Cybersecurity News
Keybase patches bug that kept pictures in cleartext storage on Mac, Windows clients
Keybase failed to wipe clean cached pictures even after deletion.23 February 2021
Chinese-Affiliated APT31 Cloned & Used NSA Hacking Tool
APT31 cloned and reused a Windows-based hacking tool for years before Microsoft patched the vulnerability, researchers report.22 February 2021
Cybercrime Groups More Prolific, Focus on Healthcare in 2020
Almost four of every five attacks attributed in 2020 were conducted by cybercriminal groups, a significant jump from 2019, with attacks on healthcare or using the pandemic rising fast.22 February 2021
TDoS Attacks Take Aim at Emergency First-Responder Services

22 February 2021
Accellion Data Breach Resulted in Extortion Attempts Against Multiple Victims
FireEye Mandiant says it discovered data stolen via flaw in Accellion FTA had landed on a Dark Web site associated with a known Russia-based threat group.22 February 2021
FireEye links 0-day attacks on FTA servers & extortion campaign to FIN11 group
FireEye: Hackers breached companies running FTA servers, stole private files, and are now publishing data on the Clop ransomware leak site.22 February 2021
Chinese Hackers Hijacked NSA-Linked Hacking Tool: Report

22 February 2021
Researcher Reports Vulnerability in Apple iCloud Domain
A stored cross-site scripting vulnerability in the iCloud website reportedly earned a security researcher $5,000.22 February 2021
Sequoia Capital Suffers Data Breach
The attack began with a successful phishing email.22 February 2021
Assume ClubHouse Conversations Are Being Recorded, Researchers Warn

22 February 2021
Brave browser’s Tor mode exposed users’ dark web activity
A bug in the ad blocking component of Brave’s Tor feature caused the browser to leak users' DNS queries
The post Brave browser’s Tor mode exposed users’ dark web activity appeared first on WeLiveSecurity
22 February 2021
Accellion FTA Zero-Day Attacks Show Ties to Clop Ransomware, FIN11

22 February 2021
Paving the way: Inspiring Women in Payments - A Q&A featuring Jen Stone
She was a single mom with three kids in daycare, no child support, and a job as an executive assistant that didn’t pay enough to cover the bills. With absolutely no experience, Jen Stone took a chance on a helpdesk position, which changed her life. In this edition of our blog, Jen explains how she found success by taking ownership of her own career.
22 February 2021
8 Ways Ransomware Operators Target Your Network

22 February 2021
Cybersecurity Responsibility in a Post-Pandemic World
In this video, Omdia Cybersecurity Senior Research Director Maxine Holt explains why a more sustainable approach to post-pandemic cybersecurity is necessary.22 February 2021
Powerhouse VPN products can be abused for large-scale DDoS attacks
Around 1,500 Powerhouse VPN servers are exposed online and ready to be abused by DDoS groups.22 February 2021
What Can Your Connected Car Reveal About You?
App developers must take responsibility for the security of users' data.22 February 2021
Stored XSS bug in Apple iCloud domain disclosed by bug bounty hunter
The cross-site scripting bug reportedly earned the researcher a $5000 reward.22 February 2021
Chinese hackers cloned attack tool belonging to NSA’s Equation Group
The Jian tool was used to exploit a Windows zero-day vulnerability years before a patch was issued.22 February 2021
30,000 Macs infected with new Silver Sparrow malware
Silver Sparrow can even run on systems with Apple's new M1 chip.22 February 2021