1. Nmap Online
  2. Cybersecurity News

Cybersecurity News

Credential Stuffing Fills E-commerce Pipeline in 2020

There were 1.3 billion attacks in the third quarter alone, according to new analysis from Arkose Labs.
12 November 2020

Animal Jam Hacked, 46M Records Roam the Dark Web

Animal Jam Hacked, 46M Records Roam the Dark Web Animal Jam, just the latest in a string of attacks on gaming apps, has adopted a transparent communications strategy after stolen data turned up on a criminal forum.
12 November 2020

BlackBerry discovers new hacker-for-hire mercenary group

CostaRicto is the fifth hacker-for-hire mercenary group discovered this year.
12 November 2020

New 'CostaRicto' Hack-for-Hire Group Targets Global Businesses

The group of APT mercenaries uses bespoke malware and strong operation security to target a range of organizations, located primarily in Southeast Asia.
12 November 2020

DARPA and Academia Jumpstart 5G IoT Security Efforts

With 5G IoT devices projected to hit 49 million units by 2023, researchers launch programs to keep IoT from becoming a blackhole of exfiltration.
12 November 2020

Digging into the Dark Web: How Security Researchers Learn to Think Like the Bad Guys

Digging into the Dark Web: How Security Researchers Learn to Think Like the Bad Guys Hacker forums are a rich source of threat intelligence.
12 November 2020

Bugs in Critical Infrastructure Gear Allow Sophisticated Cyberattacks

Bugs in Critical Infrastructure Gear Allow Sophisticated Cyberattacks Security problems in Schneider Electric programmable logic controllers allow compromise of the hardware, responsible for physical plant operations.
12 November 2020

Google patches two new zero‑day flaws in Chrome

The last three weeks have seen a bumper crop of patches for zero-day bugs across software from Google, Apple and Microsoft

The post Google patches two new zero‑day flaws in Chrome appeared first on WeLiveSecurity

12 November 2020

5 Steps Every Company Should Take to Avoid Data Theft Risk

It's never been easier for employees to download company data and take it with them to their next gig.
12 November 2020

2 More Google Chrome Zero-Days Under Active Exploitation

2 More Google Chrome Zero-Days Under Active Exploitation Browser users are once again being asked to patch severe vulnerabilities that can lead to remote code execution.
12 November 2020

From Triton to Stuxnet: Preparing for OT Incident Response

From Triton to Stuxnet: Preparing for OT Incident Response Lesley Carhart, with Dragos, gives Threatpost a behind-the-scenes look at how industrial companies are faring during the COVID-19 pandemic - and how they can prepare for future threats.
12 November 2020

Comodo open-sources its EDR solution

OpenEDR, announced in September, is available on GitHub starting this week.
12 November 2020

Like the Energizer Bunny, Trickbot Goes On and On

Recent efforts to take down the virulent botnet have been largely -- but not entirely -- successful.
12 November 2020

KuCoin CEO says 84% of stolen cryptocurrency has been recovered

Estimates suggest millions of dollars in cryptocurrency could still be outstanding.
12 November 2020

New ModPipe malware targets hospitality, hotel point of sale systems

The backdoor has been created to target PoS devices actively used by thousands of hotels and restaurants.
12 November 2020

Hungry for data, ModPipe backdoor hits POS software used in hospitality sector

Backdoor authors show deep knowledge of the targeted POS software, decrypting database passwords from Windows registry values

The post Hungry for data, ModPipe backdoor hits POS software used in hospitality sector appeared first on WeLiveSecurity

12 November 2020

We Secured the Election. Now How Do We Secure Trust in Results?

We Secured the Election. Now How Do We Secure Trust in Results? Disinformation campaigns are now designed not only to influence how voters fill out their ballots, but also how confident they are in the entire process. How do legislators, media organizations, security professionals, and voters respond?
12 November 2020

Microsoft urges users to stop using phone-based multi-factor authentication

Microsoft recommends using app-based authenticators and security keys instead.
12 November 2020

NSF-Funded Research Aims to Help Disrupt Cybercrime Supply Chains

The National Science Foundation awarded a grant to Georgia State University (GSU) to come up with innovative ways to thwart the supply chains for counterfeiting, loan- and unemployment fraud.
11 November 2020

Want to Avoid an Extreme Cyberloss? Focus on the Basics

New analysis of attacks and breaches -- to the tune of more than $20 million in damages and losses of at least 20 million records -- underscores the importance of planning for these events.
11 November 2020