Cybersecurity News
Linux version of RansomEXX ransomware discovered
This marks the first time a major Windows ransomware strain has been ported to Linux to aid hackers in their targeted intrusions.Request for Comments: PCI Card Production v3 Draft Standard
From 2 November to 1 December 2020, PCI SSC stakeholders can participate in a Request for Comments (RFC) on PCI Card Production v3 Draft Standard. Stakeholders can review the primary changes which are summarized in the Card Production and Provisioning Security Requirements v3.0 Summary of Changes document.
Week in security with Tony Anscombe
Could a career in cybersecurity be right for you? – Google discloses a zero-day bug in Windows – Video game maker Capcom suffers a breach
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
Apple patches three actively exploited zero‑day flaws in iOS
The vulnerabilities, which are all being abused for targeted attacks, affect a long list of devices
The post Apple patches three actively exploited zero‑day flaws in iOS appeared first on WeLiveSecurity
How COVID-19 Changed the VC Investment Landscape for Cybersecurity Companies
What trends can startups and investors expect to see going forward?Apple Patches Bugs Tied to Previously Identified Zero-Days
The actively exploited vulnerabilities discovered by Project Zero exist across iPhone, iPad and iPod devices.
Israeli companies targeted with new Pay2Key ransomware
Security firm Check Point reports what appears to be a targeted attack against Israeli companies.Ransomware gangs that steal your data don't always delete it
Coveware: Half of the Q3 2020 ransomware investigations involved data exfiltration, with cases doubling from the previous quarter.US Seizes 27 More IRGC-Controlled Domain Names
The action follows last month's seizure of 92 domain names used by Iran's Islamic Revolutionary Guard Corps to spread disinformation.NSS Labs' Abrupt Shutdown Leaves Many Unanswered Questions
Former execs and employees share some insights into the testing firm's shutdown. What does it mean for the future of security product testing?Bug Bounty Hunters' Pro Tips on Chasing Vulns & Money
From meditation to the right mindset, seasoned vulnerability researchers give their advice on how to maximize bug bounty profits and avoid burnout.
Gaming Giant Capcom Hit By Ragnar Locker Ransomware: Report
The Resident Evil creator reportedly been hit in a ransomware attack that stole 1TB of sensitive data.
Zoom Snooping: How Body Language Can Spill Your Password
Researchers figure out how to read what people are typing during a Zoom call using shoulder movements.
Apple fixes three iOS zero-days exploited in the wild
Apple has patched the three zero-days with today's release of iOS 14.2.Digital Transformation Means Security Must Also Transform
Being successful in this moment requires the ability to evolve in terms of team management, visibility, and crisis management.Cado Security Gets $1.5 Million Seed
The seed funding round was led by Ten Eleven Ventures.Italian beverage vendor Campari knocked offline after ransomware attack
Campari has refused to engage with the ransomware gang and is restoring systems.Online Users Feel Safe, But Risky Behavior Abounds
New research also shows a divide between younger and older users in their security practices, including use of two-factor authentication and how often software updates are performed.Gaming company Capcom hit by cyberattack
The developer of popular video game franchises took swift action to prevent the attack from spreading further across its systems
The post Gaming company Capcom hit by cyberattack appeared first on WeLiveSecurity
Cisco Zero-Day in AnyConnect Secure Mobility Client Remains Unpatched
Cisco also disclosed high-severity vulnerabilities in its Webex and SD-WAN products.