Cybersecurity News


Waterbear malware used in attack wave against government agencies

The loader has been launched against a number of Taiwanese government entities.
08 October 2020

240+ Android apps caught showing out-of-context ads

The malicious applications were showing ads but making them appear as coming from other, legitimate apps.
08 October 2020

Tesla accuses employee of Californian factory sabotage

This is not the first time the company has been targeted by individuals seeking to disrupt operations.
08 October 2020

MontysThree APT Takes Unusual Aim at Industrial Targets

MontysThree APT Takes Unusual Aim at Industrial Targets The newly discovered APT specializes in espionage campaigns against industrial holdings -- a rare target for spyware.
08 October 2020

US seizes Iranian government domains masked as legitimate news outlets

The web of domains was utilized to spread propaganda and disinformation.
08 October 2020

'Bahamut' Threat Group Targets Government & Industry in Middle East

Researchers say the cyber espionage group was involved in several attacks against government officials and businesses in the Middle East and South Asia.
07 October 2020

New 'HEH' Botnet Targets Exposed Telnet Services

Latest threat is one in a growing list of malware developed in the Go programming language.
07 October 2020

Open Source Threat Intelligence Searches for Sustainable Communities

Open Source Threat Intelligence Searches for Sustainable Communities As long as a community is strong, so will be the intelligence it shares on open source feeds. But if that community breaks down ...
07 October 2020

Rare Firmware Rootkit Discovered Targeting Diplomats, NGOs

Second-ever sighting of a firmware exploit in the wild is a grim reminder of the dangers of these mostly invisible attacks.
07 October 2020

3 Ways Companies are Working on Security by Design

Execs from top financial organizations and other companies share insights on building a security culture.
07 October 2020

Cyber Intelligence Suffers From 'Snobby' Isolationism, Focus on Rare Threats

Cyber-threat intelligence groups need to more often investigate their organization's specific threats and better integrate with other business groups, experts say.
07 October 2020

Feds Sound Alarm Over Emotet Attacks on State, Local Govs

Feds Sound Alarm Over Emotet Attacks on State, Local Govs CISA warned already-strained public-sector entities about disturbing spikes in Emotet phishing attacks aimed at municipalities.
07 October 2020

Google Rolls Out Fixes for High-Severity Android System Flaws

Google Rolls Out Fixes for High-Severity Android System Flaws The most serious bugs are elevation-of-privilege issues in the Android System component (CVE-2020-0215 and CVE-2020-0416).
07 October 2020

CISA Warns of Renewed Emotet Activity

The Emotet malware dropper is seeing an upsurge in new activity in the second half of 2020.
07 October 2020

The New War Room: Cybersecurity in the Modern Era

The introduction of the virtual war room is a new but necessary shift. To ensure its success, security teams must implement new systems and a new approach to cybersecurity.
07 October 2020

BAHAMUT Spies-for-Hire Linked to Extensive Nation-State Activity

BAHAMUT Spies-for-Hire Linked to Extensive Nation-State Activity Researchers uncovered a sophisticated, incredibly well-resourced APT that has its fingers in wide-ranging espionage and disinformation campaigns.
07 October 2020

Working from a hotel? Beware the dangers of public Wi‑Fi

As more and more hotels are turning rooms into offices, the FBI is warning remote workers of cyber-threats lurking in the shadows

The post Working from a hotel? Beware the dangers of public Wi‑Fi appeared first on WeLiveSecurity

07 October 2020

Google’s Chrome 86: Critical Payments Bug, Password Checker Among Security Notables

Google’s Chrome 86: Critical Payments Bug, Password Checker Among Security Notables Google is rolling out 35 security fixes, and a new password feature, in Chrome 86 versions for Windows, Mac, Android and iOS users.
07 October 2020

Promising Infusions of Cash, Fake Investor John Bernard Walked Away With $30M

September featured two stories on a phony tech investor named John Bernard, a pseudonym used by a convicted thief named John Clifton Davies who's fleeced dozens of technology companies out of an estimated $30 million with the promise of lucrative investments. Those stories prompted a flood of tips from Davies' victims that paint a much clearer picture of this serial con man and his cohorts, including allegations of hacking, smuggling, bank fraud and murder.
07 October 2020

PoetRAT Resurfaces in Attacks in Azerbaijan Amid Escalating Conflict

PoetRAT Resurfaces in Attacks in Azerbaijan Amid Escalating Conflict Spear-phishing attacks targeting VIPs and others show key malware changes and are likely linked to the current conflict with Armenia.
07 October 2020