Cybersecurity News


Microsoft, DHS Warn of Zero-Day Attack Targeting IE Users

Software firm is "aware of limited targeted attacks" exploiting a scripting issue vulnerability in Internet Explorer 9, 10, and 11 that previously has not been disclosed.
21 January 2020

New Ransomware Tactic Shows How Windows EFS Can Aid Attackers

Researchers have discovered how ransomware can take advantage of the Windows Encrypting File System, prompting security vendors to release patches.
21 January 2020

FireEye Buys Cloudvisory

The purchase is intended to bring new cloud capabilities to the FireEye Helix security platform.
21 January 2020

Microsoft discovers new sLoad 2.0 (Starslord) malware

sLoad malware gangs makes a comeback after having operations exposed last month.
21 January 2020

Avoid That Billion-Dollar Fine: Blurring the Lines Between Security and Privacy

While doing good for the user is the theoretical ideal, the threat of fiscal repercussions should drive organizations to take privacy seriously. That means security and data privacy teams must work more closely.
21 January 2020

Ransomware Upgrades with Credential-Stealing Tricks

The latest version of the FTCode ransomware can steal credentials from five popular browsers and email clients.
21 January 2020

Citrix Accelerates Patch Rollout For Critical RCE Flaw

Citrix Accelerates Patch Rollout For Critical RCE Flaw Citrix has issued the first of several updates fixing a critical vulnerability in various versions of its Citrix Application Delivery Controller (ADC) and Citrix Gateway products.
21 January 2020

Nearly 75% of SD-WAN Owners Lack Confidence Post-Digital Transformation

More businesses think SD-WAN will reduce WAN costs, but only 37% think SD-WANs will help defend against malware and other threats.
21 January 2020

US Cyber Command was not prepared to handle the amount of data it hacked from ISIS

Operation Glowing Symphony was a success, but Cyber Command operators were not prepared for the amount of data they found in hacked ISIS accounts and servers.
21 January 2020

FTCODE Ransomware Now Steals Chrome, Firefox Credentials

FTCODE Ransomware Now Steals Chrome, Firefox Credentials New versions of the ransomware now sniff out saved credentials for Internet Explorer, Mozilla Firefox, Mozilla Thunderbird, Google Chrome and Microsoft Outlook.
21 January 2020

Data Awareness Is Key to Data Security

Traditional data-leak prevention is not enough for businesses facing today's dynamic threat landscape.
21 January 2020

Microsoft Zero-Day Actively Exploited, Patch Forthcoming

Microsoft Zero-Day Actively Exploited, Patch Forthcoming CVE-2020-0674 is a critical flaw for most Internet Explorer versions, allowing remote code execution and complete takeover.
21 January 2020

FTCODE ransomware is now armed with browser, email password stealing features

Encrypting your PC isn’t enough -- hackers want your email passwords, too.
21 January 2020

Did you really 'like' that? How Chameleon attacks spring in Facebook, Twitter, LinkedIn

Social networks impacted seem to disagree on the scope of the attack.
21 January 2020

Elaborate Honeypot 'Factory' Network Hit with Ransomware, RAT, and Cryptojacking

A fictitious industrial company with phony employees personas, website, and PLCs sitting on a simulated factory network fooled malicious hackers - and raised alarms for at least one white-hat researcher who stumbled upon it.
21 January 2020

14% of Android app privacy policies contain contradictions about data collection

An analysis of 11,430 Play Store apps found that 14.2% used a privacy policy with contradicting statements about user data collection practices.
21 January 2020

UK's HMRC tax authority seeks tools to track down cryptocurrency criminals

The project bid could also indicate the desire to monitor the cryptocurrency assets of taxpayers.
21 January 2020

7 Tips for Infosec Pros Considering A Lateral Career Move

7 Tips for Infosec Pros Considering A Lateral Career Move Looking to switch things up but not sure how to do it? Security experts share their advice for switching career paths in the industry.
21 January 2020

Hacker Leaks More Than 500K Telnet Credentials for IoT Devices

Hacker Leaks More Than 500K Telnet Credentials for IoT Devices Bad actor obtained passwords for servers, home routers, and smart devices by scanning internet for devices open to the Telnet port.
21 January 2020

Antivirus vendors push fixes for EFS ransomware attack method

Signature-based software may not be enough to protect Microsoft’s Windows EFS against evolving ransomware families.
21 January 2020