Cybersecurity News


14% of Android app privacy policies contain contradictions about data collection

An analysis of 11,430 Play Store apps found that 14.2% used a privacy policy with contradicting statements about user data collection practices.
21 January 2020

UK's HMRC tax authority seeks tools to track down cryptocurrency criminals

The project bid could also indicate the desire to monitor the cryptocurrency assets of taxpayers.
21 January 2020

7 Tips for Infosec Pros Considering A Lateral Career Move

7 Tips for Infosec Pros Considering A Lateral Career Move Looking to switch things up but not sure how to do it? Security experts share their advice for switching career paths in the industry.
21 January 2020

Hacker Leaks More Than 500K Telnet Credentials for IoT Devices

Hacker Leaks More Than 500K Telnet Credentials for IoT Devices Bad actor obtained passwords for servers, home routers, and smart devices by scanning internet for devices open to the Telnet port.
21 January 2020

Antivirus vendors push fixes for EFS ransomware attack method

Signature-based software may not be enough to protect Microsoft’s Windows EFS against evolving ransomware families.
21 January 2020

3 ways to browse the web anonymously

Are you looking to hide in plain sight? Here’s a rundown of three options for becoming invisible online

The post 3 ways to browse the web anonymously appeared first on WeLiveSecurity

21 January 2020

3 ways to browse the web anonymously

Are you looking to hide in plain sight? Here’s a rundown of three options for becoming invisible online

The post 3 ways to browse the web anonymously appeared first on WeLiveSecurity

21 January 2020

China-Based Cyber Espionage Group Reportedly Behind Breach at Mitsubishi Electric

Personal data on over 8,100 individuals and confidential business information likely exposed in June 2019 incident.
21 January 2020

When Away

Leaving your seat? Ctrl--Alt--Delete! Make sure you lock your workstation or laptop while you are away from it. On a Mac? Try Control--Shift--Eject/Power.
21 January 2020

DDoS Mitigation Firm Founder Admits to DDoS

A Georgia man who co-founded a service designed to protect companies from crippling distributed denial-of-service (DDoS) attacks has pleaded to paying a DDoS-for-hire service to launch attacks against others.
20 January 2020

How Industry Collaboration Created a Unified PIN Standard


On the blog we discuss a joint collaboration between PCI SSC and ASC X9 to create a unified PIN standard with Troy Leach, Senior Vice President, of the PCI SSC and Steve Stevens, Executive Director of ASC X9.  In response to industry feedback, the Accredited Standards Committee X9 Inc. (ASC X9) and the PCI Security Standards Council (PCI SSC) have recently completed a joint initiative to create one unified PIN Security Standard for payments stakeholders.

20 January 2020

Ubisoft sues operators of four DDoS-for-hire services

Ubisoft delivers on threats it made in September 2019 and goes after website selling DDoS services that were used to launch attacks against Rainbow Six Siege servers.
20 January 2020

Are We Secure Yet? How to Build a 'Post-Breach' Culture

There are many ways to improve your organization's cybersecurity practices, but the most important principle is to start from the top.
20 January 2020

New Internet Explorer zero‑day remains unpatched

You may want to implement a workaround or stop using the browser altogether, at least until Microsoft issues a a fix

The post New Internet Explorer zero‑day remains unpatched appeared first on WeLiveSecurity

20 January 2020

New Internet Explorer zero‑day remains unpatched

You may want to implement a workaround or stop using the browser altogether, at least until Microsoft issues a a fix

The post New Internet Explorer zero‑day remains unpatched appeared first on WeLiveSecurity

20 January 2020

Are We Secure Yet? How to Build a "Post-Breach" Culture

There are many ways to improve your organization's cybersecurity practices, but the most important principle is to start from the top.
20 January 2020

The Y2K Boomerang: InfoSec Lessons Learned from a New Date-Fix Problem

The Y2K Boomerang: InfoSec Lessons Learned from a New Date-Fix Problem We all make assumptions. They rarely turn out well. A new/old date problem offers a lesson in why that's so.
20 January 2020

Mitsubishi Electric discloses security breach, China is main suspect

Mitsubishi Electric says hackers did not obtain sensitive information about defense contracts.
20 January 2020

Betting companies given access to UK gov't information on millions of children

Reports suggest a government database was misused for age verification purposes.
20 January 2020

Citrix rolls out patches for critical ADC vulnerability exploited in the wild

Citrix is racing to develop patches for software builds vulnerable to the severe bug.
20 January 2020