Cybersecurity News


Firefox 81 released with new browser theme

Other Firefox 81 features include a new look for the PDF viewer, support for auto-filling card data, and support for hardware media keys.
22 September 2020

Microsoft renames and unifies more products under Microsoft Defender brand

Microsoft Threat Protection, Defender ATP, Azure Security Center, and others brought under the Microsoft Defender umbrella brand.
22 September 2020

Google Cloud Buckets Exposed in Rampant Misconfiguration

Google Cloud Buckets Exposed in Rampant Misconfiguration A too-large percentage of cloud databases containing highly sensitive information are publicly available, an analysis shows.
22 September 2020

Permission Management & the Goldilocks Conundrum

In today's COVID-19 era, managing access has become even more difficult, especially for large organizations. Here's how to get it "just right."
22 September 2020

Nearly 70% of IT & Security Pros Hone Their Cyber Skills Outside of Work

New research shows how security skills are lacking across multiple IT disciplines as well - including network engineers, sys admins, and cloud developers.
22 September 2020

Russia wants to ban the use of secure protocols such as TLS 1.3, DoH, DoT, ESNI

Amendment to IT law would make it illegal to use encryption protocols that fully hide the traffic's destination.
22 September 2020

Details of 540,000 sports referees taken in failed ransomware attack

ArbiterSports said it paid the hackers to delete the stolen data — a database backup.
21 September 2020

Member of 'The Dark Overlord' hacking group sentenced to five years in prison

UK national Nathan Wyatt gets five years in prison after pleading guilty today.
21 September 2020

Remote Work Exacerbating Data Sprawl

More than three-quarters of IT executives worry that data sprawl puts their data at risk, especially with employees working from insecure home networks, survey finds.
21 September 2020

Fileless Malware Tops Critical Endpoint Threats for 1H 2020

Fileless Malware Tops Critical Endpoint Threats for 1H 2020 When it comes to endpoint security, a handful of threats make up the bulk of the most serious attack tools and tactics.
21 September 2020

'Dark Overlord' Cyber Extortionist Pleads Guilty

Nathan Wyatt was sentenced to five years in prison after changing a previously not guilty plea.
21 September 2020

Unsecured Microsoft Bing Server Leaks Search Queries, Location Data

Unsecured Microsoft Bing Server Leaks Search Queries, Location Data Data exposed included search terms, location coordinates, and device information - but no personal data.
21 September 2020

DHS Issues Dire Patch Warning for ‘Zerologon’

DHS Issues Dire Patch Warning for ‘Zerologon’ The deadline looms for U.S. Cybersecurity and Infrastructure Security Agency’s emergency directive for federal agencies to patch against the so-called ‘Zerologon’ vulnerability.
21 September 2020

PCI PIN Security in Practice Case Study: Gertec

 

In this PCI DSS in Practice Case Study, Brazil Regional Engagement Board Member Gertec shares how the PCI PIN Security requirements helped the organization to understand the importance of having procedures in place and up to date.

21 September 2020

Microsoft secures backend server that leaked Bing data

No personal user data was leaked in the incident.
21 September 2020

Firefox for Android Bug Allows ‘Epic Rick-Rolling’

Firefox for Android Bug Allows ‘Epic Rick-Rolling’ Anyone on the same Wi-Fi network can force websites to launch, with no user interaction.
21 September 2020

Android Malware Bypasses 2FA And Targets Telegram, Gmail Passwords

Android Malware Bypasses 2FA And Targets Telegram, Gmail Passwords A new Android malware strain has been uncovered, part of the Rampant Kitten threat group's widespread surveillance campaign that targets Telegram credentials and more.
21 September 2020

Mozilla fixes flaw that let attackers hijack Firefox for Android via Wi‑Fi

Attackers could have exploited the flaw to steal victims’ login credentials or install malware on their devices

The post Mozilla fixes flaw that let attackers hijack Firefox for Android via Wi‑Fi appeared first on WeLiveSecurity

21 September 2020

Patch by Tonight: CISA Issues Emergency Directive for Critical Netlogon Flaw

The directive requires all federal agencies to apply a patch for Windows Netlogon vulnerability CVE-2020-1472 by midnight on Sept. 21.
21 September 2020

5 Steps to Greater Cyber Resiliency

Work from home isn't going away anytime soon, and the increased vulnerability means cyber resiliency will continue to be critical to business resiliency.
21 September 2020