Cybersecurity News


Realistic Patch Management Tips, Post-SolarWinds

Realistic Patch Management Tips, Post-SolarWinds Patch management and testing are different, exactly the same, and completely out of hand. Here are tips from the experts on how to wrangle patches in a time of malicious software updates.
05 March 2021

On International Women's Day 2021, Does the 'Rule of Steve' Still Apply? Yes.

On International Women's Day 2021, gender diversity has improved in cybersecurity, but there is still a long way to go.
05 March 2021

Critics Blast Google’s Aim to Replace Browser Cookie with ‘FLoC’

Critics Blast Google’s Aim to Replace Browser Cookie with ‘FLoC’ EFF worries that the Google's ‘privacy-first” vision for the future may pose new privacy risks.
05 March 2021

Week in security with Tony Anscombe

Four zero-days patched in Microsoft Exchange Server – A tale about an unsophisticated criminal – Web trackers in a password manager app

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

05 March 2021

D-Link, IoT Devices Under Attack By Tor-Based Gafgyt Variant

D-Link, IoT Devices Under Attack By Tor-Based Gafgyt Variant A new variant of the Gafgyt botnet - that's actively targeting vulnerable D-Link and Internet of Things devices - is the first variant of the malware to rely on Tor communications, researchers say.
05 March 2021

Make Sure That Stimulus Check Lands in the Right Bank Account

If you haven't already, it's time to build trust relationships with your financial institutions, using strong security, privacy protections and secure, unique user credentials.
05 March 2021

FTC joins 38 states in takedown of massive charity robocall operation

Over $110 million was taken from victims who believed they were funding veteran, children, and firefighter charities.
05 March 2021

$100 in crypto for a kilo of gold: Scammer pleads guilty to investor fraud

The case brings a new meaning to a cryptocurrency gold rush.
05 March 2021

How ESET’s work on SafetyNet® helps protect children online

For over a decade, ESET and the San Diego Police Foundation have been working together to help keep children safe from online threats

The post How ESET’s work on SafetyNet® helps protect children online appeared first on WeLiveSecurity

05 March 2021

Microsoft Exchange zero-day vulnerabilities exploited in attacks against US local governments

Mandiant says attacks are taking place against a wide array of US targets -- local governments included.
05 March 2021

Cyberattack shuts down online learning at 15 UK schools

The cyberattack also took email, phone, and website communication offline.
05 March 2021

Airline data hack: hundreds of thousands of Star Alliance passengers' details stolen

Airline data hack: hundreds of thousands of Star Alliance passengers' details stolen

IT operator Sita, which serves airlines including Singapore, Lufthansa and United, reports systems breach revealing frequent flyer data

Data on hundreds of thousands of airline passengers around the world has been hacked via a “highly sophisticated” attack on the IT systems operator that serves around 90% of the global aviation industry.

Sita, which serves the Star Alliance of airlines including Singapore Airlines, Lufthansa and United, said on Thursday it had been the victim of a cyber attack leading to a breach of passenger data held on its servers.

Related: Airbus reveals planes sold in last two years will emit over 1bn tonnes of CO2

Continue reading...
05 March 2021

Business Apps Spoofed in 45% of Impersonation Attacks

Business-related applications like those from Microsoft, Zoom, and DocuSign are most often impersonated in brand phishing attacks.
04 March 2021

Healthcare Still Seeing High Level of Attacker Activity

Interest in vaccines is driving all sorts of activity, reports say, from vaccine-specific phishing to growing bot traffic on healthcare sites.
04 March 2021

Microsoft, FireEye Unmask More Malware Linked to SolarWinds Attackers

Microsoft, FireEye Unmask More Malware Linked to SolarWinds Attackers Researchers with Microsoft and FireEye found three new malware families, which they said are used by the threat group behind the SolarWinds attack.
04 March 2021

Microsoft, FireEye Uncover More Malware Used in the SolarWinds Campaign

Newly discovered tools were designed for late-stage use after the attackers had already established a relatively firm presence on a breached network, vendors say.
04 March 2021

Cyberattackers Target Top Russian Cybercrime Forums

Cyberattackers Target Top Russian Cybercrime Forums Elite Russian forums for cybercriminals have been hacked in a string of breaches, leaving hackers edgy and worried about law enforcement.  
04 March 2021

John McAfee Charged in 'Pump & Dump' Cryptocurrency Scheme

Justice officials claim antivirus founder and associate fraudulently promoted altcoins via Twitter.
04 March 2021

Microsoft rushes out fixes for four zero‑day flaws in Exchange Server

At least one vulnerability is being exploited by multiple cyberespionage groups to attacks targets mainly in the US, per ESET telemetry

The post Microsoft rushes out fixes for four zero‑day flaws in Exchange Server appeared first on WeLiveSecurity

04 March 2021

Secure Laptops & the Enterprise of the Future

Secure Laptops & the Enterprise of the Future The enterprise of the future will depend upon organizations' ability to extend the company firewall to everywhere people are working.
04 March 2021