Cybersecurity News
Microsoft Office 365 Phishing Attack Uses Multiple CAPTCHAs

01 October 2020
US Treasury says some ransomware payments may need its express approval
US Treasury says companies paying ransoms to previously-sanctioned cybercrime groups may face sanctions unless it is notified of the payment beforehand.01 October 2020
How a Chinese malware gang defrauded Facebook users of $4 million
SilentFade group utilized a Windows rootkit, browser injections, clever scripting, and a Facebook platform bug to buy and post ads on behalf of hacked users.01 October 2020
'It Won't Happen to Me': Employee Apathy Prevails Despite Greater Cybersecurity Awareness
To protect your organization from all emerging file-borne threats, the security and leadership teams must align to develop a streamlined approach to file security.01 October 2020
NFL, NBA Players Hacked in Would-Be Cyber-Slam-Dunk

01 October 2020
Ransomware Victims That Pay Up Could Incur Steep Fines from Uncle Sam
Companies victimized by ransomware and firms that facilitate negotiations with ransomware extortionists could face steep fines from the U.S. federal government if the crooks who profit from the attack are already under economic sanctions, the Treasury Department warned today.01 October 2020
Russian National Sentenced to 7+ Years for Hacking US Tech Firms
Yevgeniy Nikulin received an 88-month sentence for breaking into LinkedIn, Dropbox, and the now-defunct social platform Formspring.01 October 2020
Spammers Smuggle LokiBot Via URL Obfuscation Tactic

01 October 2020
PCI PIN Security in Practice Case Study: First Tech
In this PCI PIN Security Requirements in Practice Case Study, Brazil Regional Engagement Board Member First Tech shares how the knowledge of PCI PIN Security requirements support to assist with the generation of keys in a secure environment.
01 October 2020
Cryptojacking: The Unseen Threat

01 October 2020
Rise in Remote MacOS Workers Driving Cybersecurity 'Rethink'
With twice as much malware now targeting Macs, IT pros need to scramble to adapt to a large, and likely permanent, work-from-home population, experts say.01 October 2020
With API attacks rising, Cloudflare launches a free API security tool
Claudflare launches API Shield, a new service to protect web APIs against attacks.01 October 2020
Imperva acquires database security startup jSonar
jSonar secured a $50 million investment from Goldman Sachs only a few months ago.01 October 2020
Cyber Security Awareness Month is here!
A month teaching us that when everyone pitches in and does their part, then almost everyone is protected
The post Cyber Security Awareness Month is here! appeared first on WeLiveSecurity
01 October 2020
LATAM financial cybercrime: Competitors‑in‑crime sharing TTPs
ESET researchers discover surprisingly many indicators of close cooperation among Latin American banking trojans’ authors
The post LATAM financial cybercrime: Competitors‑in‑crime sharing TTPs appeared first on WeLiveSecurity
01 October 2020
InterPlanetary Storm Botnet Infects 13K Mac, Android Devices

01 October 2020
IPStorm botnet expands from Windows to Android, Mac, and Linux
IPStorm botnet quadruples in size to reach 13,500 infected systems.01 October 2020
UK NCSC: Don't disable updates so you can continue using Adobe Flash past its EOL
UK cybersecurity agency warns system administrators not to disable app and browser updates as a way to continue using Flash inside current or legacy enterprise software.01 October 2020
Twitter removes 130 Iranian accounts for trying to disrupt the US Presidential Debate
Twitter says it removed the accounts following a tip from the FBI.30 September 2020
The No Good, Very Bad Week for Iran's Nation-State Hacking Ops
A look at the state of Iran's cyber operations as the US puts the squeeze on it with a pile of indictments and sanctions.30 September 2020