Cybersecurity News


Overlay Malware Leverages Chrome Browser, Targets Banks and Heads to Spain

Overlay Malware Leverages Chrome Browser, Targets Banks and Heads to Spain The Grandoreiro banking malware uses remote overlay and a fake Chrome browser plugin to steal from banking customers.
13 April 2020

Pandemic Could Make Schools Bigger Targets of Ransomware Attacks

Most have had to implement distance learning, making them much more vulnerable, Armor says.
13 April 2020

Dell releases new tool to detect BIOS attacks

Dell makes new tool named SafeBIOS Events & Indicators of Attack available for download for all Dell commercial PCs.
13 April 2020

Cybercrime May Be the World's Third-Largest Economy by 2021

The underground economy is undergoing an industrialization wave and booming like never before.
13 April 2020

Unclassified and Secure

By William Knowles @c4i Senior Editor InfoSec News April 12, 2020 A new report from the RAND Corporation, by Daniel Gonzales, Sarah Harting, Mary Kate Adgie, Julia Brackup, Lindsey Polley, and Karlyn D. Stanley The defense industrial base (DIB) is under attack. Foreign actors are stealing large amounts of sensitive data, trade secrets, and intellectual property every […]
12 April 2020

SFO Websites Hacked: Airport Discloses Data Breach

SFO Websites Hacked: Airport Discloses Data Breach San Francisco International Airport notified users of two low-traffic websites of a data breach that occurred in March.
10 April 2020

Apple, Google Team on Coronavirus Tracking – Sparking Privacy Fears

Apple, Google Team on Coronavirus Tracking – Sparking Privacy Fears Apple and Google announced that decentralized Bluetooth technology will soon be rolled out for coronavirus contact tracing. The privacy implications are worrisome for some.
10 April 2020

New IRS Site Could Make it Easy for Thieves to Intercept Some Stimulus Payments

The U.S. federal government is now in the process of sending Economic Impact Payments by direct deposit to millions of Americans. Most who are eligible for payments can expect to have funds direct-deposited into the same bank accounts listed on previous years' tax filings sometime next week. Today, the Internal Revenue Service (IRS) stood up a site to collect bank account information from the many Americans who don't usually file a tax return. The question is, will those non-filers have a chance to claim their payments before fraudsters do?
10 April 2020

WooCommerce Falls to Fresh Card-Skimmer Malware

WooCommerce Falls to Fresh Card-Skimmer Malware The payment-card stealer differs from typical malware targeting WordPress-based e-commerce environments.
10 April 2020

SFO Hit by Web Compromise

Web app credentials were stolen in attacks on two airport websites.
10 April 2020

Only 40% of Small Business Owners Have a Cybersecurity Policy

Small business owners are concerned about cyberattacks targeting remote workers but lack the resources to invest in security.
10 April 2020

Dutch police take down 15 DDoS services in a week

Dutch authorities launch sudden strike against DDoS-for-hire operators; take down 15 sites in a week.
10 April 2020

Critical VMware Bug Opens Up Corporate Treasure to Hackers

Critical VMware Bug Opens Up Corporate Treasure to Hackers The bug -- rated 10 in severity -- potentially affects large numbers of corporate VMs and hosts.
10 April 2020

When All Behavior is Abnormal, How Do We Detect Anomalies?

When All Behavior is Abnormal, How Do We Detect Anomalies? Identifying normal behavior baselines is essential to behavior-based authentication. However, with COVID-19 upending all aspects of life, is it possible to build baselines and measure normal patterns when nothing at all seems normal?
10 April 2020

Apple App Store Riddled With Money-Sucking Fleeceware Apps

Apple App Store Riddled With Money-Sucking Fleeceware Apps Researchers warn that apps that market themselves as "free" are tricking users to subscribe to services that rack up as much as $500 in charges yearly.
10 April 2020

Criminals Selling Videoconferencing Credentials on Dark Web

Two security firms find thousands of usernames and passwords for Zoom accounts for sale and warn that the shift to remote work is changing attackers' targets.
10 April 2020

Gambling company to set aside $30 million to deal with cyber-attack fallout

In the middle of a merger, SBTech will have $30 million placed in escrow to deal with the repercussions of a suspected ransomware infection.
10 April 2020

10 Ways to Spot a Security Fraud

There is no shortage of people presenting themselves as security experts. Some of them truly are. The others...
10 April 2020

Travelex Pays $2.3M in Bitcoin to Hackers Who Hijacked Network in January

Travelex Pays $2.3M in Bitcoin to Hackers Who Hijacked Network in January The payout stems from a system-wide attack that knocked global networks offline on New Year’s Eve and reflects a shift in thinking about ransom payouts
10 April 2020

Week in security with Tony Anscombe

Making sense of passwords in Zoom - What to do if your phone goes missing - Email provider hacked

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

10 April 2020