Cybersecurity News
Microsoft Office 365 Accounts a Big Target for Attackers
Just as they did with PowerShell for Windows, threat actors are abusing native O365 capabilities for lateral movement, command-and-control communication, and other malicious activity.15 October 2020
Barnes & Noble confirms cyberattack, suspected customer data breach
The bookseller’s security incident also impacted Nook services.15 October 2020
Microsoft rolls out new Edge extensions API but promises to leave ad blockers alone
Feared "Manifest V3" changes now available in Edge beta and stable releases.14 October 2020
Travelex, Other Orgs Face DDoS Threats as Extortion Campaign Rages On
Organizations worldwide – including Travelex – have been sent letters threatening to launch DDoS attacks on their network unless a $230K ransom is paid.
14 October 2020
Iranian hackers restart attacks on universities as the new school year begins
This time they hosted phishing servers in Iran, immune to any takedown attempts.14 October 2020
Zoom Announces Rollout of End-to-End Encryption
Phase 1 removes Zoom servers from the key generation and distribution processes.14 October 2020
BEC Attacks: Nigeria No Longer the Epicenter as Losses Top $26B
BEC fraudsters now have bases of operation across at least 39 counties and are responsible for $26 billion in losses annually -- and growing.
14 October 2020
London Borough of Hackney Investigates 'Serious' Cyberattack
London's Hackney Council says some services may be slow or unavailable as it researches a cyberattack affecting services and IT systems.14 October 2020
What's Really Happening in Infosec Hiring Now?
As the pandemic continues, security teams still need help they can't get. But the "skills shortage" is only part of the story.
14 October 2020
Critical SonicWall VPN Portal Bug Allows DoS, Worming RCE
The CVE-2020-5135 stack-based buffer overflow security vulnerability is trivial to exploit, without logging in.
14 October 2020
Assuring Business Continuity by Reducing Malware Dwell Time
Here's how CISOs and IT security operations teams can best address key challenges to network monitoring that could increase malware dwell time.14 October 2020
Silent Librarian Goes Back to School with Global Research-Stealing Effort
The Iranian hacker group is targeting universities in 12 countries.
14 October 2020
Intel's Ice Lake Beefs Up CPU Security for Cloud Workloads
The third-generation Xeon processors build in hardware security features to provide extra protection to data in transit, at rest, and in use.14 October 2020
Zoom to begin testing end-to-end encrypted (E2EE) calls
E2EE calls available starting next week with Zoom technical preview releases.14 October 2020
Zoom to roll out end-to-end encrypted (E2EE) calls
Zoome E2EE calls to be available starting next week.14 October 2020
FIN11 Cybercrime Gang Shifts Tactics to Double-Extortion Ransomware
The Clop ransomware has become a tool of choice for the financially motivated group.
14 October 2020
Intel Adds Memory Encryption, Firmware Security to Ice Lake Chips
Intel's addition of memory encryption to its upcoming 3rd generation Xeon Scalable processors matches AMD's Secure Memory Encryption (SME) feature.
14 October 2020
50,000 home cameras reportedly hacked, footage posted online
Some footage has already appeared on adult sites, with cybercriminals offering lifetime access to the entire loot for US$150
The post 50,000 home cameras reportedly hacked, footage posted online appeared first on WeLiveSecurity
14 October 2020
German authorities raid FinFisher offices
Raids took place last week at 15 locations in Germany and at a connected company in Romania.14 October 2020
NIST Quantum Cryptography Program Nears Completion
The National Institute of Standards and Technology's first post-quantum cryptography standard will address key issues, approaches, an arms race, and the technology's uncertain future.14 October 2020
