Cybersecurity News
SonicWall zero-day exploited in the wild
Security firm NCC Group said it detected "indiscriminate" exploitation of a mysterious SonicWall zero-day.01 February 2021
FonixCrypter ransomware gang releases master decryption key
FonixCrypter gang claimed it shut down and deleted their ransomware's source code.29 January 2021
WordPress Pop-Up Builder Plugin Flaw Plagues 200K Sites

29 January 2021
Microsoft 365 Becomes Haven for BEC Innovation

29 January 2021
Cloud Security Startup Armo Emerges from Stealth with $4.5M
Armo's platform was developed to protect cloud-native workloads and provide DevOps teams with greater visibility and control.29 January 2021
Google deploys Chrome mitigations against new NAT Slipstreaming attack
After the discovery of NAT Slipstreaming 2.0 attack this week, Google says it will block Chrome traffic on ports 69, 137, 161, 1719, 1720, 1723, 6566, and 10080.29 January 2021
FBI Encounters: Reporting an Insider Security Incident to the Feds

29 January 2021
Ransomware Payoffs Surge by 311% to Nearly $350 Million
Payments to ransomware gangs using cryptocurrency more than quadrupled in 2020, with less than 200 cryptocurrency wallets receiving 80% of funds.29 January 2021
The Taxman Cometh for ID Theft Victims
The unprecedented volume of unemployment insurance fraud witnessed in 2020 hasn't abated, although news coverage of the issue has largely been pushed off the front pages by other events. But the ID theft problem is coming to the fore once again: Countless Americans will soon be receiving notices from state regulators saying they owe thousands of dollars in taxes on benefits they never received last year.29 January 2021
Industrial Gear at Risk from Fuji Code-Execution Bugs

29 January 2021
Apple iOS 14 Thwarts iMessage Attacks With BlastDoor System

29 January 2021
Week in security with Tony Anscombe
Law enforcement disrupts Emotet – Wormable Android malware spreading via WhatsApp – Three iOS zero-day bugs squashed
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
29 January 2021
Paving the way: Inspiring Women in Payments - A Q&A featuring Sheryl Benedict
After seeing the 1983 film WarGames as a child, Sheryl Benedict became fascinated by computer technology. In this edition of our blog, Sheryl explains how the thought of protecting organizations from the bad guys inspired her to achieve great things in cybersecurity.
29 January 2021
Is the Web Supply Chain Next in Line for State-Sponsored Attacks?
Attackers go after the weak links first, and the Web supply chain provides an abundance of weak links to target.29 January 2021
Lazarus Affiliate ‘ZINC’ Blamed for Campaign Against Security Researcher

29 January 2021
2020 Marked a Renaissance in DDoS Attacks
Amid the global pandemic, cybercriminals ramped up use of one of the oldest attack techniques around.29 January 2021
Electronic health records provider Athena to pay $18m settlement in kickback lawsuit
Athena was accused of paying under the table to push athenaClinicals software.29 January 2021
Google bans another misbehaving CA from Chrome
Digital certificates issued by Spanish certificate authority Camerfirma will stop working in Chrome 90, in April.29 January 2021
Google researcher discovers new iOS security system
iOS 14 shipped with BlastDoor, a new sandbox system for processing iMessages data.28 January 2021
Law Enforcement Aims to Take Down Netwalker Ransomware
The Department of Justice has so far charged one Canadian national and seized nearly $500,000 in relation to Netwalker ransomware.28 January 2021