Cybersecurity News
Office 365 OAuth Attack Targets Coinbase Users
Attackers are targeting Microsoft Office 365 users with a Coinbase-themed attack, aiming to take control of their inboxes via OAuth.
20 October 2020
Building the Human Firewall
Cybersecurity was a challenge before COVID-19 sent millions of employees home to work from their own devices and networks. Now what?20 October 2020
Google removes two Chrome ad blockers caught collecting user data
Nano Adblocker and Nano Defender have been removed from the official Chrome Web Store.20 October 2020
Mobile Browser Bugs Open Safari, Opera Users to Malware
A set of address-spoofing bugs affect users of six different types of mobile browsers, with some remaining unpatched.
20 October 2020
Confronting Data Risk in the New World of Work
With Stanford research showing that nearly half of the U.S. labor force is now working from home full-time, insider threats are a much more difficult problem.
20 October 2020
Seven mobile browsers vulnerable to address bar spoofing attacks
Vulnerabilities allow attackers to trick users into accessing malicious sites while showing the incorrect URL in the address bar.20 October 2020
Trickbot Tenacity Shows Infrastructure Resistant to Takedowns
Both the US Cyber Command and a Microsoft-led private-industry group have attacked the infrastructure used by attackers to manage Trickbot -- but with only a short-term impact.20 October 2020
Google’s Waze Can Allow Hackers to Identify and Track Users
The company already patched an API flaw that allowed a security researcher to use the app to find the real identity of drivers using it.
20 October 2020
Ransomware gang donates part of ransom demands to charity organizations
The Darkside ransomware gang has donated $10K it received as part of ransom demands to Children International and The Water Project.20 October 2020
How safe is your USB drive?
What are some of the key security risks to be aware of when using USB flash drives and how can you mitigate the threats?
The post How safe is your USB drive? appeared first on WeLiveSecurity
20 October 2020
UK says Russia was preparing cyber-attacks against the Tokyo Olympics
Targets included the Games' organizers, logistics services, and sponsors, UK officials said.19 October 2020
NSS Labs Shuttered
The testing firm's website says it has 'ceased operations' as of Oct. 15.19 October 2020
Russian Military Officers Unmasked, Indicted for High-Profile Cyberattack Campaigns
US Department of Justice charges members of Sandworm/APT28 for BlackEnergy, NotPetya, Olympic Destroyer, and other major attacks.19 October 2020
GravityRAT Spyware Targets Android & MacOS in India
The Trojan once used in attacks against Windows systems has been transformed into a multiplatform tool targeting macOS and Android.19 October 2020
IoT Vulnerability Disclosure Platform Launched
VulnerableThings.com is intended to help vendors meet the terms of a host of new international IoT security laws and regulations.19 October 2020
Microsoft Tops Q3 List of Most-Impersonated Brands
The technology sector was also the most likely targeted industry for brand phishing attacks, according to Check Point's latest report on brand phishing.19 October 2020
Rapper Scams $1.2M in COVID-19 Relief, Gloats with ‘EDD’ Video
"Nuke Bizzle" faces 22 years in prison after brazenly bragging about an identity-theft campaign in his music video, "EDD."
19 October 2020
DOJ Charges 6 Sandworm APT Members in NotPetya Cyberattacks
DOJ charges six Russian nationals for their alleged part in the NotPetya, Ukraine power grid and Olympics cyberattacks.
19 October 2020
Trickbot, Phishing, Ransomware & Elections
The botnet has taken some hits lately, but that doesn't mean the threat is over. Here are some steps you can take to keep it from your door.19 October 2020
GravityRAT Comes Back to Earth with Android, macOS Spyware
The espionage tool masquerades as legitimate applications and robs victims blind of their data.
19 October 2020