Cybersecurity News
Morrisons not liable for massive staff data leak, court rules

UK supreme court says retailer not to blame for actions of employee with grudge
The UK’s highest court has ruled that Morrisons should not be held liable for the criminal act of an employee with a grudge who leaked the payroll data of about 100,000 members of staff.
The supermarket group brought a supreme court challenge in an attempt to overturn previous judgments which gave the go-ahead for compensation claims by thousands of employees whose personal details were posted on the internet.
Continue reading...Coronavirus con artists continue to spread infections of their own
The scam machine shows no signs of slowing down, as fraudsters dispense bogus health advice, peddle fake testing kits and issue malware-laced purchase orders
The post Coronavirus con artists continue to spread infections of their own appeared first on WeLiveSecurity
Phish of GoDaddy Employee Jeopardized Escrow.com, Among Others
A spear-phishing attack this week hooked a customer service employee at GoDaddy.com, the world's largest domain name registrar, KrebsOnSecurity has learned. The incident gave the phisher the ability to view and modify key customer records, access that was used to briefly hijack domains for a half-dozen GoDaddy customers, including transaction brokering site escrow.com.Defense Evasion Dominated 2019 Attack Tactics
Researchers mapped tactics and techniques to the MITRE ATT&CK framework to determine which were most popular last year.Watering-Holes Target Asian Ethnic Victims with Flash Update Decoy

FCC tells US telcos to implement caller ID authentication by June 30, 2021
FCC says all US telcos must use the new SHAKEN/STIR protocol to support caller ID authentication by June, next year.Researchers Uncover Unsophisticated - But Creative - Watering-Hole Attack
Holy Water campaign is targeting users of a specific religious and ethnic group in Asia, Kaspersky says.Marriott discloses new data breach impacting 5.2 million hotel guests
Marriott says a hacker gained access to the accounts of two employees.COVID-19: Latest Security News & Commentary

Why Third-Party Risk Management Has Never Been More Important
Given today's coronavirus pandemic, the need for companies to collect cybersecurity data about their business partners is more critical than ever. Here's how to start.Latest Security News & Commentary about COVID-19
Check out Dark Reading's updated, exclusive news and commentary surrounding the coronavirus pandemic.Data from 5.2M Marriott Loyalty Program Members Hit by Breach
The data was breached through the credentials of two franchisee employees.Patching Poses Security Problems with Move to More Remote Work
Security teams were not ready for the wholesale move to remote work and the sudden expansion of the attack surface area, experts say.Zoom Scrutinized As Security Woes Mount

8-Year-Old VelvetSweatshop Bug Resurrected in LimeRAT Campaign

Palo Alto Networks to Buy CloudGenix for $420M
Palo Alto Networks plans to integrate CloudGenix's SD-WAN technology into its Prisma SASE platform following the deal.Millions of Guests Impacted in Marriott Data Breach, Again

Does the 2020 Online Census Account for Security Risk?
Experts discuss the security issues surrounding a census conducted online and explain how COVID-19 could exacerbate the risk.How Much Downtime Can Your Company Handle?
Why every business needs cyber resilience and quick recovery times.Limited-Time Free Offers to Secure the Enterprise Amid COVID-19
