Cybersecurity News


Metamorfo Banking Trojan Abuses AutoHotKey to Avoid Detection

Metamorfo Banking Trojan Abuses AutoHotKey to Avoid Detection A legitimate binary for creating shortcut keys in Windows is being used to help the malware sneak past defenses, in a rash of new campaigns.
12 March 2021

Microsoft Exchange Exploits Pave a Ransomware Path

Microsoft Exchange Exploits Pave a Ransomware Path As attacks double every hour, hackers are exploiting vulnerable Microsoft Exchange servers and installing a new family of ransomware called DearCry.
12 March 2021

Molson Coors Cracks Open a Cyberattack Investigation

Molson Coors Cracks Open a Cyberattack Investigation The multinational brewing company did not say what type of incident caused a ‘systems outage,’ but it's investigating and working to get networks back online.
12 March 2021

Week in security with Tony Anscombe

ESET research into exploitation of Microsoft Exchange flaws – How smart sex toys may expose your privacy – E-health versus your personal data

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

12 March 2021

Power Equipment: A New Cybersecurity Frontier

Power systems, HVAC systems, and other network-connected devices are exposing new vulnerabilities that must be secured.
12 March 2021

Microsoft Reports 'DearCry' Ransomware Targeting Exchange Servers

Attackers have begun to deploy ransomware on Microsoft Exchange Servers compromised by the ProxyLogon exploits.
12 March 2021

Just Released: Version 3.1 of the PCI PIN Security Standard

 

Today, the PCI SSC published a minor revision to the PCI PIN Security Requirements and Testing Procedures—also known as the PCI PIN Security Standard. Version 3.1 of the Standard includes clarifications and updates previously released via FAQs and bulletins and incorporates stakeholder feedback and comments received via a formal request for comment (RFC) period.

12 March 2021

Uber, Lyft to share data on drivers banned for sexual, physical assault

The measure may stop banned drivers from being able to jump between platforms.
12 March 2021

The future of data privacy: confidential computing, quantum safe cryptography take center stage

IBM is working on future-proof encryption methods able to keep our data safe both in storage and active use.
12 March 2021

Netflix weighs up crackdown on password sharing

Netflix weighs up crackdown on password sharing

Streaming service tests feature that asks viewers if they share household with subscriber

Netflix has begun testing a feature that asks viewers whether they share a household with a subscriber, in a move that could lead to crackdown on the widespread practice of sharing passwords among friends and family.

Some Netflix users are reported to have received a message asking them to confirm they live with the account owner by entering a code included in a text message or email sent to the subscriber.

Continue reading...
12 March 2021

Netflix wants to stop you sharing your password

Many of us do it. Netflix is testing ways to restrict you from sharing your account details.
12 March 2021

Microsoft Exchange Server hacks ‘doubling’ every two hours

A ransomware variant is now also leveraging the critical vulnerabilities.
12 March 2021

F5 Networks Urges Customers to Update to New Versions of Its App Delivery Tech

F5 BIG-IP and BIG-IQ have multiple critical vulnerabilities that enable attackers to completely compromise systems.
11 March 2021

Network Pivots, Patch Bypasses: Exploits Hit Hard in 2020

An analysis of 50 vulnerabilities finds a spectrum of risk, from widespread vulnerabilities exploited by a variety of attackers to serious issues that will likely be exploited in 2021.
11 March 2021

Molson Coors Beer Operations Halted by Hack

No details yet disclosed on the cyberattack.
11 March 2021

Does XDR Mark the Spot? 6 Questions to Ask

Does XDR Mark the Spot? 6 Questions to Ask Extended detection and response technology goes well beyond endpoint management to provide visibility into networks, servers, cloud, and applications. Could it be the answer to your security challenges?
11 March 2021

Ransomware Attack Strikes Spain’s Employment Agency

Ransomware Attack Strikes Spain’s Employment Agency Reports say that the agency in charge of managing Spain's unemployment benefits has been hit by the Ryuk ransomware.
11 March 2021

TrickBot Takes Over, After Cops Kneecap Emotet

TrickBot Takes Over, After Cops Kneecap Emotet TrickBot rises to top threat in February, overtaking Emotet in Check Point’s new index.
11 March 2021

Microsoft Exchange Server Exploit Code Posted to GitHub

The proof-of-concept tool, which contained exploits for two Exchange Server vulnerabilities, was quickly removed from GitHub.
11 March 2021

NanoCore RAT Scurries Past Email Defenses with .ZIPX Tactic

NanoCore RAT Scurries Past Email Defenses with .ZIPX Tactic A spam campaign hides a malicious executable behind file archive extensions.
11 March 2021