Cybersecurity News
Energy Giant Shell Is Latest Victim of Accellion Attacks
Attackers accessed personal and business data from the company’s legacy file-transfer service in a recent data-security incident but core IT systems remained untouched.
23 March 2021
Data Protection Is a Group Effort
When every employee is well-versed in customer data privacy principles, the DPO knows the enterprise's sensitive data is in good hands.23 March 2021
Cybercriminals exchange tips on avoiding arrest, jail in underground forums
Covering early mistakes, who to target, and what to do when on the verge of arrest are all hot topics.23 March 2021
Debt-chasing UK councils potentially expose private resident data
Text reminders for debts to be paid opened up a security chasm for thousands of taxpayers.23 March 2021
Cloudflare debuts zero-trust browsing service for remote enterprise workforce
Browsers will run under Cloudflare’s umbrella in an attempt to isolate sessions from cyberattacks.23 March 2021
Oil giant Shell discloses data breach linked to Accellion FTA vulnerability
The information of stakeholders has been compromised.23 March 2021
When repairing things you own may make you an outlaw
How do you balance the right to repair with the requirement to remain secure?
The post When repairing things you own may make you an outlaw appeared first on WeLiveSecurity
23 March 2021
IT admin with axe to grind sent to prison for wiping Microsoft user accounts
The victim company’s operations ground to a halt following the attack.23 March 2021
Researchers Discover Two Dozen Malicious Chrome Extensions
Extensions are being used to serve up unwanted adds, steal data, and divert users to malicious sites, Cato Networks says.22 March 2021
Acer Reportedly Hit With $50M Ransomware Attack
Reports say a ransomware gang has given Acer until March 28 to pay, or it will double the ransom amount.22 March 2021
CISA Warns of Security Flaws in GE Power Management Devices
The flaws could allow an attacker to access sensitive information, reboot the UR, gain privileged access, or cause a denial-of-service condition.
22 March 2021
RedTorch Formed from Ashes of Norse Corp.
Remember Norse Corp., the company behind the interactive "pew-pew" cyber attack map shown in the image blow? Norse imploded rather suddenly in 2016 following a series of managerial missteps and funding debacles. Now, the founders of Norse have launched a new company with a somewhat different vision: RedTorch, which for the past two years has marketed a mix of services to high end celebrity clients, including spying and anti-spying tools and services.22 March 2021
CSA & ISACA Team Up on Cloud Auditing Certificate
The Certificate of Cloud Auditing Knowledge aims to fill a gap in the market for cloud IT auditing as more organizations work in cloud environments.22 March 2021
Critical Security Bugs Fixed in Virtual Learning Software
Remote ed software bugs give attackers wide access student computers, data.
22 March 2021
Qualys CEO Courtot Departs for Health Reasons
The well-known security industry entrepreneur initially took a leave of absence in February.22 March 2021
Top 3 Cybersecurity Lessons Learned From the Pandemic
Defending an enterprise of fully remote employees and their devices at this scale and speed had never been done before. Now, we do it every day.22 March 2021
Adobe Fixes Critical ColdFusion Flaw in Emergency Update
Attackers can leverage the critical Adobe ColdFusion flaw to launch arbitrary code execution attacks.
22 March 2021
3 Classes of Account Fraud That Can Cost Your Company Big Time
Understanding each one can go a long way toward demystifying the topic as a whole - and combatting the threat.
22 March 2021
The Edge Pro Tip: The Feds Are Your Friends
Here's what to expect when you report an insider incident to the FBI.
22 March 2021
On the Road to Good Cloud Security: Are We There Yet?
Misconfigured infrastructure is IT pros' top cloud security concern, but they're conflicted on how to address it in practice.22 March 2021