Cybersecurity News


Firefox on Android: Camera remains active when phone is locked or the user switches apps

Mozilla says it will fix the bug later this year, in October.
15 July 2020

Top 5 Questions (and Answers) About GRC Technology

For the first time in a long time, we must shift from managing localized risks against a landscape of economic growth to managing those issues under much less certain circumstances.
15 July 2020

Report: CIA received more offensive hacking powers in 2018

In 2018, US President Trump gave the CIA more powers to carry out covert cyber operations resulting in several hacks and data dumps from Iranian and Russian spy agencies.
15 July 2020

Report: CIA most likely behind APT34 and FSB hacks and data dumps

In 2018, US President Trump gave the CIA more powers to carry out covert cyber operations resulting in several hacks and data dumps from Iranian and Russian spy agencies.
15 July 2020

Report: CIA behind APT34 and FSB hacks and data dumps

In 2018, US President Trump gave the CIA more powers to carry out covert cyber operations resulting in several hacks and data dumps from Iranian and Russian spy agencies.
15 July 2020

The TLS 1.2 Deadline is Looming, Do You Have Your Act Together?

The TLS 1.2 Deadline is Looming, Do You Have Your Act Together? Sectors such as Education (47%), Energy (40%), and Public Administration (37%) have struggled to implement TLS 1.2 protocols
15 July 2020

Stay on the Cutting Edge of Mobile Security

Here are some of the mobile-focused Briefings, Trainings, and Arsenal tools that will be explored at Black Hat USA.
15 July 2020

Details of 142 million MGM hotel guests selling for US$2,900

It appears that the July 2019 breach at MGM Resorts affected far more people than initially thought

The post Details of 142 million MGM hotel guests selling for US$2,900 appeared first on WeLiveSecurity

15 July 2020

Mobile security threats amid COVID‑19 and beyond: A Q&A with Lukas Stefanko

ESET malware researcher Lukas Stefanko gives us a peek behind the scenes of his analysis of CryCryptor ransomware and puts the threat into a broader context

The post Mobile security threats amid COVID‑19 and beyond: A Q&A with Lukas Stefanko appeared first on WeLiveSecurity

15 July 2020

DevSecOps Requires a Different Approach to Security

Breaking applications into microservices means more difficulty in gaining good visibility into runtime security and performance issues, says startup Traceable.
14 July 2020

‘Wormable’ Flaw Leads July Microsoft Patches

Microsoft today released updates to plug a whopping 123 security holes in Windows and related software, including fixes for a critical, "wormable" flaw in Windows Server versions that Microsoft says is likely to be exploited soon. While this particular weakness mainly affects enterprises, July's care package from Redmond has a little something for everyone. So if you're a Windows (ab)user, it's time once again to back up and patch up (preferably in that order).
14 July 2020

Microsoft Patches Wormable RCE Flaw in Windows DNS Servers

Patch Tuesday security updates address a critical vulnerability in Windows DNS Servers, which researchers believe is likely to be exploited.
14 July 2020

Microsoft Tackles 123 Fixes for July Patch Tuesday

Microsoft Tackles 123 Fixes for July Patch Tuesday Eighteen critical bugs, impacting Windows Server, Office and Outlook, were fixed as part of the patch roundup.
14 July 2020

Chrome 84 released with support for blocking notification popups on spammy sites

Other new features that shipped with Chrome 84 include a new animations engine and a one-tap system for importing SMS passcodes into Chrome web forms.
14 July 2020

Critical DNS Bug Opens Windows Servers to Infrastructure Hijacking

Critical DNS Bug Opens Windows Servers to Infrastructure Hijacking Microsoft gives the ‘wormable’ flaw a security rating of 10 – the most severe warning possible.
14 July 2020

'Make Your Bed' and Other Life Lessons for Security

Follow this advice from a famous military commanders' commencement speech and watch your infosec team soar.
14 July 2020

Microsoft July 2020 Patch Tuesday fixes 123 vulnerabilities

This month's patches fix a major wormable bug in the Windows Server DNS component.
14 July 2020

SigRed: A 17-year-old 'wormable' vulnerability for hijacking Microsoft Windows Server

The vulnerability, fixed in Microsoft's Patch Tuesday, has been awarded a severity rating of 10.0.
14 July 2020

Adobe Discloses Critical Code-Execution Bugs in July Update

Adobe Discloses Critical Code-Execution Bugs in July Update The software giant released patches for four critical vulnerabilities and five different platforms.
14 July 2020

Women in Payments: Q&A with Lisa Conroy


Though she didn’t initially set out to prevent crime, when Lisa Conroy was first involved in data security breaches at her company, she became hooked. In this month’s blog series, Conroy explains how she discovered her true calling by accident.

14 July 2020