Cybersecurity News


Charming Kitten Returns with WhatsApp, LinkedIn Effort

Charming Kitten Returns with WhatsApp, LinkedIn Effort The Iran-linked APT is targeting Israeli scholars and U.S. government employees in a credential-stealing effort.
31 August 2020

Mozilla research: Browsing histories are unique enough to reliably identify users

Online advertisers don't need huge lists of the sites we access. Just 50-150 of our favorite sites are enough.
31 August 2020

UVA Researcher Charged with Computer Intrusion & Trade Secret Theft

Chinese national Haizhou Hu was researching bio-mimics and fluid dynamics at the University of Virginia.
31 August 2020

Security flaw allows bypassing PIN verification on Visa contactless payments

The vulnerability could allow criminals to rack up fraudulent charges on the cards without needing to know the PINs

The post Security flaw allows bypassing PIN verification on Visa contactless payments appeared first on WeLiveSecurity

31 August 2020

Stolen Fortnite Accounts Earn Hackers Millions Per Year

Stolen Fortnite Accounts Earn Hackers Millions Per Year More than 2 billion breached Fortnite accounts have gone up for sale in underground forums so far in 2020 alone.
31 August 2020

Critical Slack Bug Allows Access to Private Channels, Conversations

Critical Slack Bug Allows Access to Private Channels, Conversations The RCE bug affects versions below 4.4 of the Slack desktop app.
31 August 2020

From Defense to Offense: Giving CISOs Their Due

In today's unparalleled era of disruption, forward-thinking CISOs can become key to company transformation -- but this means resetting relationships with the board and C-suite.
31 August 2020

Cisco warns of actively exploited IOS XR zero-days

Cisco said it discovered the attacks last week during a support case the company's support team was called in to investigate.
31 August 2020

Cisco warns of actively exploited IOS XR zero-day

Cisco said it discovered the attacks last week during a support case the company's support team was called in to investigate.
31 August 2020

Google Play apps promised free shoes, but users got ad fraud malware instead

White Ops discovers a collection of Android apps that installed a hidden browser to load ad-heavy pages and commit ad fraud.
30 August 2020

Malicious npm package caught trying to steal sensitive Discord and browser files

Malicious code was hidden inside a JavaScript library for working with the "Fall Guys: Ultimate Knockout" game API.
28 August 2020

Data Privacy Concerns, Lack of Trust Foil Automated Contact Tracing

Efforts to create a technology framework for alerting people to whether they have been exposed to an infectious disease have been hindered by a number of key issues.
28 August 2020

Instagram ‘Help Center’ Phishing Scam Pilfers Credentials

Instagram ‘Help Center’ Phishing Scam Pilfers Credentials Researchers warn that a phishing scam is targeting Instagram users via direct messages on the app.
28 August 2020

DNC Warns Campaign Staffers of Dating App Dangers

The Democratic National Committee advises against sharing too much work and personal information on popular dating apps.
28 August 2020

Aruba Enhances Its Edge Services Platform

Enhancements unify IoT, IT, and OT networks so customers to help customers adapt to changing environments and user requirements.
28 August 2020

TA542 Returns With Emotet: What's Different Now

Researchers report the TA542 threat group has made code changes to its malware and started targeting new locations with Emotet.
28 August 2020

Elon Musk Confirms, Tesla Factory a Target of Foiled Cyberattack

Elon Musk Confirms, Tesla Factory a Target of Foiled Cyberattack A Tesla employee was reportedly approached by a Russian national and asked to install malware on the company's systems.
28 August 2020

Ransomware Red Flags: 7 Signs You're About to Get Hit

Ransomware Red Flags: 7 Signs You're About to Get Hit Caught off guard by a ransomware attack? Security experts say the warning signs were there all along.
28 August 2020

Week in security with Tony Anscombe

Canada's government services hit by cyberattacks – Vishing attacks surge amid COVID-19 pandemic – DDoS extortionists strike again

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

28 August 2020

Redefining What CISO Success Looks Like

Key to this new definition is the principle that security programs are designed to minimize business risk, not to achieve 100% no-risk.
28 August 2020