Cybersecurity News


Digital Defense acquired to bolster HelpSystems’ security assessment portfolio

HelpSystems says the purchase will help clients improve infrastructure security.
04 February 2021

Android devices ensnared in DDoS botnet

New Matryosh botnet is targeting Android systems that have left their ADB debug interface exposed on the internet.
04 February 2021

Older Generation

Using technology securelly can be overwhelming or confusing, especially for those who did not grow up with it. When helping secure those who are uncomfortable with technology focus on just the basics - 1) be aware of social engineering attacks 2) secure your home network 3) keep your systems updated 4) use strong, unique passwords 5) backup your key personal data.
04 February 2021

Google: Proper patching would have prevented 25% of all zero-days found in 2020

A quarter of all the zero-days exploited in the wild in 2020 were variations of previously patched vulnerabilities.
03 February 2021

Emotet’s Takedown: Have We Seen the Last of the Malware?

Emotet’s Takedown: Have We Seen the Last of the Malware? A week after law enforcement agencies said they took down Emotet, there has been no sign of the prolific malware.
03 February 2021

Second SolarWinds Attack Group Breaks into USDA Payroll — Report

Second SolarWinds Attack Group Breaks into USDA Payroll — Report A second APT, potentially linked to the Chinese government, could be behind the Supernova malware.
03 February 2021

Patch Imperfect: Software Fixes Failing to Shut Out Attackers

Incomplete patches are allowing attackers to continue exploiting the same vulnerabilities, reducing the cost to compromise.
03 February 2021

New Malware Hijacks Kubernetes Clusters to Mine Monero

New Malware Hijacks Kubernetes Clusters to Mine Monero Researchers warn that the Hildegard malware is part of 'one of the most complicated attacks targeting Kubernetes.'
03 February 2021

Trucking company Forward Air said its ransomware incident cost it $7.5 million

Even if the company recovered from the ransomware attack, the incident left a mark on its Q4 2020 bottom line.
03 February 2021

An Observability Pipeline Could Save Your SecOps Team

Traditional monitoring approaches are proving brittle as security operations teams need better visibility into dynamic environments.
03 February 2021

Identity theft spikes amid pandemic

The US Federal Trade Commission received 1.4 million reports of identity theft last year, double the number from 2019

The post Identity theft spikes amid pandemic appeared first on WeLiveSecurity

03 February 2021

SolarWinds Attackers Spent Months in Corporate Email System: Report

SolarWinds' CEO says evidence indicates attackers lurked in the company's Office 365 email system for months ahead of the attack.
03 February 2021

Cisco Meraki and Openpath launch new enterprise access, video security solution

The offering combines smart camera technology with modern secure access enhancements.
03 February 2021

What I Wish I Knew at the Start of My InfoSec Career

What I Wish I Knew at the Start of My InfoSec Career Security pros identify lessons learned that impact how they view infosec today.
03 February 2021

Five Critical Android Bugs Patched, Part of Feb. Security Bulletin

Five Critical Android Bugs Patched, Part of Feb. Security Bulletin February’s security update for the mobile OS includes a Qualcomm flaw rated critical, with a CVSS score of 9.8.
03 February 2021

Security in a Complex World

Innovation and complexity can co-exist; the key is to use innovation to make ever-expanding complexity comprehensible and its effects predictable.
03 February 2021

Microsoft Defender ATP is detecting yesterday's Chrome update as a backdoor

Microsoft commercial antivirus product is labeling Chrome's latest update as being infected with the Funvalget backdoor.
03 February 2021

Concerns Over API Security Grow as Attacks Increase

Some 66% of organizations say they have slowed deploying an app into production because of API security concerns.
03 February 2021

SolarWinds Orion Bug Allows Easy Remote-Code Execution and Takeover

SolarWinds Orion Bug Allows Easy Remote-Code Execution and Takeover The by-now infamous company has issued patches for three security vulnerabilities in total.
03 February 2021

Mozilla expected to launch its VPN service in Germany and France in Q1 2021

Mozilla VPN is currently available in the US, the UK, Canada, New Zealand, Singapore, and Malaysia only.
03 February 2021