Cybersecurity News


Ransomware Attackers Set Their Sights on SaaS

Ransomware has begun to target data-heavy SaaS applications, open source, and Web and application frameworks.
11 February 2021

Pre-Valentine’s Day Malware Attack Mimics Flower, Lingerie Stores

Pre-Valentine’s Day Malware Attack Mimics Flower, Lingerie Stores Emails pretending to confirm hefty orders from lingerie shop Ajour Lingerie and flower store Rose World are actually spreading the BazaLoader malware.
11 February 2021

Growing Collaboration Among Criminal Groups Heightens Ransomware Threat for Healthcare Sector

Expect increase in ransomware and 'triple extortion' attacks, Cyber Threat Intelligence League says.
11 February 2021

Accellion to retire product at the heart of recent hacks

The Accellion FTA file transfer service has been at the heart of recent hacks at banks, telcos, and government organizations across the world.
11 February 2021

Pandemic Initially Led to Fewer Disclosed Vulnerabilities, Data Suggests

Vulnerability disclosure started off slow but caught up by the end of the year, according to a new report.
11 February 2021

Microsoft Launches Phase 2 Mitigation for Zerologon Flaw

The Netlogon remote code execution vulnerability, disclosed last August, has been weaponized by APT groups.
11 February 2021

Game Over: Stopping DDoS Attacks Before They Start

Video games are poised for a revolution, but benefits will come to fruition only if the industry can guarantee consistent performance and availability.
11 February 2021

7 Things We Know So Far About the SolarWinds Attacks

7 Things We Know So Far About the SolarWinds Attacks Two months after the news first broke, many questions remain about the sophisticated cyber-espionage campaign.
11 February 2021

Free decrypter released for Avaddon ransomware victims... aaand, it's gone!

The Avaddon ransomware gang said in a forum post they already updated their code to counter the tool's release.
11 February 2021

Unemployment Fraud: As If Being Out of Work Wasn't Bad Enough

Unemployment Fraud: As If Being Out of Work Wasn't Bad Enough With the pandemic as a backdrop, cybercriminals have recognized an unprecedented opportunity to steer billions of dollars in unemployment claims into the own accounts.
11 February 2021

Celeb SIM-Swap Crime Ring Stole $100M from U.S. Victims

Celeb SIM-Swap Crime Ring Stole $100M from U.S. Victims The attackers ported victims' cell phone lines and then defeated 2FA to access accounts and apps.
11 February 2021

Protecting the water supply – hacker edition

What can municipalities do to better protect their water supply systems?

The post Protecting the water supply – hacker edition appeared first on WeLiveSecurity

11 February 2021

How Email Attacks are Evolving in 2021

How Email Attacks are Evolving in 2021 The money being wire transferred by business email compromise victims is on the rise, as cybersecurity criminals evolve their tactics.
11 February 2021

Various Malware Lurks in Discord App to Target Gamers

Various Malware Lurks in Discord App to Target Gamers Research from Zscaler ThreatLabZ shows attackers using spam emails and legitimate-looking links to gaming software to serve up Epsilon ransomware, the XMRrig cryptominer and various data and token stealers.
11 February 2021

Cloud-Native Apps Make Software Supply Chain Security More Important Than Ever

Cloud-native deployments tend to be small, interchangeable, and easier to protect, but their software supply chains require closer attention.
11 February 2021

On the Radar: Twingate Offers an Easy-to-Use Zero-Trust Access Service

Twingate is a developer of zero-trust access (ZTA) technology, which delivers remote access in a more secure fashion than virtual private networks (VPNs). It delivers its technology as a service. As a fully managed SaaS product with multiple product tiers and price points to suit customers' needs, Twingate will be a strong option for companies looking to simplify their remote access experience.
11 February 2021

KeepChange said it stopped hackers from stealing user funds, but not personal data

Stolen information includes names, email addresses, trade data, and hashed passwords.
11 February 2021

Military, Nuclear Entities Under Target By Novel Android Malware

Military, Nuclear Entities Under Target By Novel Android Malware The two malware families have sophisticated capabilities to exfiltrate SMS messages, WhatsApp messaging content and geolocation.
11 February 2021

Android spyware strains linked to state-sponsored Confucius threat group

Hornbill and SunBird are being used to stalk and steal the data of Pakistani nationals.
11 February 2021

PayPal fixes reflected XSS vulnerability in user wallet currency converter

The currency conversion endpoint was susceptible to attacks.
11 February 2021