Cybersecurity News
Attackers Leverage Excel File Encryption to Deliver Malware
Technique involves saving malicious Excel file as "read-only" and tricking users into opening it, Mimecast says.Wiper Malware Called “Coronavirus” Spreads Among Windows Victims

Microsoft is working on mitigating an entire Windows bug class
Researcher set out to find 15 new Windows bugs last year. He found 25, and Microsoft already patched 11.Why All Employees Are Responsible for Company Cybersecurity
It's not just the IT and security team's responsibility to keep data safe -- every member of the team needs to be involved.Coronavirus ‘Financial Relief’ Phishing Attacks Spike

Critical WordPress Plugin Bug Can Lock Admins Out of Websites

Active Directory Attacks Hit the Mainstream
Understanding the limitations of authentication protocols, especially as enterprises link authentication to cloud services to Active Directory, is essential for security teams in the modern federated enterprise.Microsoft Alerts Healthcare to Human-Operated Ransomware
Microsoft has notified dozens of hospitals with vulnerable gateway and VPN appliances in their infrastructure, which could put them at risk.Two Zoom Zero-Day Flaws Uncovered

Could Work-From-Home Staff be Violating Privacy Laws During Conference Calls?

Marriott hacked again, 5.2 million guests affected
Bad actors accessed a range of personally identifiable information, including names, dates of birth and a lot more
The post Marriott hacked again, 5.2 million guests affected appeared first on WeLiveSecurity
The SOC Emergency Room Faces Malware Pandemic
To keep users and networks healthy and secure, security teams need to mimic countries that have taken on COVID-19 with a rapid, disciplined approach.LimeRAT malware is being spread through VelvetSweatshop Excel encryption technique
The old tactic is proving fruitful in a new campaign.Top Email Protections Fail in Latest COVID-19 Phishing Campaign

Major Cloud, CDN Providers Join Secure Routing Initiative
Akamai, AWS, Azion, Cloudflare, Facebook, and Netflix are now members of the Mutually Agreed Norms for Routing Security (MANRS) effort.A crypto-mining botnet has been hijacking MSSQL servers for almost two years
Vollgar botnet launches brute-force attacks against MSSQL databases to take over servers and install Monero and Vollar cryptocurrency miners.Morrisons not liable for massive staff data leak, court rules

UK supreme court says retailer not to blame for actions of employee with grudge
The UK’s highest court has ruled that Morrisons should not be held liable for the criminal act of an employee with a grudge who leaked the payroll data of about 100,000 members of staff.
The supermarket group brought a supreme court challenge in an attempt to overturn previous judgments which gave the go-ahead for compensation claims by thousands of employees whose personal details were posted on the internet.
Continue reading...Coronavirus con artists continue to spread infections of their own
The scam machine shows no signs of slowing down, as fraudsters dispense bogus health advice, peddle fake testing kits and issue malware-laced purchase orders
The post Coronavirus con artists continue to spread infections of their own appeared first on WeLiveSecurity