Cybersecurity News
Data breach hits 30,000 signed up to workplace pensions provider

Fraud worries as UK company Now:Pensions says ‘third-party contractor’ posted personal details of clients to online public forum
About 30,000 customers of Now:Pensions face an anxious Christmas after a serious data breach at the pensions provider led to their sensitive personal details being posted on the internet.
In an email sent to affected customers, the workplace pensions firm warned that names, postal and email addresses, birth dates and National Insurance numbers all appeared in a public forum online.
Continue reading...23 December 2020
Lazarus Group Seeks Intelligence Related to COVID-19
Researchers attribute attacks targeting a pharmaceutical company and a government ministry related to COVID-19 response.23 December 2020
Third-Party APIs: How to Prevent Enumeration Attacks

23 December 2020
Hey Alexa, Who Am I Messaging?

23 December 2020
Emotet Returns to Hit 100K Mailboxes Per Day

23 December 2020
Enterprise IoT Security Is a Supply Chain Problem
Organizations that wish to take advantage of the potential benefits of IoT systems in enterprise environments should start evaluating third-party risk during the acquisition process.23 December 2020
7 ways malware can get into your device
You know that malware is bad, but are you also aware of the various common ways in which it can infiltrate your devices?
The post 7 ways malware can get into your device appeared first on WeLiveSecurity
23 December 2020
DHS warns against using Chinese hardware and digital services
US says Chinese companies are engaging in "PRC government-sponsored data theft."22 December 2020
SolarWinds Campaign Focuses Attention on 'Golden SAML' Attack Vector
Adversaries that successfully execute attack can achieve persistent anytime, anywhere access to a victim network, security researchers say.22 December 2020
Emotet Campaign Restarts After Seven-Week Hiatus
Multiple security researchers note the return of an email campaign attempting to spread the malware, which is often used to drop the Ryuk ransomware and Trickbot banking Trojan.22 December 2020
Microsoft Ups Security of Azure AD, Identity
A roundup of Microsoft's recent security news and updates that focus on protecting identity.22 December 2020
Holiday Puppy Swindle Has Consumers Howling

22 December 2020
Test

22 December 2020
5 Email Threat Predictions for 2021

22 December 2020
Prepare to Fight Upcoming Cyber-Threat Innovations
Cybercriminals are preparing to use computing performance innovations to launch new types of attacks.22 December 2020
Law Enforcement Disrupts VPN Services Enabling Cybercrime
The United States and international partners shut down three bulletproof hosting services used to facilitate criminal activity.22 December 2020
Tech Giants Lend WhatsApp Support in Spyware Case Against NSO Group

22 December 2020
Joker’s Stash Carding Site Taken Down, for Now

22 December 2020
Security as Code: How Repeatable Policy-Driven Deployment Improves Security
The SaC approach lets users codify and enforce a secure state of application configuration deployment that limits risk.22 December 2020
Patrick Wardle on Hackers Leveraging ‘Powerful’ iOS Bugs in High-Level Attacks

22 December 2020