Cybersecurity News
Microsoft Releases Emergency Security Updates for Windows 10, Server
The patches fix two separate RCE bugs in Windows Codecs that allow hackers to exploit playback of multimedia files.
01 July 2020
AT&T dragged to court, again, over SIM hijacking and cryptocurrency theft
A customer allegedly lost $1.9 million due to AT&T’s handling of a number transfer request.01 July 2020
Microsoft releases emergency update to fix two serious Windows flaws
The out-of-band update plugs two remote code execution bugs in the Windows Codecs library, including one rated as critical
The post Microsoft releases emergency update to fix two serious Windows flaws appeared first on WeLiveSecurity
01 July 2020
UK court shuts down scam cryptocurrency platform GPay Ltd, £1.5 million in client funds lost
GPay used fake celebrity endorsements and ads to lure traders to invest.01 July 2020
CEO of exam monitoring software Proctorio apologises for posting student's chat logs on Reddit
Australian students who have raised privacy concerns describe the incident involving a Canadian student as ‘freakishly disrespectful’
The chief executive of an exam monitoring software firm that has raised privacy concerns in Australia has apologised for publicly posting a student’s chat logs during an argument on the website Reddit.
Mike Olsen, who is the CEO of the US-based Proctorio, has since deleted the posts and apologised, saying that he and Proctorio “take privacy very seriously”.
Related: Coalition's university fee overhaul accused of being an 'attack on women'
Related: Dan Tehan’s threat to police university enrolments can’t plug the holes in the Coalition’s logic
Continue reading...01 July 2020
Microsoft releases emergency security update to fix two bugs in Windows codecs
Security updates have been silently deployed to customers on Tuesday through the Windows Store app.30 June 2020
Apple tells app devs to use IPv6 as it's 1.4 times faster than IPv4
Company also urges app devs to start using newer web tech like HTTP/2 and TLS 1.3, citing similar performance and speed improvements.30 June 2020
Ripple20 Threatens Increasingly Connected Medical Devices
A series of IoT vulnerabilities could put hospital networks, medical data, and patient safety at risk.30 June 2020
COVID-19 Puts ICS Security Initiatives 'On Pause'
Security pros concerned that increased remote access to vulnerable operational technology and stalled efforts to harden OT environments puts critical infrastructure at greater risk.30 June 2020
FCC Designates Huawei & ZTE as National Security Threats
Backdoors in 5G network equipment from these vendors could enable espionage and malicious activity, agency says.30 June 2020
Attackers Will Target Critical PAN-OS Flaw, Security Experts Warn
After Palo Alto Networks alerted users to a simple-to-exploit vulnerability in its network security gear, security agencies quickly warn that attackers won't wait to jump on it.30 June 2020
Verizon Media, PayPal, Twitter Top Bug-Bounty Rankings
Verizon Media has paid nearly $10 million to ethical hackers via HackerOne's platform.
30 June 2020
EvilQuest Mac Ransomware Has Keylogger, Crypto Wallet-Stealing Abilities
A rare, new Mac ransomware has been discovered spreading via pirated software packages.
30 June 2020
DDoS Attacks Jump 542% from Q4 2019 to Q1 2020
The shift to remote work and heavy reliance on online services has driven an increase in attacks intended to overwhelm ISPs.30 June 2020
Don't Slow Cybersecurity Spending: Steer into the Skid with a Tight Business Plan
We all know there are slippery conditions ahead, which is why it's never been more important for organizations to maintain and even increase their spending on cybersecurity.30 June 2020
StrongPity APT Back with Kurdish-Aimed Watering Hole Attacks
The spy malware is being delivered via a complex infrastructure with multiple layers, in an effort to avoid analysis.
30 June 2020
CISA Issues Advisory on Home Routers
The increase in work-from-home employees raises the importance of home router security.30 June 2020
UCSF Pays $1.14M After NetWalker Ransomware Attack
UCSF has paid more than $1 million after a ransomware attack encrypted data related to "important" academic research on several servers.
30 June 2020
New EvilQuest ransomware discovered targeting macOS users
EvilQuest ransomware encrypts macOS systems but also installs a keylogger and a reverse shell for full control over infected hosts.30 June 2020
Profile of the Post-Pandemic CISO
Projects that were high priorities before the COVID-19 outbreak have taken a back seat to new business needs. For security leaders that has meant new responsibilities that could very well stick around in the pandemic's aftermath.
30 June 2020