Cybersecurity News
Remote Attackers Can Now Reach Protected Network Devices via NAT Slipstreaming
A new version of NAT slipstreaming allows cybercriminals an easy path to devices that aren't connected to the internet.
27 January 2021
Sudo Bug Gives Root Access to Mass Numbers of Linux Systems
Qualys said the vuln gives any local user root access to systems running the most popular version of Sudo.
27 January 2021
Microsoft Security Business Exceeds $10B in Revenue
Microsoft's security division has grown more than 40% year-over-year, the company reports alongside security product updates.27 January 2021
Authorities plan to mass-uninstall Emotet from infected hosts on April 25, 2021
The world's largest malware botnet will become extinct by April after today's coordinated takedown and planned clean-up operations.27 January 2021
Authorities plan to mass-uninstall Emotet from infected hosts on March 25, 2021
The world's largest malware botnet will become extinct by April after today's coordinated takedown and planned clean-up operations.27 January 2021
ADT Security Camera Flaw Opened Homes, Stores to Eavesdropping
Researchers publicly disclosed flaws in ADT's LifeShield DIY HD Video Doorbell, which could have allowed local attackers to access credentials, video feeds and more.
27 January 2021
Emotet Takedown Disrupts Vast Criminal Infrastructure; NetWalker Site Offline
Hundreds of servers and 1 million Emotet infections have been dismantled globally, while tales have emerged on Twitter that NetWalker's Dark Web leaks site is offline.
27 January 2021
4 Clues to Spot a Bot Network
Protect against misinformation and disinformation campaigns by learning how to identify the bot networks spreading falsehoods.27 January 2021
Many Cybersecurity Job Candidates Are Subpar, While On-the-Job Training Falls Short
With demand for skilled cybersecurity workers so high, is it really surprising that most companies are seeing fewer qualified applicants?27 January 2021
PCI SSC Announces 2021 Special Interest Group Election Results
Following its annual Special Interest Group (SIG) election process, the PCI Security Standards Council has confirmed the winning SIG topic for 2021. The Council’s Participating Organizations voted to select “Best Practices for Container Orchestration” as the focus for the year ahead. The goal of the SIG is to provide guidance for companies on how to enhance security when using container orchestration tools. This guidance will include an overview of container orchestration tools as well as a breakdown of payment industry considerations for critical components of typical system implementations.
27 January 2021
Apple Patches Three iOS Zero-Day Vulnerabilities
New iOS 14.4 update available for iPhones and iPads.27 January 2021
Security's Inevitable Shift to the Edge
As the edge becomes the place for DDoS mitigation, Web app security, and other controls, SASE is the management platform to handle them all.27 January 2021
International Action Targets Emotet Crimeware
Authorities across Europe on Tuesday said they'd seized control over Emotet, a prolific malware strain and cybercrime-as-service operation. Investigators say the action could help quarantine more than a million Microsoft Windows systems currently compromised with malware tied to Emotet infections.27 January 2021
National Crime Agency warns novice and veteran traders alike of rise in clone company scams
The NCA says these schemes have already led to the theft of over £78 million.27 January 2021
Apple Patches Three Actively Exploited Zero-Days, Part of iOS Emergency Update
An anonymous researcher identified bugs in the software’s kernel and WebKit browser engine that are likely part of an exploit chain.
27 January 2021
LogoKit Group Aims for Simple Yet Effective Phishing
A phishing kit that uses embedded JavaScript targeted the users of more than 300 sites in the past week, aiming to grab credentials for SharePoint, Adobe Document Cloud, and OneDrive.27 January 2021
Fake ICO consultant sentenced for embezzling cryptocurrency now worth $20 million
The US resident pretended to be an expert on investing in cryptocurrencies.27 January 2021
UK association defends ransomware payments in cyber insurance policies
The group has been criticized for “funding” organized crime.27 January 2021
10-years-old Sudo bug lets Linux users gain root-level access
The vulnerability, named "Baron Samedit," impacts most Linux distributions today.26 January 2021
Ransomware Disrupts Operations at Packaging Giant WestRock
Incident is another reminder of how vulnerable OT environments are to attack, security experts say.26 January 2021
