---

Fraud Prevention Month: How to protect yourself from scams

ESET Chief Security Evangelist Tony Anscombe sat down with us to share his insights on how to avoid falling prey to online fraud

The post Fraud Prevention Month: How to protect yourself from scams appeared first on WeLiveSecurity

---

Loyalty Cards Targeted in Tesco Clubcard Attack

Around 600,000 of the supermarket's 12 million loyalty program members have been warned about a cyberattack.

---

Cathay Pacific Hit with Fine for Long-Lasting Breach

The breach, which was active for four years, resulted in the theft of personal information on more than 9 million people.

---

3 Ways to Strengthen Your Cyber Defenses

By taking proactive action, organizations can face down threats with greater agility and earned confidence.

---

Voice assistants can be hacked with ultrasonic waves

With access to text messages and the ability to make fraudulent phone calls, attackers could wreak more damage than you'd think

The post Voice assistants can be hacked with ultrasonic waves appeared first on WeLiveSecurity

---

Coronavirus claims another major tech event: Kaspersky’s Security Analyst Summit postponed

Organizers say that it won’t be a “real” SAS without the hugs and clinking of beer glasses.

---

7 Loyalty Program and Rewards App Attacks

The number of attacks targeting loyalty and rewards programs is growing. Here are some of the lowlights.

---

7 Loyalty Program and Rewards App Attacks

The number of attacks targeting loyalty and rewards programs is growing. Here are some of the lowlights.

---

Messaging / Smishing Attacks

Cyber attackers can just as easily trick or fool you in messaging apps as they can in email. Be on the look-out for scams or attacks via apps such as Slack, Skype, WhatsApp or event simple text messaging. The most common clues are tremendous sense of urgency or curioustiy.

---

Let's Encrypt to revoke 3 million certificates on March 4 due to software bug

Let's Encrypt issued 3,048,289 TLS certificates without checking the CAA field for the requesting domain.

---

Cobalt Ulster Strikes Again With New ForeLord Malware

Threatpost talks to Alex Tilley, senior security researcher with Dell SecureWorks' Counter Threat Unit Research Team, about a recently discovered campaign linked to an Iranian APT.

---

Gotta Patch 'Em All? Not Necessarily, Experts Say

When it's impossible to remediate all vulnerabilities in an organization, data can indicate which bugs should be prioritized.

---

Academics find 30 file upload vulnerabilities in 23 web apps, CMSes, and forums

Impacted projects include WordPress, Concrete5, Composr, SilverStripe, ZenCart, and others.

---

Let’s Encrypt to Revoke Millions of TLS Certs

On Wednesday millions of Transport Layer Security certificates will be revoked because of a Certificate Authority Authorization bug.

---

MediaTek Bug Actively Exploited, Affects Millions of Android Devices

An exploit published by a developer is easy to use and has already been used to build malicious apps that gain root access on Android devices.

---

Avoiding the Perils of Electronic Communications

Twitter, Slack, etc., have become undeniably important for business today, but they can cause a lot of damage. That's why an agile communications strategy is so important.

---

With New SOL4Ce Lab, Purdue U. and DoE Set Sights on National Security

The cooperative research initiative brings together faculty and students to "focus on problems and cutting-edge ways to solve them."

---

NSS Labs Revises Endpoint Security Test Model

New product ratings system comes amid growing shift in the testing market toward more "open and transparent" evaluation of security tools.

---

Former Microsoft Software Engineer Convicted of Fraud

The 25-year-old was convicted of 18 charges stemming from illegal access to money stored in online gift cards.

---

Have I Been Pwned No Longer For Sale

Troy Hunt said the popular HIBP will continue to be run as an independent service.