Cybersecurity News


Unsecured Microsoft Bing Server Leaks Search Queries, Location Data

Unsecured Microsoft Bing Server Leaks Search Queries, Location Data Data exposed included search terms, location coordinates, and device information - but no personal data.
21 September 2020

DHS Issues Dire Patch Warning for ‘Zerologon’

DHS Issues Dire Patch Warning for ‘Zerologon’ The deadline looms for U.S. Cybersecurity and Infrastructure Security Agency’s emergency directive for federal agencies to patch against the so-called ‘Zerologon’ vulnerability.
21 September 2020

PCI PIN Security in Practice Case Study: Gertec

 

In this PCI DSS in Practice Case Study, Brazil Regional Engagement Board Member Gertec shares how the PCI PIN Security requirements helped the organization to understand the importance of having procedures in place and up to date.

21 September 2020

Microsoft secures backend server that leaked Bing data

No personal user data was leaked in the incident.
21 September 2020

Firefox for Android Bug Allows ‘Epic Rick-Rolling’

Firefox for Android Bug Allows ‘Epic Rick-Rolling’ Anyone on the same Wi-Fi network can force websites to launch, with no user interaction.
21 September 2020

Android Malware Bypasses 2FA And Targets Telegram, Gmail Passwords

Android Malware Bypasses 2FA And Targets Telegram, Gmail Passwords A new Android malware strain has been uncovered, part of the Rampant Kitten threat group's widespread surveillance campaign that targets Telegram credentials and more.
21 September 2020

Mozilla fixes flaw that let attackers hijack Firefox for Android via Wi‑Fi

Attackers could have exploited the flaw to steal victims’ login credentials or install malware on their devices

The post Mozilla fixes flaw that let attackers hijack Firefox for Android via Wi‑Fi appeared first on WeLiveSecurity

21 September 2020

Patch by Tonight: CISA Issues Emergency Directive for Critical Netlogon Flaw

The directive requires all federal agencies to apply a patch for Windows Netlogon vulnerability CVE-2020-1472 by midnight on Sept. 21.
21 September 2020

5 Steps to Greater Cyber Resiliency

Work from home isn't going away anytime soon, and the increased vulnerability means cyber resiliency will continue to be critical to business resiliency.
21 September 2020

Hacking Yourself: Marie Moe and Pacemaker Security

Future consumer devices, including pacemakers, should be built with security from the start.
21 September 2020

Phishing awareness training wears off after a few months

Retraining employees after six months is recommended.
21 September 2020

Code execution, defense evasion are top tactics used in critical attacks against corporate endpoints

Cisco examines MITRE ATT&CK data to suggest the threat vectors enterprise security staff should focus their efforts on.
21 September 2020

Consultants charged for bribing Amazon Marketplace employees to game the platform

Prosecutors allege the group paid handsome bribes to give clients a competitive advantage.
21 September 2020

US govt orders federal agencies to patch dangerous Zerologon bug by Monday

DHS CISA tells government agencies to patch Zerologon bug by Monday, citing "unacceptable risk" posed to federal networks.
20 September 2020

Hackers leak details of 1,000 high-ranking Belarus police officers

Hackers promise to leak more if police crackdown against anti-government protesters continues.
20 September 2020

The TikTok Ban: Security Experts Weigh in on the App’s Risks

The TikTok Ban: Security Experts Weigh in on the App’s Risks With no hard evidence of abuse, are bans warranted? The real security concerns will likely come after the ban goes into effect, researchers said in our exclusive roundtable.
18 September 2020

Firefox bug lets you hijack nearby mobile browsers via WiFi

Mozilla says users should update as soon as possible to Firefox v79 for Android.
18 September 2020

Stubborn WooCommerce Plugin Bugs Get Third Patch

Stubborn WooCommerce Plugin Bugs Get Third Patch Users of the Discount Rules for WooCommerce WordPress plugin are urged to apply a third and (hopefully) final patch.
18 September 2020

A Hacker's Playlist

A Hacker's Playlist Nine security researchers share their favorite songs and genres.
18 September 2020

Deadly Ransomware Story Continues to Unfold

A ransomware attack with fatal consequences is attracting notice and comment from around the world.
18 September 2020