Cybersecurity News
Bugs in Critical Infrastructure Gear Allow Sophisticated Cyberattacks
Security problems in Schneider Electric programmable logic controllers allow compromise of the hardware, responsible for physical plant operations.
12 November 2020
Google patches two new zero‑day flaws in Chrome
The last three weeks have seen a bumper crop of patches for zero-day bugs across software from Google, Apple and Microsoft
The post Google patches two new zero‑day flaws in Chrome appeared first on WeLiveSecurity
12 November 2020
5 Steps Every Company Should Take to Avoid Data Theft Risk
It's never been easier for employees to download company data and take it with them to their next gig.12 November 2020
2 More Google Chrome Zero-Days Under Active Exploitation
Browser users are once again being asked to patch severe vulnerabilities that can lead to remote code execution.
12 November 2020
From Triton to Stuxnet: Preparing for OT Incident Response
Lesley Carhart, with Dragos, gives Threatpost a behind-the-scenes look at how industrial companies are faring during the COVID-19 pandemic - and how they can prepare for future threats.
12 November 2020
Comodo open-sources its EDR solution
OpenEDR, announced in September, is available on GitHub starting this week.12 November 2020
Like the Energizer Bunny, Trickbot Goes On and On
Recent efforts to take down the virulent botnet have been largely -- but not entirely -- successful.12 November 2020
KuCoin CEO says 84% of stolen cryptocurrency has been recovered
Estimates suggest millions of dollars in cryptocurrency could still be outstanding.12 November 2020
New ModPipe malware targets hospitality, hotel point of sale systems
The backdoor has been created to target PoS devices actively used by thousands of hotels and restaurants.12 November 2020
Hungry for data, ModPipe backdoor hits POS software used in hospitality sector
Backdoor authors show deep knowledge of the targeted POS software, decrypting database passwords from Windows registry values
The post Hungry for data, ModPipe backdoor hits POS software used in hospitality sector appeared first on WeLiveSecurity
12 November 2020
We Secured the Election. Now How Do We Secure Trust in Results?
Disinformation campaigns are now designed not only to influence how voters fill out their ballots, but also how confident they are in the entire process. How do legislators, media organizations, security professionals, and voters respond?
12 November 2020
Microsoft urges users to stop using phone-based multi-factor authentication
Microsoft recommends using app-based authenticators and security keys instead.12 November 2020
NSF-Funded Research Aims to Help Disrupt Cybercrime Supply Chains
The National Science Foundation awarded a grant to Georgia State University (GSU) to come up with innovative ways to thwart the supply chains for counterfeiting, loan- and unemployment fraud.11 November 2020
Want to Avoid an Extreme Cyberloss? Focus on the Basics
New analysis of attacks and breaches -- to the tune of more than $20 million in damages and losses of at least 20 million records -- underscores the importance of planning for these events.11 November 2020
Google patches two more Chrome zero-days
Google has now patched five Chrome zero-days in three weeks.11 November 2020
Security Hiring Plans Remain Constant Despite Pandemic
Although we saw workforce gains this year, 56% of businesses surveyed report staff shortages are putting their organization at risk.11 November 2020
3 Tips For Successfully Running Tech Outside the IT Department
When marketing opts for "extra-departmental IT," coordination and communication are required to keep things secured.11 November 2020
Silver Peak SD-WAN Bugs Allow for Network Takeover
Three security vulnerabilities can be chained to enable unauthenticated remote code execution.
11 November 2020
7 Cool Cyberattack and Audit Tools to be Highlighted at Black Hat Europe
Platforms, open source tools, and other toolkits for penetration testers and other security practitioners will be showcased at the early December virtual event.
11 November 2020
Barracuda to Acquire Fyde for Zero-Trust Capabilities
Plans call for expanding the Barracuda CloudGen SASE platform.11 November 2020
