Cybersecurity News
Google Cloud Unveils 'Confidential VMs' to Protect Data in Use
Confidential Virtual Machines, now in beta, will let Google Cloud customers keep data encrypted while it's in use.14 July 2020
DMARC Adoption Spikes, Higher Ed Remains Behind
As colleges and universities prepare for the fall semester, email protections against surging threats like BEC and phishing are lagging.
14 July 2020
Critical Vulnerability Hits SAP Enterprise Applications
RECON could allow an unauthenticated attacker to take control of SAP enterprise applications through the web interface.14 July 2020
Crypto-Primer: Encryption Basics Every Security Pro Should Know
With so many choices for encrypting data and communication, it's important to know the pros and cons of different techniques.14 July 2020
New Mirai Variant Surfaces With Exploits for 9 Vulnerabilities Products
Impacted products include routers, IP cameras, DVRs, and smart TVs.14 July 2020
Leaked Details of 142 Million MGM Hotel Guests Found for Sale Online
Scope of last summer’s data leak at the hotel chain appears to be far more expansive than previously thought.
14 July 2020
Most Companies Are Ignoring Your Most Vulnerable Endpoint…and It’s Not the Laptop
Cybercriminals know that mobile devices are less secure, so it’s no surprise that last year Verizon found that 4 in 10 companies were breached through a mobile device.
14 July 2020
Get Cutting-Edge Healthcare Cybersecurity Insights at Black Hat USA
Bad actors are on the lookout for ways to attack healthcare organizations, so it's important for cybersecurity pros to stay informed about the latest trends and threats in the industry.14 July 2020
Leaked Details of 142 Million MGM Hotel Guests Found for Sale on Dark Web
Last summer’s data leak at the hotel chain appears to be far more expansive than previously thought -- or the credentials could come from a hack of DataViper.
14 July 2020
99% of Websites at Risk of Attack Via JavaScript Plug-ins
The average website includes content from 32 different third-party JavaScript programs, new study finds.14 July 2020
EFF’s new database reveals what tech local police are using to spy on you
An interactive map shows you everything from Ring partnerships to predictive policing.14 July 2020
Welcome Chat as a secure messaging app? Nothing could be further from the truth
ESET research uncovers a malicious operation that both spies on victims and leaks their data
The post Welcome Chat as a secure messaging app? Nothing could be further from the truth appeared first on WeLiveSecurity
14 July 2020
Critical SAP Bug Allows Full Enterprise System Takeover
Exploitation of the bug can allow an attacker to lift sensitive information, delete files, execute code, carry out sabotage and more.
14 July 2020
RECON bug lets hackers create admin accounts on SAP servers
SAP patches bug impacting most of its apps and customer base.13 July 2020
A hacker is selling details of 142 million MGM hotel guests on the dark web
EXCLUSIVE: The MGM Resorts 2019 data breach is much larger than initially reported.13 July 2020
Breached Data Indexer ‘Data Viper’ Hacked
Data Viper, a security startup that provides access to some 15 billion usernames, passwords and other information exposed in more than 8,000 website breaches, has itself been hacked and its user database posted online. The hackers also claim they are selling on the dark web roughly 2 billion records Data Viper collated from numerous breaches and data leaks, including data from several companies that likely either do not know they have been hacked or have not yet publicly disclosed an intrusion. The apparent breach at St. Louis, Mo. based Data Viper offers a cautionary and twisted tale of what can happen when security researchers seeking to gather intelligence about illegal activity online get too close to their prey or lose sight of their purported mission. The incident also highlights the often murky area between what's legal and ethical in combating cybercrime.13 July 2020
Zero-Trust Efforts Rise with the Tide of Remote Working
With employees likely to continue to spend much, if not all, of their time working from home, companies are focusing more on technologies to boost the security of their now-distributed workplace.13 July 2020
A Paramedic's Lessons for Cybersecurity Pros
A paramedic turned cybersecurity expert shares his experiences in both fields, highlights their similarities, and explains how they can learn from each other.13 July 2020
Lost in Translation: Serious Flaws Found in ICS Protocol Gateways
These oft-forgotten devices contain serious vulnerabilities that allow attackers to hack OT systems remotely, researchers will reveal at Black Hat USA next month.13 July 2020
Russian Hacker Convicted for Social Network Hacks
The Russian national was convicted of hacking into accounts at LinkedIn, Dropbox, and Formspring.13 July 2020