes Clusters Are Intrinsically Insecure (& What to Do About Them)

By following best practices and prioritizing critical issues, you can reduce the chances of a security breach and constrain the blast radius of an attempted attack. Here's how.
02 September 2020

Norway’s parliament struck by hackers

Unknown threat actors were able to exfiltrate information from the email accounts of several parliamentarians

The post Norway’s parliament struck by hackers appeared first on WeLiveSecurity

02 September 2020

Live Webinar: XDR and Beyond

Live Webinar: XDR and Beyond Next week, Senior Analyst Dave Gruber of ESG will join cybersecurity company Cynet for a webinar to help companies better understand the promise and realities of emerging XDR technologies
02 September 2020

Cisco Warns of Active Exploitation of Flaw in Carrier-Grade Routers

Cisco Warns of Active Exploitation of Flaw in Carrier-Grade Routers Multiple flaws in system software that causes errors in packet handling could allow an attacker to consume memory and crash devices.
02 September 2020

Hypothesis: Cyber Attackers Are After Your Scientific Research

Hypothesis: Cyber Attackers Are After Your Scientific Research From COVID-19 treatment to academic studies, keeping research secure is more important than ever. The ResearchSOC at Indiana University intends to help.
02 September 2020

Chinese APT Debuts Sepulcher Malware in Spear-Phishing Attacks

Chinese APT Debuts Sepulcher Malware in Spear-Phishing Attacks The RAT has been distributed in various campaigns over the past six months, targeting both European officials and Tibetan dissidents.
02 September 2020

KryptoCibule: The multitasking multicurrency cryptostealer

ESET researchers analyze a previously undocumented trojan that is spread via malicious torrents and uses multiple tricks to squeeze as many cryptocoins as possible from its victims while staying under the radar

The post KryptoCibule: The multitasking multicurrency cryptostealer appeared first on WeLiveSecurity

02 September 2020

New KryptoCibule Windows malware is a triple threat for cryptocurrency users

The malware has been active since late 2018 and has targeted users in the Czech Republic and Slovakia primarily (for now).
02 September 2020

AusCERT says alleged DoE hack came from a third-party

AusCERT says a data breach occurred at K7Maths, a company providing services to schools.
02 September 2020

New Threat Activity by Lazarus Group Spells Trouble For Orgs

The North Korea-backed group has launched several campaigns to raise revenue for cash-strapped nation's missile program, security experts say.
01 September 2020

CISA and FBI say they have not seen cyber-attacks this year on voter registration databases

CISA and the FBI issue a joint statement about election and voter database hacking threats after a misleading article in Russian media today.
01 September 2020

Anti-Phishing Startup Pixm Aims to Hook Browser-Based Threats

Pixm visually analyzes phishing websites from a human perspective to detect malicious pages people might otherwise miss.
01 September 2020

Magento Sites Vulnerable to RCE Stemming From Magmi Plugin Flaws

Magento Sites Vulnerable to RCE Stemming From Magmi Plugin Flaws Two flaws - one of them yet to be fixed - are afflicting a third-party plugin used by Magento e-commerce websites.
01 September 2020

Apple Signs Shlayer, Legitimizes Malware

Shlayer, a common macOS Trojan, received Apple's notary certification and place in the App Store -- twice.
01 September 2020

Facebook and Twitter suspend Russian propaganda accounts following FBI tip

The banned accounts belonged to PeaceData, a news website publishing misleading articles about world politics.
01 September 2020