Cybersecurity News
New HP Bug Bounty Program Targets Vulns in Printer Cartridges
White-hat hackers will receive $10,000 for each security bug they discover plus a base fee, under this invitation-only initiative.01 October 2020
QR Codes: A Sneaky Security Threat
What to watch out for, and how to protect yourself from malicious versions of these mobile shortcuts.
01 October 2020
US Treasury Warns of Sanctions Violations for Paying Ransomware Attackers
An alarming new advisory issued today by the federal government could upend ransomware response.01 October 2020
CFAA 101: A Computer Fraud & Abuse Act Primer for InfoSec Pros
From WarGames, to Aaron Swartz, to bug bounties, to Van Buren, here's what cybersecurity researchers should know about the US's primary anti-hacking law before it gets its day in the Supreme Court.
01 October 2020
Microsoft Office 365 Phishing Attack Uses Multiple CAPTCHAs
Cybercriminals set up three different CAPTCHAs that Office 365 targets must click through before the final phishing page.
01 October 2020
US Treasury says some ransomware payments may need its express approval
US Treasury says companies paying ransoms to previously-sanctioned cybercrime groups may face sanctions unless it is notified of the payment beforehand.01 October 2020
How a Chinese malware gang defrauded Facebook users of $4 million
SilentFade group utilized a Windows rootkit, browser injections, clever scripting, and a Facebook platform bug to buy and post ads on behalf of hacked users.01 October 2020
'It Won't Happen to Me': Employee Apathy Prevails Despite Greater Cybersecurity Awareness
To protect your organization from all emerging file-borne threats, the security and leadership teams must align to develop a streamlined approach to file security.01 October 2020
NFL, NBA Players Hacked in Would-Be Cyber-Slam-Dunk
Federal prosecutors charged two men with crimes that carry up to 20 years in prison.
01 October 2020
Ransomware Victims That Pay Up Could Incur Steep Fines from Uncle Sam
Companies victimized by ransomware and firms that facilitate negotiations with ransomware extortionists could face steep fines from the U.S. federal government if the crooks who profit from the attack are already under economic sanctions, the Treasury Department warned today.01 October 2020
Russian National Sentenced to 7+ Years for Hacking US Tech Firms
Yevgeniy Nikulin received an 88-month sentence for breaking into LinkedIn, Dropbox, and the now-defunct social platform Formspring.01 October 2020
Spammers Smuggle LokiBot Via URL Obfuscation Tactic
Researchers say that the campaign sidesteps end user detection and security solutions.
01 October 2020
PCI PIN Security in Practice Case Study: First Tech
In this PCI PIN Security Requirements in Practice Case Study, Brazil Regional Engagement Board Member First Tech shares how the knowledge of PCI PIN Security requirements support to assist with the generation of keys in a secure environment.
01 October 2020
Cryptojacking: The Unseen Threat
Mining malware ebbs and flows with the price of cryptocurrencies, and given the momentum on price is upward, cryptojacking is a very present threat.
01 October 2020
Rise in Remote MacOS Workers Driving Cybersecurity 'Rethink'
With twice as much malware now targeting Macs, IT pros need to scramble to adapt to a large, and likely permanent, work-from-home population, experts say.01 October 2020
With API attacks rising, Cloudflare launches a free API security tool
Claudflare launches API Shield, a new service to protect web APIs against attacks.01 October 2020
Imperva acquires database security startup jSonar
jSonar secured a $50 million investment from Goldman Sachs only a few months ago.01 October 2020
Cyber Security Awareness Month is here!
A month teaching us that when everyone pitches in and does their part, then almost everyone is protected
The post Cyber Security Awareness Month is here! appeared first on WeLiveSecurity
01 October 2020
LATAM financial cybercrime: Competitors‑in‑crime sharing TTPs
ESET researchers discover surprisingly many indicators of close cooperation among Latin American banking trojans’ authors
The post LATAM financial cybercrime: Competitors‑in‑crime sharing TTPs appeared first on WeLiveSecurity
01 October 2020