Cybersecurity News
Get Cutting-Edge Healthcare Cybersecurity Insights at Black Hat USA
Bad actors are on the lookout for ways to attack healthcare organizations, so it's important for cybersecurity pros to stay informed about the latest trends and threats in the industry.14 July 2020
Leaked Details of 142 Million MGM Hotel Guests Found for Sale on Dark Web
Last summer’s data leak at the hotel chain appears to be far more expansive than previously thought -- or the credentials could come from a hack of DataViper.
14 July 2020
99% of Websites at Risk of Attack Via JavaScript Plug-ins
The average website includes content from 32 different third-party JavaScript programs, new study finds.14 July 2020
EFF’s new database reveals what tech local police are using to spy on you
An interactive map shows you everything from Ring partnerships to predictive policing.14 July 2020
Welcome Chat as a secure messaging app? Nothing could be further from the truth
ESET research uncovers a malicious operation that both spies on victims and leaks their data
The post Welcome Chat as a secure messaging app? Nothing could be further from the truth appeared first on WeLiveSecurity
14 July 2020
Critical SAP Bug Allows Full Enterprise System Takeover
Exploitation of the bug can allow an attacker to lift sensitive information, delete files, execute code, carry out sabotage and more.
14 July 2020
RECON bug lets hackers create admin accounts on SAP servers
SAP patches bug impacting most of its apps and customer base.13 July 2020
A hacker is selling details of 142 million MGM hotel guests on the dark web
EXCLUSIVE: The MGM Resorts 2019 data breach is much larger than initially reported.13 July 2020
Breached Data Indexer ‘Data Viper’ Hacked
Data Viper, a security startup that provides access to some 15 billion usernames, passwords and other information exposed in more than 8,000 website breaches, has itself been hacked and its user database posted online. The hackers also claim they are selling on the dark web roughly 2 billion records Data Viper collated from numerous breaches and data leaks, including data from several companies that likely either do not know they have been hacked or have not yet publicly disclosed an intrusion. The apparent breach at St. Louis, Mo. based Data Viper offers a cautionary and twisted tale of what can happen when security researchers seeking to gather intelligence about illegal activity online get too close to their prey or lose sight of their purported mission. The incident also highlights the often murky area between what's legal and ethical in combating cybercrime.13 July 2020
Zero-Trust Efforts Rise with the Tide of Remote Working
With employees likely to continue to spend much, if not all, of their time working from home, companies are focusing more on technologies to boost the security of their now-distributed workplace.13 July 2020
A Paramedic's Lessons for Cybersecurity Pros
A paramedic turned cybersecurity expert shares his experiences in both fields, highlights their similarities, and explains how they can learn from each other.13 July 2020
Lost in Translation: Serious Flaws Found in ICS Protocol Gateways
These oft-forgotten devices contain serious vulnerabilities that allow attackers to hack OT systems remotely, researchers will reveal at Black Hat USA next month.13 July 2020
Russian Hacker Convicted for Social Network Hacks
The Russian national was convicted of hacking into accounts at LinkedIn, Dropbox, and Formspring.13 July 2020
Google Meet adds zoombombing protection for education customers
Google will block anonymous users from joining Google Meet video conferences organized by G Suite for Education customers.13 July 2020
Zoom patches zero‑day flaw in Windows client
The vulnerability exposed Zoom users running Windows 7 or earlier OS versions to remote attacks
The post Zoom patches zero‑day flaw in Windows client appeared first on WeLiveSecurity
13 July 2020
Experts Predict Rise of Data Theft in Ransomware Attacks
The most attractive targets for data theft are businesses perceived as most likely to pay to prevent exposure of their information.13 July 2020
TrickBot Sample Accidentally Warns Victims They’re Infected
A data-stealing module in a recent sandboxed sample triggers browser-based fraud alerts for Trickbot victims -- and shows something of the inner working of the malware's operators.
13 July 2020
Secret Service Creates Cyber Fraud Task Forces
Traditional financial crime and cyberattacks are converging, requiring new skills and approaches to the problem, officials said.
13 July 2020
Decoding the Verizon DBIR Report: An Insider's Look Beyond the Headlines
To truly understand cybersecurity trends, we must look beyond the headlines and ask more of the data. What you learn might surprise you.13 July 2020
A ‘New Age’ of Sophisticated Business Email Compromise is Coming
A new BEC threat group is heralding more sophisticated email scams that target organizations without DMARC and squeeze as much money out of victims as possible.
13 July 2020