1. Nmap Online
  2. Cybersecurity News

Cybersecurity News

Voice Phishers Targeting Corporate VPNs

The COVID-19 epidemic has brought a wave of email phishing attacks that try to trick work-at-home employees into giving away credentials needed to remotely access their employers' networks. But one increasingly brazen group of crooks is taking your standard phishing attack to the next level, marketing a voice phishing service that uses a combination of one-on-one phone calls and custom phishing sites to steal VPN credentials from employees.
19 August 2020

WannaRen ransomware author contacts security firm to share decryption key

A major ransomware outbreak hit China back in April.
19 August 2020

Airline DMARC Policies Lag, Opening Flyers to Email Fraud

Airline DMARC Policies Lag, Opening Flyers to Email Fraud Up to 61 percent out of the IATA (International Air Transport Association) airline members do not have a published DMARC record.
19 August 2020

The Sounds a Key Make Can Produce 3D-Printed Replica

The Sounds a Key Make Can Produce 3D-Printed Replica Researchers reveal technology called SpiKey that can ‘listen’ to the clicks a key makes in a lock and create a duplicate from the sounds.
19 August 2020

Facebook sued over fact-check messages on anti-vaccination posts

The CHD claims Facebook is “censoring truthful public health posts.”
19 August 2020

New FritzFrog P2P botnet has breached at least 500 enterprise, government servers

The botnet kills off competing processes on Linux systems before mining cryptocurrency.
19 August 2020

How to prepare and protect your digital legacy

It's never too soon to plan for what will happen to your digital presence after you pass away

The post How to prepare and protect your digital legacy appeared first on WeLiveSecurity

19 August 2020

Some email clients are vulnerable to attacks via 'mailto' links

GNOME Evolution, KDE KMail, IBM/HCL Notes, and older versions of Thunderbird found to be vulnerable.
18 August 2020

Ransomware Attack on Carnival May Have Been Its Second Compromise This Year

Ransomware Attack on Carnival May Have Been Its Second Compromise This Year Security vendor Prevailion says it observed signs of malicious activity on the cruise operator's network between at least February and June.
18 August 2020

Canadian Government Issues Statement on Credential-Stuffing Attacks

The government is responding to threats targeting the GCKey service and CRA accounts, which are used to access federal services.
18 August 2020

New Campaign Combines Extortion, DDoS

Latest attacks bank on the reputation of two prominent APT groups to increase the threat credibility.
18 August 2020

Researchers Warn of Active Malware Campaign Using HTML Smuggling

Researchers Warn of Active Malware Campaign Using HTML Smuggling A recently uncovered, active campaign called "Duri" makes use of HTML smuggling to deliver malware.
18 August 2020

Four Ways to Mitigate Supply Chain Security Risks From Ripple20

Enterprises can significantly alleviate current and long-standing third-party risk by using tactical and strategic efforts to assess and manage them.
18 August 2020

New 'Duri' Campaign Uses HTML Smuggling to Deliver Malware

Researchers who detected the attack explain what businesses should know about the HTML smuggling technique.
18 August 2020

Large Orgs Plagued with Bugs, Face Giant Patch Backlogs

Large Orgs Plagued with Bugs, Face Giant Patch Backlogs Vulnerability management continues to challenge businesses, as they face tens of thousands of bugs with every scan.
18 August 2020

Ritz London clients scammed after apparent data breach

Armed with personal data stolen from the hotel's dining reservation system, fraudsters trick guests into handing over their credit card details

The post Ritz London clients scammed after apparent data breach appeared first on WeLiveSecurity

18 August 2020

How to Stay Secure on GitHub

How to Stay Secure on GitHub GitHub, used badly, can be a source of more vulnerabilities than successful collaborations. Here are ways to keep your development team from getting burned on GitHub.
18 August 2020

AWS Cryptojacking Worm Spreads Through the Cloud

AWS Cryptojacking Worm Spreads Through the Cloud The malware harvests AWS credentials and installs Monero cryptominers.
18 August 2020

Why Quality & Security Both Matter in Software

It's time to position quality and security as equals under the metric of software integrity.
18 August 2020

Make a Difference: Serve on the 2021-2022 PCI SSC Board of Advisors

Make a Difference: Serve on the 2021-2022 PCI SSC Board of Advisors


Every two years, PCI Security Standards Council asks its Participating Organizations to elect its next Board of Advisors. In this election by peers, companies have an opportunity to nominate candidates that they believe will best represent the interests of their organization, industry sector or region. As we enter the fall of 2020, it is election season once again and we begin the process of determining who will serve on the 2021-2022 PCI SSC Board of Advisors.

18 August 2020