Cybersecurity News


Zoom Brings Two-Factor Authentication to All Users

This marks the latest step Zoom has taken to improve user security as more employees work from home.
10 September 2020

Microsoft confirms Chinese, Iranian, and Russian cyber-attacks on Biden and Trump campaigns

Microsoft said the "majority of these attacks" were detected and blocked.
10 September 2020

Think You're Spending Enough on Security?

Think You're Spending Enough on Security? While the amount will vary from organization to organization, here are four ways for everyone to evaluate whether they're allocating the right amount of money and resources.
10 September 2020

Portland passes the strictest facial recognition technology ban in the US yet 

Oregon’s largest city aims to be a trailblazer when it comes to facial recognition legislation .

The post Portland passes the strictest facial recognition technology ban in the US yet  appeared first on WeLiveSecurity

10 September 2020

Managed IT Providers: The Cyber-Threat Actors' Gateway to SMBs

Criminals have made MSPs a big target of their attacks. That should concern small and midsize businesses a great deal.
10 September 2020

Bluetooth Bug Opens Devices to Man-in-the-Middle Attacks

Bluetooth Bug Opens Devices to Man-in-the-Middle Attacks The "BLURtooth" flaw allows attackers within wireless range to bypass authentication keys and snoop on devices utilizing implementations of Bluetooth 4.0 through 5.0.
10 September 2020

NIST and PCI SSC Find Common Ground in Development of Software Frameworks


The National Institute of Standards and Technology (NIST) and the PCI Security Standards Council (PCI SSC) have recently announced complementary frameworks for secure software development. There are numerous mature, secure software lifecycle management methodologies and frameworks available that, when properly implemented and maintained, can produce secure software.

10 September 2020

Ransomware And Zoom-Bombing: Cyberattacks Disrupt Back-to-School Plans

Ransomware And Zoom-Bombing: Cyberattacks Disrupt Back-to-School Plans Cyberattacks have caused several school systems to delay students' first day back - and experts warn that new COVID-related delays could be the new "snow days."
10 September 2020

Ripple20 Malware Highlights Industrial Security Challenges

Poor security practices allowed software vulnerabilities to propagate throughout industrial and IoT products for more than 20 years.
10 September 2020

Govt.-Backed Contact-Tracing Apps Raise Privacy Hackles

Govt.-Backed Contact-Tracing Apps Raise Privacy Hackles New opt-in COVID-19 Exposure Notifications Express systems baked into Apple’s iOS and available on Android need privacy guardrails, say privacy advocates.
10 September 2020

Product Overview: Cynet Takes Cyber Threat Protection Automation to the Next Level with Incident Engine

Product Overview: Cynet Takes Cyber Threat Protection Automation to the Next Level with Incident Engine The Cynet 360 platform is built on three pillars; Extended Detection and Response (XDR), Response Automation, and Managed Detection and Response (MDR).
10 September 2020

Ransomware accounted for 41% of all cyber insurance claims in H1 2020

Cyber insurance claims ranged in size from $1,000 to well over $2,000,000 per security incident.
10 September 2020

Secureworks acquires vulnerability management platform Delve

Delve’s SaaS solution will join the Secureworks portfolio.
10 September 2020

New CDRThief malware targets VoIP softswitches to steal call detail records

Malware targets only two very specific softswitches (software switches): Linknat VOS2009 and VOS3000.
10 September 2020

Privacy concerns prompt Irish regulators to ask Facebook to stop sending EU user data to the US

A preliminary order brings to light concerns over US surveillance activities.
10 September 2020

Who is calling? CDRThief targets Linux VoIP softswitches

ESET researchers have discovered and analyzed malware that targets Voice over IP (VoIP) softswitches.

The post Who is calling? CDRThief targets Linux VoIP softswitches appeared first on WeLiveSecurity

10 September 2020

CDRThief Malware Targets VoIP Gear in Carrier Networks

CDRThief Malware Targets VoIP Gear in Carrier Networks The Linux-targeted code can steal phone-call metadata, likely in spy campaigns or for use in VoIP fraud.
10 September 2020

Data center giant Equinix discloses ransomware incident

Equinix says ransomware hit internal systems but that data centers are OK.
10 September 2020

ProLock ransomware - everything you need to know

New strain joins the big players on the ransomware scene.
10 September 2020

Slovak cryptocurrency exchange ETERBASE discloses $5.4 million hack

Bitcoin, Ether, ALGO, Ripple, Tezos, and TRON assets were stolen in the hack.
09 September 2020