Cybersecurity News
Firefox on Android: Camera remains active when phone is locked or the user switches apps
Mozilla says it will fix the bug later this year, in October.15 July 2020
Top 5 Questions (and Answers) About GRC Technology
For the first time in a long time, we must shift from managing localized risks against a landscape of economic growth to managing those issues under much less certain circumstances.15 July 2020
Report: CIA received more offensive hacking powers in 2018
In 2018, US President Trump gave the CIA more powers to carry out covert cyber operations resulting in several hacks and data dumps from Iranian and Russian spy agencies.15 July 2020
Report: CIA most likely behind APT34 and FSB hacks and data dumps
In 2018, US President Trump gave the CIA more powers to carry out covert cyber operations resulting in several hacks and data dumps from Iranian and Russian spy agencies.15 July 2020
Report: CIA behind APT34 and FSB hacks and data dumps
In 2018, US President Trump gave the CIA more powers to carry out covert cyber operations resulting in several hacks and data dumps from Iranian and Russian spy agencies.15 July 2020
The TLS 1.2 Deadline is Looming, Do You Have Your Act Together?
Sectors such as Education (47%), Energy (40%), and Public Administration (37%) have struggled to implement TLS 1.2 protocols
15 July 2020
Stay on the Cutting Edge of Mobile Security
Here are some of the mobile-focused Briefings, Trainings, and Arsenal tools that will be explored at Black Hat USA.15 July 2020
Details of 142 million MGM hotel guests selling for US$2,900
It appears that the July 2019 breach at MGM Resorts affected far more people than initially thought
The post Details of 142 million MGM hotel guests selling for US$2,900 appeared first on WeLiveSecurity
15 July 2020
Mobile security threats amid COVID‑19 and beyond: A Q&A with Lukas Stefanko
ESET malware researcher Lukas Stefanko gives us a peek behind the scenes of his analysis of CryCryptor ransomware and puts the threat into a broader context
The post Mobile security threats amid COVID‑19 and beyond: A Q&A with Lukas Stefanko appeared first on WeLiveSecurity
15 July 2020
DevSecOps Requires a Different Approach to Security
Breaking applications into microservices means more difficulty in gaining good visibility into runtime security and performance issues, says startup Traceable.14 July 2020
‘Wormable’ Flaw Leads July Microsoft Patches
Microsoft today released updates to plug a whopping 123 security holes in Windows and related software, including fixes for a critical, "wormable" flaw in Windows Server versions that Microsoft says is likely to be exploited soon. While this particular weakness mainly affects enterprises, July's care package from Redmond has a little something for everyone. So if you're a Windows (ab)user, it's time once again to back up and patch up (preferably in that order).14 July 2020
Microsoft Patches Wormable RCE Flaw in Windows DNS Servers
Patch Tuesday security updates address a critical vulnerability in Windows DNS Servers, which researchers believe is likely to be exploited.14 July 2020
Microsoft Tackles 123 Fixes for July Patch Tuesday
Eighteen critical bugs, impacting Windows Server, Office and Outlook, were fixed as part of the patch roundup.
14 July 2020
Chrome 84 released with support for blocking notification popups on spammy sites
Other new features that shipped with Chrome 84 include a new animations engine and a one-tap system for importing SMS passcodes into Chrome web forms.14 July 2020
Critical DNS Bug Opens Windows Servers to Infrastructure Hijacking
Microsoft gives the ‘wormable’ flaw a security rating of 10 – the most severe warning possible.
14 July 2020
'Make Your Bed' and Other Life Lessons for Security
Follow this advice from a famous military commanders' commencement speech and watch your infosec team soar.14 July 2020
Microsoft July 2020 Patch Tuesday fixes 123 vulnerabilities
This month's patches fix a major wormable bug in the Windows Server DNS component.14 July 2020
SigRed: A 17-year-old 'wormable' vulnerability for hijacking Microsoft Windows Server
The vulnerability, fixed in Microsoft's Patch Tuesday, has been awarded a severity rating of 10.0.14 July 2020
Adobe Discloses Critical Code-Execution Bugs in July Update
The software giant released patches for four critical vulnerabilities and five different platforms.
14 July 2020
Women in Payments: Q&A with Lisa Conroy
Though she didn’t initially set out to prevent crime, when Lisa Conroy was first involved in data security breaches at her company, she became hooked. In this month’s blog series, Conroy explains how she discovered her true calling by accident.
14 July 2020