Cybersecurity News


Microsoft to Launch 'Enforcement Mode' for Zerologon Flaw

Enforcement mode for the Netlogon Domain Controller will be enabled by default with the Feb. 9 security update.
19 January 2021

SolarWinds Attack Underscores 'New Dimension' in Cyber-Espionage Tactics

Meanwhile, Malwarebytes is the latest victim, Symantec discovers a fourth piece of malware used in the massive attack campaign, and FireEye Mandiant releases a free tool to help spot signs of the attack.
19 January 2021

DNSpooq Flaws Allow DNS Hijacking of Millions of Devices

DNSpooq Flaws Allow DNS Hijacking of Millions of Devices Seven flaws in open-source software Dnsmasq could allow DNS cache poisoning attacks and remote code execution.
19 January 2021

4 Intriguing Email Attacks Detected by AI in 2020

4 Intriguing Email Attacks Detected by AI in 2020 Here's to the sneakiest of the sneaky. These clever phishing messages -- that standard validation measures often missed -- deserve proper dishonor. (Sponsored)
19 January 2021

4 Intriguing Email Attacks Detected by AI in 2020

4 Intriguing Email Attacks Detected by AI in 2020 Here's to the sneakiest of the sneaky. These clever phishing messages -- that standard validation measures often missed -- deserve proper dishonor.
19 January 2021

Rob Joyce to Take Over as NSA Cybersecurity Director

Rob Joyce to Take Over as NSA Cybersecurity Director Joyce will replace Anne Neuberger, who is now deputy national security advisor for the incoming Biden administration.
19 January 2021

FBI warns of voice phishing attacks stealing corporate credentials

Criminals coax employees into handing over their access credentials and use the login data to burrow deep into corporate networks

The post FBI warns of voice phishing attacks stealing corporate credentials appeared first on WeLiveSecurity

19 January 2021

Malwarebytes said it was hacked by the same group who breached SolarWinds

Malwarebytes becomes fourth major security firm targeted by attackers after Microsoft, FireEye, and CrowdStrike.
19 January 2021

New Charges Derail COVID Release for Hacker Who Aided ISIS

A hacker serving a 20-year sentence for stealing personal data on 1,300 U.S. military and government employees and giving it to an Islamic State hacker group in 2015 has been charged once again with fraud and identity theft. The new charges have derailed plans to deport him under compassionate release because of the COVID-19 pandemic.
19 January 2021

The Most Pressing Concerns Facing CISOs Today

Building security into the software development life cycle creates more visibility, but CISOs still need stay on top of any serious threats on the horizon, even if they are largely unknown.
19 January 2021

Google Chrome 88 released with no Flash support, bringing an end to an era

Besides removing Flash, Google has also removed support for FTP links (ftp://) as well.
19 January 2021

SolarWinds Malware Arsenal Widens with Raindrop

SolarWinds Malware Arsenal Widens with Raindrop The post-compromise backdoor installs Cobalt Strike to help attackers more laterally through victim networks.
19 January 2021

Linux Devices Under Attack by New FreakOut Malware

Linux Devices Under Attack by New FreakOut Malware The FreakOut malware is adding infected Linux devices to a botnet, in order to launch DDoS and cryptomining attacks.
19 January 2021

A Security Practitioner's Guide to Encrypted DNS

Best practices for a shifting visibility landscape.
19 January 2021

Attackers Steal E-Mails, Info from OpenWrt Forum

Attackers Steal E-Mails, Info from OpenWrt Forum Users of the Linux-based open-source firmware—which include developers from commercial router companies--may be targeted by phishing campaigns, administrators warn.
19 January 2021

FireEye releases tool for auditing networks for techniques used by SolarWinds hackers

New Azure AD Investigator is now available via GitHub.
19 January 2021

Livecoin slams its doors shut after failing to recover from hack, financial loss

The exchange suffered an alleged cyberattack last month.
19 January 2021

DNSpooq lets attackers poison DNS cache records

Network administrators urged to apply the latest Dnsmasq updates to prevent the new DNSpooq attacks.
19 January 2021

Fourth malware strain discovered in SolarWinds incident

Symantec said it identified Raindrop, the fourth malware strain used in the SolarWinds breach, after Sunspot, Sunburst, and Teardrop.
19 January 2021

New FreakOut botnet targets Linux systems running unpatched software

The botnet comes with features that can be used for DDoS attacks, ARP poisoning, hidden crypto-mining, launching brute-force attacks, and more.
19 January 2021