Cybersecurity News
3 Tips For Successfully Running Tech Outside the IT Department
When marketing opts for "extra-departmental IT," coordination and communication are required to keep things secured.Silver Peak SD-WAN Bugs Allow for Network Takeover
Three security vulnerabilities can be chained to enable unauthenticated remote code execution.
7 Cool Cyberattack and Audit Tools to be Highlighted at Black Hat Europe
Platforms, open source tools, and other toolkits for penetration testers and other security practitioners will be showcased at the early December virtual event.
Barracuda to Acquire Fyde for Zero-Trust Capabilities
Plans call for expanding the Barracuda CloudGen SASE platform.9 New Tactics to Spread Security Awareness
Employees are often your first line of security defense when the bad guys come calling -- providing your workers are properly trained. Security leaders share how they're raising awareness.
Nvidia Warns Windows Gamers of GeForce NOW Flaw
Both Nvidia and Intel faced severe security issues this week - including a high-severity bug in Nvidia's GeForce NOW.
Ragnar Locker Ransomware Gang Takes Out Facebook Ads in Key New Tactic
Following a Nov. 3 ransomware attack against Campari, Ragnar Locker group took out public Facebook ads threatening to release stolen data.
Recent ransomware wave targeting Israel linked to Iranian threat actors
Israeli companies have seen an uptick in attacks and successful infections with the Pay2Key and WannaScream ransomware.Minecraft Apps on Google Play Fleece Players Out of Big Money
Seven mobile apps for Android sneakily charge fans of Minecraft and Roblox hundreds of dollars per month.
How to Successfully Transition Software from PA-DSS to the PCI Secure Software Standard
On 28 October 2022, the Payment Application Data Security Standard (PA-DSS) program will officially close. In this blog, Jake Marcinko, PCI SSC Senior Manager, Emerging Standards, shares how PA-DSS compares to its successor, the PCI Secure Software Standard, a standard within the PCI Software Security Framework (SSF); and Tracey Harrington, PCI SSC Manager, Certification Programs, offers key timelines and suggestions on how to prepare your organization to make the transition.
Former Microsoft Software Engineer Sentenced to 9 Years in Prison
The 26-year-old was convicted earlier this year of wire fraud, money laundering, and filing false tax returns, among other charges.Microsoft Patch Tuesday fixes 17 critical flaws, Windows zero‑day
The second Tuesday of the month brings another fresh batch of fixes for security vulnerabilities in various Microsoft products
The post Microsoft Patch Tuesday fixes 17 critical flaws, Windows zero‑day appeared first on WeLiveSecurity
Play Store identified as main distribution vector for most Android malware
Mammoth research project using Symantec (now NortonLifeLock) telemetry confirms what everyone suspected.How to Avoid Getting Killed by Ransomware
Using a series of processes, infosec pros can then tap automated data hygiene to find and fix files that attackers key in on.High-Severity Cisco DoS Flaw Can Immobilize ASR Routers
The flaw stems from an issue with the ingress packet processing function of Cisco IOS XR software.
COVID-19 Data-Sharing App Leaked Healthcare Worker Info
Philippines COVID-KAYA app allowed for unauthorized access typically protected by ‘superuser’ credentials and also may have exposed patient data.
Palo Alto Networks acquires attack surface manager Expanse in $800m deal
Expanse’s platform will be added to the Cortex product suite.Avast warns of Minecraft skin, mod apps fleecing ‘millions’ of Android users
Ridiculously expensive subscriptions are costing users as much as $120 per month.Why you should keep your Netflix password to yourself
Sharing is caring – except when it isn’t. Here’s why you shouldn’t share your password for online media services with other people.
The post Why you should keep your Netflix password to yourself appeared first on WeLiveSecurity