Cybersecurity News


Patchable and Preventable Security Issues Lead Causes of Q1 Attacks

Patchable and Preventable Security Issues Lead Causes of Q1 Attacks Attacks against U.S. companies spike in Q1 2022 with patchable and preventable external vulnerabilities responsible for bulk of attacks.
29 June 2022

Do back offices mean backdoors?

War in Europe, a reminder for shared service centers and shoring operations to re-examine IT security posture

The post Do back offices mean backdoors? appeared first on WeLiveSecurity

29 June 2022

The Link Between AWM Proxy & the Glupteba Botnet

On December 7, 2021, Google announced it had sued two Russian men allegedly responsible for operating the Glupteba botnet, a global malware menace that has infected millions of computers over the past decade. That same day, AWM Proxy -- a 14-year-old anonymity service that rents hacked PCs to cybercriminals -- suddenly went offline. Security experts had long seen a link between Glupteba and AWM Proxy, but new research shows AWM Proxy's founder is one of the men being sued by Google.
28 June 2022

Dragonbridge influencers targets rare earth miners, encourages protests to disrupt production

Researchers say that China has 'crossed the line' again with the new online campaign.
28 June 2022

Top Six Security Bad Habits, and How to Break Them

Top Six Security Bad Habits, and How to Break Them Shrav Mehta, CEO, Secureframe, outlines the top six bad habits security teams need to break to prevent costly breaches, ransomware attacks and prevent phishing-based endpoint attacks.
28 June 2022

Mitel VoIP Bug Exploited in Ransomware Attacks

Mitel VoIP Bug Exploited in Ransomware Attacks Researchers warn threat actors are using a novel remote code execution exploit to gain initial access to victim’s environments.
28 June 2022

‘Killnet’ Adversary Pummels Lithuania with DDoS Attacks Over Blockade

‘Killnet’ Adversary Pummels Lithuania with DDoS Attacks Over Blockade Cyber collective Killnet claims it won’t let up until the Baltic country opens trade routes to and from the Russian exclave of Kaliningrad.
28 June 2022

Log4Shell Vulnerability Targeted in VMware Servers to Exfiltrate Data

Log4Shell Vulnerability Targeted in VMware Servers to Exfiltrate Data CISA warns that threat actors are ramping up attacks against unpatched Log4Shell vulnerability in VMware servers.
28 June 2022

PCI DSS v4.0: A Perspective from India

 

Nitin Bhatnagar: Hello, listeners. Welcome to Coffee with the Council, where we discuss what's happening around the payment industry globally and bring a regional perspective to our audience. I'm your host, Nitin Bhatnagar, Associate Director of India for the PCI Security Standards Council. Today, we will be talking about PCI DSS v4.0, a perspective from India, with our special guests Swati Sharma, Leader, CISO Office, Amazon Pay; Dhananjay Khanna SVP and CISO of SBI Card; and Divya John, AVP, Risk and Compliance, HDFC bank. Let's get started.

27 June 2022

5 ways cybercriminals steal credit card details

Here are some of the most common ways hackers can get hold of other people’s credit card data – and how you can keep yours safe

The post 5 ways cybercriminals steal credit card details appeared first on WeLiveSecurity

27 June 2022

Instagram’s new age verification tool – Week in security with Tony Anscombe

As Instagram tests a new age verification tool, what are some of the concerns when it comes to confirming someone's age on the internet?

The post Instagram’s new age verification tool – Week in security with Tony Anscombe appeared first on WeLiveSecurity

24 June 2022

Google details commercial spyware that targets both Android and iOS devices

Hermit highlights a wider issue concerning our privacy and freedom.
24 June 2022

Scalper bots are snapping up appointments for government services in Israel

Scalpers are snapping up public service appointments and selling them on.
24 June 2022

Google Warns Spyware Being Deployed Against Android, iOS Users

Google Warns Spyware Being Deployed Against Android, iOS Users The company is warning victims in Italy and Kazakhstan that they have been targeted by the malware from Italian firm RCS Labs.
24 June 2022

These hackers are spreading ransomware as a distraction - to hide their cyber spying

Five ransomware strains have been linked to Bronze Starlight activities.
23 June 2022

Fancy Bear Uses Nuke Threat Lure to Exploit 1-Click Bug

Fancy Bear Uses Nuke Threat Lure to Exploit 1-Click Bug The APT is pairing a known Microsoft flaw with a malicious document to load malware that nabs credentials from Chrome, Firefox and Edge browsers.
23 June 2022

Virtual private networks: 5 common questions about VPNs answered

(Almost) everything you always wanted to know about virtual private networks, but were afraid to ask

The post Virtual private networks: 5 common questions about VPNs answered appeared first on WeLiveSecurity

23 June 2022

Ukrainian organizations warned of hacking attempts using CredoMap malware, Cobalt Strike beacons

Russian hackers continue their attempts to break into the systems of Ukrainian organisations, this time with phishing and fake emails.
22 June 2022

Meet the Administrators of the RSOCKS Proxy Botnet

Authorities in the United States, Germany, the Netherlands and the U.K. last week said they dismantled the "RSOCKS" botnet, a collection of millions of hacked devices that were sold as "proxies" to cybercriminals looking for ways to route their malicious traffic through someone else's computer. While the coordinated action did not name the Russian hackers allegedly behind RSOCKS, KrebsOnSecurity has identified its owner as a Russian man living abroad who also runs the world's top Russian spamming forum.
22 June 2022

Gamification of Ethical Hacking and Hacking Esports

Gamification of Ethical Hacking and Hacking Esports Joseph Carson, Chief Security Scientist and Advisory CISO at Delinea, explores why gamified platforms and hacking esports are the future.
22 June 2022