Cybersecurity News
What’s New in PCI SPoC Security Standard Version 1.1?
Today, the PCI SSC published a minor revision to the PCI SPoC Security Standard. Version 1.1 of the standard aligns with the recently published PCI PTS POI v6.0, allowing SPoC solutions to work with PCI PTS SCRP devices that support magnetic-stripe readers.
25 June 2020
Apple adds support for encrypted DNS (DoH and DoT)
Apple said this week that iOS 14 and macOS 11 will support the DNS-over-HTTPS and DNS-over-TLS protocols.25 June 2020
Nationwide Facial Recognition Ban Proposed By Lawmakers
Lawmakers proposed a new bill that would ban the use of facial recognition by law enforcement nationwide.
25 June 2020
Golang Worm Widens Scope to Windows, Adds Payload Capacity
A first-stage malware loader spotted in active campaigns has added additional exploits and a new backdoor capability.
25 June 2020
Contact Tracing & Threat Intel: Broken Tools & Processes
How epidemiology can solve the people problem in security.25 June 2020
Chinese bank forced western companies to install malware-laced tax software
GoldenSpy backdoor trojan found in a Chinese bank's official tax software, which the bank has been forcing western companies to install.25 June 2020
Vulnerabilities Declining in Open Source, But Slow Patching Still a Problem
Even as more code is produced, indirect dependencies continue to undermine security.25 June 2020
Facial recognition technology banned in another US city
In a move lauded by privacy advocates, Boston joins the ranks of cities that have voted down the municipal use of the technology
The post Facial recognition technology banned in another US city appeared first on WeLiveSecurity
25 June 2020
Another Record-Breaking DDoS Attack Signals Shift in Criminal Methods
Malicious botnet sources explode in new attacks that push boundaries in terms of volume and duration.25 June 2020
Nvidia Warns Windows Gamers of Serious Graphics Driver Bugs
Several high-severity flaws in Nvidia's GPU display drivers for Windows users could lead to code-execution, DoS and more.
25 June 2020
Better Collaboration Between Security & Development
Security and development teams must make it clear why their segment of the development life cycle is relevant to the other teams in the pipeline.25 June 2020
Lucifer Malware Aims to Become Broad Platform for Attacks
The recent spread of the distributed denial-of-service tool attempts to exploit a dozen web-framework flaws, uses credential stuffing, and is intended to work against a variety of operating systems.25 June 2020
Office 365 Users Targeted By ‘Coronavirus Employee Training’ Phish
Threat actors shift focus from COVID-19 to employee coronavirus training and current events like Black Lives Matter as cyber-attacks continue to rise.
25 June 2020
'GoldenSpy' Malware Hidden in Tax Software Spies on Companies Doing Business in China
Advanced persistent threat (APT) campaign aims to steal intelligence secrets from foreign companies operating in China.25 June 2020
Lucifer: Devilish malware that abuses critical vulnerabilities on Windows machines
Researchers say the powerful malware has been “wreaking havoc” on Windows hosts.25 June 2020
FBI warns K12 schools of ransomware attacks via RDP
The FBI has issued a security alert warning K12 schools of the "ransomware threat" during the COVID-19 pandemic.25 June 2020
WikiLeaks founder charged with conspiring with Anonymous and LulzSec hackers
US Department of Justice claims Assange tried to recruit hackers to commit crimes on his behalf. One of the hackers was an FBI informant, said the FBI.24 June 2020
Emerging Ransomware Targets Photos, Videos on Android Devices
The CryCryptor malware strain is a brand-new family of threats, leveraging COVID-19 to spread.
24 June 2020
Self-Propagating Lucifer Malware Targets Windows Systems
A new devilish malware is targeting Windows systems with cryptojacking and DDoS capabilities.
24 June 2020
Apple Buys Fleetsmith
The fleet management company becomes part of Apple in a deal announced today.24 June 2020