Cybersecurity News
REvil Ransomware Gang Starts Auctioning Victim Data
The criminal group behind the REvil ransomware enterprise has begun auctioning off sensitive data stolen from companies hit by its malicious software. The move marks an escalation in tactics aimed at coercing victims to pay up -- and publicly shaming those don't. But it may also signal that ransomware purveyors are searching for new ways to profit from their crimes as victim businesses struggle just to keep the lights on during the unprecedented economic slowdown caused by the COVID-19 pandemic.02 June 2020
Risk Assessment & the Human Condition
Five lessons the coronavirus pandemic can teach security professionals to better assess, monitor, manage, and mitigate organizational risk.02 June 2020
Two Critical Android Bugs Open Door to RCE
Google and Qualcomm both addressed significant vulnerabilities in their June updates.
02 June 2020
Severe Cisco DoS Flaw Can Cripple Nexus Switches
Cisco has patched a high-severity flaw that could lead to denial-of-service attacks on its Nexus switch lineup.
02 June 2020
REvil ransomware gang launches auction site to sell stolen data
Ransomware gang takes extortion to a whole new level. Threatens to auction Madonna's legal documents in a future auction.02 June 2020
Thycotic Buys Onion ID to Extend PAM Portfolio
The acquisition brings three new products into Thycotic's privileged access management lineup.02 June 2020
Women in Payments: Q&A with Diane Rogerson
Diane Rogerson didn’t choose a career in cybersecurity; rather, it chose her. In this month’s blog series, find out how Rogerson’s transferrable skillsets were more valuable than her subject matter expertise around cybersecurity, and how she thinks other women can be successful in this regard, too.
02 June 2020
Octopus Scanner Sinks Tentacles into GitHub Repositories
At least 26 different open-source code repositories were found to be infected with an unusual attack on the open-source software supply chain.
02 June 2020
Google adds Nest devices to Advanced Protection Program
You can now shore up your smart home security by leveraging Google's top security offering
The post Google adds Nest devices to Advanced Protection Program appeared first on WeLiveSecurity
02 June 2020
Cybersecurity Spending Hits 'Temporary Pause' Amid Pandemic
For now, security teams face freezes in projects and hiring - and budget cuts, security industry analysts say.02 June 2020
Banking on Data Security in a Time of Insecurity
How banks can maintain security and data integrity in the middle of a pandemic.02 June 2020
Apple Jailbreak Zero-Day Gets a Patch
The zero-day vulnerability tracked as CVE-2020-9859 is exploited by the "Uncover" jailbreak tool released last week.
02 June 2020
Podcast: Why Identity Access Management is the New Perimeter
DivvyCloud discusses the changing nature of identity access management (IAM) - and what kind of challenges and opportunities that is creating for businesses.
02 June 2020
G Suite Marketplace primed for a privacy scandal, researchers warn
G Suite apps that have access to Drive and Gmail data found communicating with undisclosed external services.02 June 2020
Amtrak discloses data breach, potential leak of customer account data
The rail service says that customer PII may have been compromised.02 June 2020
VMware Cloud Director vulnerability could lead to hijack of enterprise server infrastructure
The security flaw handed over the keys to enterprise infrastructure.02 June 2020
Data on Indian Mobile Payments App Reportedly Exposed via Open S3 Bucket
Over 7 million records exposed, according to vpnMentor, but app maker says there is no sign of malicious use.01 June 2020
Apple Pays Researcher $100,000 for Critical Vulnerability
Apple has fixed a flaw in the "Sign in with Apple" feature that could have enabled attackers to break into user accounts for third-party services.01 June 2020
White House says security incidents at US federal agencies went down in 2019
US federal agencies reported 28,581 cyber-security incidents in 2019, down by 8% from 31,107 in 2018.01 June 2020
26 IoT Flaws Enable Denial-of-Service Attacks, Privilege Escalation
Research details vulnerabilities in the Zephyr Real Time Operating Systems and MCUboot, both used in IoT devices and sensors.01 June 2020
- 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
- 12
- 13
- 14
- 15
- 16
- 17
- 18
- 19
- 20
- 21
- 22
- 23
- 24
- 25
- 26
- 27
- 28
- 29
- 30
- 31
- 32
- 33
- 34
- 35
- 36
- 37
- 38
- 39
- 40
- 41
- 42
- 43
- 44
- 45
- 46
- 47
- 48
- 49
- 50
- 51
- 52
- 53
- 54
- 55
- 56
- 57
- 58
- 59
- 60
- 61
- 62
- 63
- 64
- 65
- 66
- 67
- 68
- 69
- 70
- 71
- 72
- 73
- 74
- 75
- 76
- 77
- 78
- 79
- 80
- 81
- 82
- 83
- 84
- 85
- 86
- 87
- 88
- 89
- 90
- 91
- 92
- 93
- 94
- 95
- 96
- 97
- 98
- 99
- 100
- 101
- 102
- 103
- 104
- 105
- 106
- 107
- 108
- 109
- 110
- 111
- 112
- 113
- 114
- 115
- 116
- 117
- 118
- 119
- 120
- 121
- 122
- 123
- 124
- 125
- 126
- 127
- 128
- 129
- 130
- 131
- 132
- 133
- 134
- 135
- 136
- 137
- 138
- 139
- 140
- 141
- 142