Cybersecurity News


F5 Bug Could Lead to Complete System Takeover

F5 Bug Could Lead to Complete System Takeover The worst of 13 bugs fixed by the August updates could lead to complete system compromise for users in sensitive sectors running products in Appliance mode.
26 August 2021

Chinese developers expose data belonging to Android gamers

In the end, Hong Kong CERT was contacted in an attempt to resolve the security issue.
26 August 2021

Man impersonates Apple support, steals 620,000 photos from iCloud accounts

The man was after sexually explicit photos and videos that he would then share online or store in his own collection

The post Man impersonates Apple support, steals 620,000 photos from iCloud accounts appeared first on WeLiveSecurity

26 August 2021

Podcast: Ransomware Up x10: Disrupting Cybercrime Suppy Chains an Opportunity

Podcast: Ransomware Up x10: Disrupting Cybercrime Suppy Chains an Opportunity Derek Manky, Chief, Security Insights & Global Threat Alliances at Fortinet’s FortiGuard Labs, discusses the top threats and lessons learned from the first half of 2021.
26 August 2021

What is GDPR and why does the UK want to reshape its data laws?

What is GDPR and why does the UK want to reshape its data laws?

The government says an overhaul will boost growth and increase trade – but it must be careful not to go too far

The government has announced plans to reshape the UK’s data laws such as GDPR requirements in an effort, it claims, to boost growth and increase trade post-Brexit. The digital, media and culture secretary, Oliver Dowden, says the UK wants to shape data laws based on “common sense, not box-ticking”.

Continue reading...
26 August 2021

Microsoft Breaks Silence on Barrage of ProxyShell Attacks

Microsoft Breaks Silence on Barrage of ProxyShell Attacks versions of the software are affected by a spate of bugs under active exploitations.
26 August 2021

UK to overhaul privacy rules in post-Brexit departure from GDPR

UK to overhaul privacy rules in post-Brexit departure from GDPR

Culture secretary says move could lead to an end to irritating cookie popups and consent requests online

Britain will attempt to move away from European data protection regulations as it overhauls its privacy rules after Brexit, the government has announced.

The freedom to chart its own course could lead to an end to irritating cookie popups and consent requests online, said the culture secretary, Oliver Dowden, as he called for rules based on “common sense, not box-ticking”.

Continue reading...
26 August 2021

Cisco Issues Critical Fixes for High-End Nexus Gear

Cisco Issues Critical Fixes for High-End Nexus Gear Networking giant issues two critical patches and six high-severity patches.
25 August 2021

Man Robbed of 16 Bitcoin Sues Young Thieves’ Parents

In 2018, Andrew Schober was digitally mugged for approximately $1 million worth of bitcoin. After several years of working with investigators, Schober says he's confident he has located two young men in the United Kingdom responsible for developing a clever piece of digital clipboard-stealing malware that let them siphon his crypto holdings. Schober is now suing each of their parents in a civil case that seeks to extract what their children would not return voluntarily.
25 August 2021

Win10 Admin Rights Tossed Off by Yet Another Plug-In

Win10 Admin Rights Tossed Off by Yet Another Plug-In Then again, you don’t even need the actual device – in this case, a SteelSeries peripheral – since emulation works just fine to launch with full SYSTEM rights.
25 August 2021

US Media, Retailers Targeted by New SparklingGoblin APT

US Media, Retailers Targeted by New SparklingGoblin APT The new APT uses an undocumented backdoor to infiltrate the education, retail and government sectors.
25 August 2021

IBM launches new SASE service to bolster zero-trust enterprise security

The service is the result of a partnership with Zscaler.
25 August 2021

California Man Hacked iCloud Accounts to Steal Nude Photos

California Man Hacked iCloud Accounts to Steal Nude Photos Hao Kou Chi pleaded guilty to four felonies in a hacker-for-hire scam that used socially engineered emails to trick people out of their credentials.
25 August 2021

Proofpoint awarded $13.5 million in IP theft lawsuit against Vade Secure

The company claimed that Vade "willfully" misappropriated trade secrets.
25 August 2021

Shopping Online

When shopping online, always use your credit cards instead of a debit card. If any fraud happens, it is far easier to recover your money from a credit card transaction. Gift cards and one-time-use credit card numbers are even more secure.
25 August 2021

Microsoft Power Apps misconfiguration exposes millions of records

The caches of data that were publicly accessible included names, email addresses and social security numbers

The post Microsoft Power Apps misconfiguration exposes millions of records appeared first on WeLiveSecurity

24 August 2021

Poly Network Recoups $610M Stolen from DeFi Platform

Poly Network Recoups $610M Stolen from DeFi Platform The attacker returned the loot after being offered a gig as chief security advisor with Poly Network.
24 August 2021

The SideWalk may be as dangerous as the CROSSWALK

Meet SparklingGoblin, a member of the Winnti family

The post The SideWalk may be as dangerous as the CROSSWALK appeared first on WeLiveSecurity

24 August 2021

Pegasus Spyware Uses iPhone Zero-Click iMessage Zero-Day

Pegasus Spyware Uses iPhone Zero-Click iMessage Zero-Day Cybersecurity watchdog CitizenLab saw the new zero-day FORCEDENTRY exploit successfully deployed against iOS versions 14.4 & 14.6, blowing past Apple's new BlastDoor sandboxing feature to install spyware on the iPhones of Bahraini activists – even one living in London at the time.
24 August 2021

Custom WhatsApp Build Delivers Triada Malware

Custom WhatsApp Build Delivers Triada Malware Researchers have spotted the latest version of the Triada trojan targeting mobile devices via an advertising SDK.
24 August 2021