Cybersecurity News
Digital Clones Could Cause Problems for Identity Systems
Three fundamental technologies -- chatbots, audio fakes, and deepfake videos -- have improved to the point that creating digital, real-time clones of people is merely a matter of integrating the systems.08 August 2020
DEF CON: New tool brings back 'domain fronting' as 'domain hiding'
After Amazon and Google stopped supporting the censorship-evading domain fronting technique on their clouds in 2018, new Noctilucent toolkit aims to bring it back in a new form as "domain hiding."08 August 2020
Qualcomm Bugs Open 40 Percent of Android Handsets to Attack
Researchers identified serious flaws in Qualcomm’s Snapdragon SoC and the Hexagon architecture that impacts nearly half of Android handsets.
07 August 2020
Reddit Attack Defaces Dozens of Channels
The attack has defaced the channels with images and content supporting Donald Trump.07 August 2020
Hacking the PLC via Its Engineering Software
Researcher will demonstrate at DEF CON an emerging threat to industrial control networks.07 August 2020
Attackers Horn in on MFA Bypass Options for Account Takeovers
Legacy applications don't support modern authentication -- and cybercriminals know this.
07 August 2020
400+ Qualcomm Chip Vulnerabilities Threaten Millions of Android Phones
Security researchers found hundreds of pieces of vulnerable code in the Qualcomm Snapdragon chips powering Android phones.07 August 2020
Have I Been Pwned Set to Go Open-Source
Fully opening the door to allow people to contribute to – and notably, tinker with – the code for the data-breach information service will be an entirely next-level effort, according to founder Troy Hunt.
07 August 2020
Hackers are defacing Reddit with pro-Trump messages
BREAKING: Massive hack hits Reddit.07 August 2020
Researcher Finds New Office Macro Attacks for MacOS
Building successful macro attacks means getting past several layers of security, but a Black Hat speaker found a way through.07 August 2020
BEC Campaigns Target Financial Execs via Office 365
A series of business email compromise campaigns has been targeting executives of more than 1,000 companies, most recently in the US and Canada.07 August 2020
Bulgarian police arrest hacker Instakilla
Hacker accused of hacking and extorting companies, selling stolen data online.07 August 2020
Facebook open-sources one of Instagram's security tools
In the first half of 2020, Pysa detected 44% of all security bugs in Instagram's server-side Python code.07 August 2020
Week in security with Tony Anscombe
ESET highlights new research at Black Hat 2020 – What to if your data was stolen in the Blackbaud breach
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
07 August 2020
IoT Security During COVID-19: What We've Learned & Where We're Going
Vigilance and ongoing training combined with an integrated security framework are key aspects of a successful strategy in the fight against the latest crop of pandemic opportunists.07 August 2020
Hackers Dump 20GB of Intel’s Confidential Data Online
Chipmaker investigates a leak of intellectual property from its partner and customer resource center.
07 August 2020
Augmenting AWS Security Controls
Appropriate use of native security controls in AWS and other CSPs is fundamental to managing cloud risk and avoiding costly breaches.
07 August 2020
Stadeo: Deobfuscating Stantinko and more
We introduce Stadeo – a set of scripts that can help fellow threat researchers and reverse engineers to deobfuscate the code of Stantinko and other malware
The post Stadeo: Deobfuscating Stantinko and more appeared first on WeLiveSecurity
07 August 2020
Canon suffers ransomware attack, Maze claims responsibility
Reports based on an internal memo suggest an external security firm has been hired to investigate.07 August 2020
Magecart group uses homoglyph attacks to fool you into visiting malicious websites
A new campaign is utilizing the Inter kit and favicons to hide skimming activities.07 August 2020