Cybersecurity News
FBI warns of rise in PYSA ransomware operators targeting US, UK schools
Data is being stolen ahead of encryption in extortion attempts.17 March 2021
Recorded Future acquires Gemini Advisory in $52 million deal
The company will leverage the purchase to carve a place in the fraud analytics market.17 March 2021
Can We Stop Pretending SMS Is Secure Now?
SMS text messages were already the weakest link securing just about anything online, mainly because there are tens of thousands of people (many of them low-paid mobile store employees) who can be tricked or bribed into swapping control over a mobile phone number to someone else. Now we're learning about an entire ecosystem of companies that anyone could use to silently intercept text messages intended for other mobile users.16 March 2021
Chinese APT Targets Telcos in 5G-Related Cyber-Espionage Campaign
Telemetry suggests that threat actor behind Operation Dianxun is Mustang Panda, McAfee says.16 March 2021
PYSA Ransomware Pillages Education Sector, Feds Warn
A major spike of attacks against higher ed, K-12 and seminaries in March has prompted the FBI to issue a special alert.
16 March 2021
Mom & Daughter Duo Hack Homecoming Crown
A Florida high-school student faces jail time for rigging her school's Homecoming Queen election.
16 March 2021
IronNet Cybersecurity to Go Public in Merger
Company intends for the deal to drive adoption of its Collective Defense Platform.16 March 2021
Microsoft Releases Mitigation Tool for On-Premises Exchange Servers
The tool, developed for organizations without dedicated IT and security teams, is meant to be used as temporary mitigation.16 March 2021
Best Practices for Securing Service Accounts
While service accounts solve many of the challenges presented by automation, they can also create serious problems when it comes to cybersecurity.16 March 2021
Latest Mirai Variant Targets SonicWall, D-Link and IoT Devices
A new Mirai variant is targeting known flaws in D-Link, Netgear and SonicWall devices, as well as newly-discovered flaws in unknown IoT devices.
16 March 2021
Exchange Cyberattacks Escalate as Microsoft Rolls One-Click Fix
Public proof-of-concept (PoC) exploits for ProxyLogon could be fanning a feeding frenzy of attacks even as patching makes progress.
16 March 2021
Magecart Attackers Save Stolen Credit-Card Data in .JPG File
Researchers from Sucuri discovered the tactic, which creatively hides malicious activity until the info can be retrieved, during an investigation into a compromised Magento 2 e-commerce site.
16 March 2021
Software Development Security Firm Argon Announces Launch
Check Point founder Shlomo Kramer is one of the firm's investors.16 March 2021
Google Releases Spectre PoC Exploit For Chrome
Google has released the side-channel exploit in hopes of motivating web-application developers to protect their sites.
16 March 2021
Combating Call Center Fraud in the Age of COVID
With many agents now working from home, call centers require new technology, new processes, and a new way of thinking about security.16 March 2021
Metasploit Creator HD Moore's New Startup Raises $5M
Startup Rumble enters major new phase with venture capital investment led by Cisco-backed fund as well as big-name security entrepreneurs.
16 March 2021
Google fixes Chrome zero‑day bug exploited in the wild
The latest update patches a total of five vulnerabilities affecting the browser’s desktop versions
The post Google fixes Chrome zero‑day bug exploited in the wild appeared first on WeLiveSecurity
16 March 2021
Top MSP Challenges in 2021
At SafeDNS, we see three entangled hurdles for MSPs in 2021 and the coming years— tied with the current economic uncertainty and somewhat linked to the pandemic.
16 March 2021
SEC charges US trader for allegedly abusing Twitter to pump cannabis penny stock prices
The agency says social media was used in an alleged pump-and-dump scam.16 March 2021
Microsoft releases one-click mitigation tool for Exchange Server hacks
Another tool is at the disposal of admins struggling to protect their systems.16 March 2021