Cybersecurity News
Lazarus supply‑chain attack in South Korea
ESET researchers uncover a novel Lazarus supply-chain attack leveraging WIZVERA VeraPort software
The post Lazarus supply‑chain attack in South Korea appeared first on WeLiveSecurity
16 November 2020
Lazarus malware strikes South Korean supply chains
The malware is passing security checks through the abuse of stolen software certificates.16 November 2020
Scams Ramp Up Ahead of Black Friday Cybercriminal Craze
With more online shoppers this year due to COVID-19, cybercriminals are pulling the trigger on new scams ahead of Black Friday and Cyber Monday.
14 November 2020
Apple Issues Security Updates
Vulnerabilities found in three most recent versions of macOS.13 November 2020
CISA Director Expects to Be Fired Following Secure Election
Top US cybersecurity leader Chris Krebs, who has been vocal about the security of this year's election, expects he'll be removed from his role.13 November 2020
Amazon Sues Instagram, TikTok Influencers Over Knockoff Scam
'Order This, Get This': Social-media influencers are in Amazon’s legal crosshairs for promoting generic Amazon listings with the promise to get prohibited counterfeit luxury items instead.
13 November 2020
Botnet Attackers Turn to Vulnerable IoT Devices
Cybercriminals are leveraging the multitudes of vulnerable connected devices with botnets that launch dangerous distributed denial-of-service (DDoS) attacks.
13 November 2020
Three COVID-19 Vaccine-Makers are Under Active Attack
Three major APTs are involved in ongoing compromises at pharma and clinical organizations involved in COVID-19 research, Microsoft says.
13 November 2020
Self-Service Security for Developers Is the DevSecOps Brass Ring
DevOps teams with full security integration and self-service capabilities are 80% more likely to fix critical vulnerabilities in under a day, according to the ninth annual "State of DevOps Report."13 November 2020
Ticketmaster Scores Hefty Fine Over 2018 Data Breach
The events giant faces a GDPR-related penalty in the U.K., and more could follow.
13 November 2020
Credential-Stuffing Attack Hits The North Face
The North Face has reset an undisclosed number of customer accounts after detecting a credential-stuffing attack on its website.
13 November 2020
Hacker steals $2 million from cryptocurrency service Akropolis
Cryptocurrency borrowing and lending service Akropolis said it suffered a "flash loan" attack.13 November 2020
Week in security with Tony Anscombe
ESET research uncovers a backdoor targeting POS systems – Why you shouldn't share your Netflix password – Data of millions of hotel guests exposed
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
13 November 2020
The Sameness of Every Day: How to Change Up Audit Fatigue
And with more data compliance laws on the way, audit fatigue could be a real challenge for infosec professionals.13 November 2020
A Hacker's Holiday: How Retailers Can Avoid Black Friday Cyber Threats
Starting on Nov. 27, online retailers of all sizes will find out if their e-commerce capabilities are ready for prime time or not.13 November 2020
Microsoft says three APTs have targeted seven COVID-19 vaccine makers
The three state-sponsored hacker groups (APTs) are Russia's Strontium (Fancy Bear) and North Korea's Zinc (Lazarus Group) and Cerium.13 November 2020
Report: CISA Chief Expects White House to Fire Him
Chris Krebs, the first and current director of the CISA, said his protection of election process drew ire from Trump administration.
13 November 2020
Cybersecurity careers: Which one is right for you?
Looking for vulnerabilities, securing systems or dismantling them, these are all viable career paths in the cybersecurity industry. Could one of them be right for you?
The post Cybersecurity careers: Which one is right for you? appeared first on WeLiveSecurity
13 November 2020
Chainalysis launches program to manage cryptocurrency seized by law enforcement
The program will monitor and store virtual coins confiscated in criminal cases.13 November 2020
Amazon files lawsuit against Instagram, TikTok influencers over 'dupe' sales scam
The company claims influencers worked together to promote fake products listed on Amazon’s platform.13 November 2020
