Cybersecurity News


Lazarus supply‑chain attack in South Korea

ESET researchers uncover a novel Lazarus supply-chain attack leveraging WIZVERA VeraPort software

The post Lazarus supply‑chain attack in South Korea appeared first on WeLiveSecurity

16 November 2020

Lazarus malware strikes South Korean supply chains

The malware is passing security checks through the abuse of stolen software certificates.
16 November 2020

Scams Ramp Up Ahead of Black Friday Cybercriminal Craze

Scams Ramp Up Ahead of Black Friday Cybercriminal Craze With more online shoppers this year due to COVID-19, cybercriminals are pulling the trigger on new scams ahead of Black Friday and Cyber Monday.
14 November 2020

Apple Issues Security Updates

Vulnerabilities found in three most recent versions of macOS.
13 November 2020

CISA Director Expects to Be Fired Following Secure Election

Top US cybersecurity leader Chris Krebs, who has been vocal about the security of this year's election, expects he'll be removed from his role.
13 November 2020

Amazon Sues Instagram, TikTok Influencers Over Knockoff Scam

Amazon Sues Instagram, TikTok Influencers Over Knockoff Scam 'Order This, Get This': Social-media influencers are in Amazon’s legal crosshairs for promoting generic Amazon listings with the promise to get prohibited counterfeit luxury items instead.
13 November 2020

Botnet Attackers Turn to Vulnerable IoT Devices

Botnet Attackers Turn to Vulnerable IoT Devices Cybercriminals are leveraging the multitudes of vulnerable connected devices with botnets that launch dangerous distributed denial-of-service (DDoS) attacks.
13 November 2020

Three COVID-19 Vaccine-Makers are Under Active Attack

Three COVID-19 Vaccine-Makers are Under Active Attack Three major APTs are involved in ongoing compromises at pharma and clinical organizations involved in COVID-19 research, Microsoft says.
13 November 2020

Self-Service Security for Developers Is the DevSecOps Brass Ring

DevOps teams with full security integration and self-service capabilities are 80% more likely to fix critical vulnerabilities in under a day, according to the ninth annual "State of DevOps Report."
13 November 2020

Ticketmaster Scores Hefty Fine Over 2018 Data Breach

Ticketmaster Scores Hefty Fine Over 2018 Data Breach The events giant faces a GDPR-related penalty in the U.K., and more could follow.
13 November 2020

Credential-Stuffing Attack Hits The North Face

Credential-Stuffing Attack Hits The North Face The North Face has reset an undisclosed number of customer accounts after detecting a credential-stuffing attack on its website.
13 November 2020

Hacker steals $2 million from cryptocurrency service Akropolis

Cryptocurrency borrowing and lending service Akropolis said it suffered a "flash loan" attack.
13 November 2020

Week in security with Tony Anscombe

ESET research uncovers a backdoor targeting POS systems – Why you shouldn't share your Netflix password – Data of millions of hotel guests exposed

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

13 November 2020

The Sameness of Every Day: How to Change Up Audit Fatigue

And with more data compliance laws on the way, audit fatigue could be a real challenge for infosec professionals.
13 November 2020

A Hacker's Holiday: How Retailers Can Avoid Black Friday Cyber Threats

Starting on Nov. 27, online retailers of all sizes will find out if their e-commerce capabilities are ready for prime time or not.
13 November 2020

Microsoft says three APTs have targeted seven COVID-19 vaccine makers

The three state-sponsored hacker groups (APTs) are Russia's Strontium (Fancy Bear) and North Korea's Zinc (Lazarus Group) and Cerium.
13 November 2020

Report: CISA Chief Expects White House to Fire Him

Report: CISA Chief Expects White House to Fire Him Chris Krebs, the first and current director of the CISA, said his protection of election process drew ire from Trump administration.
13 November 2020

Cybersecurity careers: Which one is right for you?

Looking for vulnerabilities, securing systems or dismantling them, these are all viable career paths in the cybersecurity industry. Could one of them be right for you?

The post Cybersecurity careers: Which one is right for you? appeared first on WeLiveSecurity

13 November 2020

Chainalysis launches program to manage cryptocurrency seized by law enforcement

The program will monitor and store virtual coins confiscated in criminal cases.
13 November 2020

Amazon files lawsuit against Instagram, TikTok influencers over 'dupe' sales scam

The company claims influencers worked together to promote fake products listed on Amazon’s platform.
13 November 2020