Cybersecurity News
Popular password manager in the spotlight over web trackers
While the trackers in LastPass’ Android app don’t collect any personal data, the news may not sit well with some privacy-minded users
The post Popular password manager in the spotlight over web trackers appeared first on WeLiveSecurity
01 March 2021
Firewall Vendor Patches Critical Auth Bypass Flaw
Cybersecurity firm Genua fixes a critical flaw in its GenuGate High Resistance Firewall, allowing attackers to log in as root users.
01 March 2021
Cybercrime 'Help Wanted': Job Hunting on the Dark Web
How's your 'Probiv'? How about customer service? Here's how Dark Web forums connect cybercriminals looking for talent with those looking for work -- and which skills are hot right now.
01 March 2021
Building a Next-Generation SOC Starts With Holistic Operations
The proper template for a modernized SOC team is one that operates seamlessly across domains with a singular, end-to-end view.01 March 2021
How Criminals Job Hunt on the Dark Web
How's your 'Probiv'? How about customer service? Here's how Dark Web forums connect cybercriminals looking for talent with those looking for work -- and which skills are hot right now.
01 March 2021
Hackers exploit websites to give them excellent SEO before deploying malware
Climbing up Google’s ranks is key to this new technique.01 March 2021
Tether faces 500 Bitcoin ransom: We are ‘not paying’
The cryptocurrency firm says “forged” documents attempting to undermine the ecosystem as a whole are also circulating.01 March 2021
Judge approves $650m settlement for Facebook users in privacy, biometrics lawsuit
Facebook users represented in the lawsuit may soon receive hundreds of dollars each.01 March 2021
Minion privilege escalation exploit patched in SaltStack Salt project
The bug permitted attackers to perform privilege escalation attacks in the automation software.01 March 2021
Businessman charged with intent to steal General Electric’s secret silicon technology
Trade secrets worth millions on the market were the goal of the conspiracy.01 March 2021
Amazon Dismisses Claims Alexa ‘Skills’ Can Bypass Security Vetting Process
Researchers found a number of privacy and security issues in Amazon's Alexa skill vetting process, which could lead to attackers stealing data or launching phishing attacks.
26 February 2021
Stalkerware Volumes Remain Concerningly High, Despite Bans
COVID-19 impacted volumes for the year, but the U.S. moved into third place on the list of countries most infected by stalkerware.
26 February 2021
NSA Releases Guidance on Zero-Trust Architecture
A new document provides guidance for businesses planning to implement a zero-trust system management strategy.26 February 2021
Lazarus Targets Defense Companies with ThreatNeedle Malware
A spear-phishing campaigned linked to a North Korean APT uses “NukeSped” malware in cyberespionage attacks against defense companies.
26 February 2021
The Edge Pro Tip: Fasten Your Seatbelts
An unprecedented 2020 has shaken up security leaders' usual list of must-have technologies for 2021. Where do they plan to spend next?
26 February 2021
Chrome will soon try HTTPS first when you type an incomplete URL
If users type an URL and they forget to add the HTTP or HTTPS prefix, Chrome will soon use HTTPS by default.26 February 2021
Securing Super Bowl LV
A peek at open XDR technology, and defense that held up better than the Kansas City Chiefs.
26 February 2021
Yeezy Fans Face Sneaker-Bot Armies for Boost ‘Sun’ Release
Sneaker bots ready to scoop up the new Yeezy Boost 700 “Sun” shoes to resell at a huge markup.
26 February 2021
Attackers Turn Struggling Software Projects Into Trojan Horses
While access to compromised systems has become an increasingly common service, some cybercriminals are going straight to the source: buying code bases and then updating the application with malicious code.26 February 2021