Cybersecurity News
Google Forms Set Baseline For Widespread BEC Attacks

21 January 2021
Rethinking IoT Security: It's Not About the Devices
Keeping IoT safe in the future will require securing the networks themselves. Focusing on the devices is a never-ending battle that will only become more burdensome.21 January 2021
Google Searches Expose Stolen Corporate Credentials

21 January 2021
MrbMiner crypto-mining operation linked to Iranian software firm
Despite the Sophos report ousting the MrbMiner group today, the botnet is expected to continue to operate with impunity.21 January 2021
Automated exploit of critical SAP SolMan vulnerability detected in the wild
Proof-of-concept exploit code was published last week.21 January 2021
This phishing scam left thousands of stolen passwords exposed through Google search
A mistake on the part of the cyberattackers led to their discovery -- and that of the data they pillaged.21 January 2021
Vadokrist: A wolf in sheep’s clothing
Another in our occasional series demystifying Latin American banking trojans
The post Vadokrist: A wolf in sheep’s clothing appeared first on WeLiveSecurity
21 January 2021
Microsoft Releases New Info on SolarWinds Attack Chain
Threat actors went to elaborate lengths to maintain operational security around second-stage payload activation, company says.20 January 2021
SolarWinds Attack, Cyber Supply Chain Among Priorities for Biden Administration
During Senate confirmation hearings, the nominees for Secretary of Homeland Security and Director of National Intelligence pledged to focus on cybersecurity.20 January 2021
Critical Cisco SD-WAN Bugs Allow RCE Attacks

20 January 2021
DNSpooq bugs expose millions of devices to DNS cache poisoning
Security flaws in a widely used DNS software package could allow attackers to send users to malicious websites or to remotely hijack their devices
The post DNSpooq bugs expose millions of devices to DNS cache poisoning appeared first on WeLiveSecurity
20 January 2021
NVIDIA Gamers Face DoS, Data Loss from Shield TV Bugs

20 January 2021
Name That Toon: Insider Threat

20 January 2021
Malwarebytes Hit by SolarWinds Attackers

20 January 2021
NSA urges system administrators to replace obsolete TLS protocols
NSA: Obsolete encryption provides a false sense of security.20 January 2021
Investment Scammers Prey on Dating App Users, Interpol Warns

20 January 2021
Paving the way: Inspiring Women in Payments - A podcast featuring Nicole Braun
At times, Nicole Braun was the only female Qualified Security Assessor (QSA) in the entire country of New Zealand. In our 2021 podcast series debut, Nicole explains how she found success in the payments industry, against all odds, and why she thinks there are encouraging signs that a gender shift is coming.
20 January 2021
Google Research Pinpoints Security Soft Spot in Multiple Chat Platforms

20 January 2021
Tips for a Bulletproof War Room Strategy
The techniques used in real-world combat apply in cybersecurity operations, except that instead of bullets flying downrange, it's packets.20 January 2021
Interpol warns of romance scam artists using dating apps to promote fake investments
Matches lead victims not to love, but to fake money-making apps, instead.20 January 2021