Cybersecurity News
Malicious Domain in SolarWinds Hack Turned into ‘Killswitch’
A key malicious domain name used to control potentially thousands of computer systems compromised via the months-long breach at network monitoring software vendor SolarWinds was commandeered by security experts and used as a "killswitch" designed to turn the sprawling cybercrime operation against itself, KrebsOnSecurity has learned.Ryuk, Egregor Ransomware Attacks Leverage SystemBC Backdoor
In the past few months researchers have detected hundreds of attempted SystemBC deployments globally, as part of recent Ryuk and Egregor ransomware attacks.
Outing of FSB hit squad highlights Russia's data security problem
Analysis: trade in stolen data is a boon for investigators and a headache for Kremlin
In early 2019, the journalist Andrei Zakharov managed to buy his own phone and banking records in a groundbreaking investigation into Russia’s thriving markets in stolen personal data, in which law enforcement and telecoms employees can be contracted anonymously to dip into their systems and pull out sensitive details on anyone.
A year and a half later, investigators from Bellingcat and the Insider used some of the same tools and clever analysis to out a secret FSB team that had been tasked with killing Alexei Navalny using a novichok nerve agent.
Related: Russian FSB hit squad poisoned Alexei Navalny, report says
Related: 'We got really lucky': how novichok suspects' identities were revealed
Continue reading...The SolarWinds Perfect Storm: Default Password, Access Sales and More
Meanwhile, Microsoft and other vendors are quickly moving to block the Sunburst backdoor used in the attack.
Patching Still Poses Problems for Industrial Controllers, Networking Devices
More than 90% of devices that run the popular VxWorks embedded operating system remain vulnerable to critical flaws disclosed more than a year ago.Sextortionist Campaign Targets iOS, Android Users with New Spyware
Goontact lures users of illicit sites through Telegram and other secure messaging apps and steals their information for future fraudulent use.
Why Secure Email Gateways Rewrite Links (and Why They Shouldn't)
Redirecting a user to a trusted server buys a secure email gateway company some time while it decides whether a URL is malicious -- but there are avoidable drawbacks to this approach.
SSO and MFA Are Only Half Your Identity Governance Strategy
We need better ways to manage user identities for accessing applications, especially given the strain it places on overworked IT and security teams.FICO launches cryptocurrency trade risk solution for banks
The software will bring crypto risk assessment to KYC processes.Cybersecurity Advent calendar: Stay close to one another… Safely!
This year, many of us will be celebrating Christmas with our loved ones virtually, however we shouldn’t underestimate the value of securing our online communication.
The post Cybersecurity Advent calendar: Stay close to one another… Safely! appeared first on WeLiveSecurity
New Goontact spyware discovered targeting Android and iOS users
Most Goontact-laced apps are targeting Asian users in Chinese speaking countries, Korea, and Japan.SolarWinds said no other products were compromised in recent hack
SolarWinds has released today updates that "replaces the compromised component" in its Orion platform.Microsoft to quarantine SolarWinds apps linked to recent hack starting tomorrow
After only showing detection alerts, Microsoft moves to block trojanized SolarWinds apps from running, opening the door for some IT issues for some of its customers.Concerns Run High as More Details of SolarWinds Hack Emerge
Enterprises running company's Orion network management software should assume compromise and respond accordingly, security experts say.Twitter Fined in Irish GDPR Action
The $547K fine results from an issue Twitter reported in 2019.Subway Sandwich Loyalty-Card Users Suffer Ham-Handed Phishing Scam
Subway loyalty program members in U.K. and Ireland have been sent scam emails to trick them into downloading malware.
Easy WP SMTP Security Bug Can Reveal Admin Credentials
A poorly configured file opens users up to site takeover.
Gitpaste-12 Worm Widens Set of Exploits in New Attacks
The worm returned in recent attacks against web applications, IP cameras and routers.
Firefox Patches Critical Mystery Bug, Also Impacting Google Chrome
Mozilla Foundation releases Firefox 84 browser, fixing several flaws and delivering performance gains and Apple processor support.