Cybersecurity News


New HP Bug Bounty Program Targets Vulns in Printer Cartridges

White-hat hackers will receive $10,000 for each security bug they discover plus a base fee, under this invitation-only initiative.
01 October 2020

QR Codes: A Sneaky Security Threat

QR Codes: A Sneaky Security Threat What to watch out for, and how to protect yourself from malicious versions of these mobile shortcuts.
01 October 2020

US Treasury Warns of Sanctions Violations for Paying Ransomware Attackers

An alarming new advisory issued today by the federal government could upend ransomware response.
01 October 2020

CFAA 101: A Computer Fraud & Abuse Act Primer for InfoSec Pros

CFAA 101: A Computer Fraud & Abuse Act Primer for InfoSec Pros From WarGames, to Aaron Swartz, to bug bounties, to Van Buren, here's what cybersecurity researchers should know about the US's primary anti-hacking law before it gets its day in the Supreme Court.
01 October 2020

Imperva Agrees to Buy jSonar

The deal is expected to close in mid-October.
01 October 2020

Microsoft Office 365 Phishing Attack Uses Multiple CAPTCHAs

Microsoft Office 365 Phishing Attack Uses Multiple CAPTCHAs Cybercriminals set up three different CAPTCHAs that Office 365 targets must click through before the final phishing page.
01 October 2020

US Treasury says some ransomware payments may need its express approval

US Treasury says companies paying ransoms to previously-sanctioned cybercrime groups may face sanctions unless it is notified of the payment beforehand.
01 October 2020

How a Chinese malware gang defrauded Facebook users of $4 million

SilentFade group utilized a Windows rootkit, browser injections, clever scripting, and a Facebook platform bug to buy and post ads on behalf of hacked users.
01 October 2020

'It Won't Happen to Me': Employee Apathy Prevails Despite Greater Cybersecurity Awareness

To protect your organization from all emerging file-borne threats, the security and leadership teams must align to develop a streamlined approach to file security.
01 October 2020

NFL, NBA Players Hacked in Would-Be Cyber-Slam-Dunk

NFL, NBA Players Hacked in Would-Be Cyber-Slam-Dunk Federal prosecutors charged two men with crimes that carry up to 20 years in prison.
01 October 2020

Ransomware Victims That Pay Up Could Incur Steep Fines from Uncle Sam

Companies victimized by ransomware and firms that facilitate negotiations with ransomware extortionists could face steep fines from the U.S. federal government if the crooks who profit from the attack are already under economic sanctions, the Treasury Department warned today.
01 October 2020

Russian National Sentenced to 7+ Years for Hacking US Tech Firms

Yevgeniy Nikulin received an 88-month sentence for breaking into LinkedIn, Dropbox, and the now-defunct social platform Formspring.
01 October 2020

Spammers Smuggle LokiBot Via URL Obfuscation Tactic

Spammers Smuggle LokiBot Via URL Obfuscation Tactic Researchers say that the campaign sidesteps end user detection and security solutions.
01 October 2020

PCI PIN Security in Practice Case Study: First Tech

 

In this PCI PIN Security Requirements in Practice Case Study, Brazil Regional Engagement Board Member First Tech shares how the knowledge of PCI PIN Security requirements support to assist with the generation of keys in a secure environment.

01 October 2020

Cryptojacking: The Unseen Threat

Cryptojacking: The Unseen Threat Mining malware ebbs and flows with the price of cryptocurrencies, and given the momentum on price is upward, cryptojacking is a very present threat.
01 October 2020

Rise in Remote MacOS Workers Driving Cybersecurity 'Rethink'

With twice as much malware now targeting Macs, IT pros need to scramble to adapt to a large, and likely permanent, work-from-home population, experts say.
01 October 2020

With API attacks rising, Cloudflare launches a free API security tool

Claudflare launches API Shield, a new service to protect web APIs against attacks.
01 October 2020

Imperva acquires database security startup jSonar

jSonar secured a $50 million investment from Goldman Sachs only a few months ago.
01 October 2020

Cyber Security Awareness Month is here!

A month teaching us that when everyone pitches in and does their part, then almost everyone is protected

The post Cyber Security Awareness Month is here! appeared first on WeLiveSecurity

01 October 2020

LATAM financial cybercrime: Competitors‑in‑crime sharing TTPs

ESET researchers discover surprisingly many indicators of close cooperation among Latin American banking trojans’ authors

The post LATAM financial cybercrime: Competitors‑in‑crime sharing TTPs appeared first on WeLiveSecurity

01 October 2020