Cybersecurity News
XDSpy: Stealing government secrets since 2011
ESET researchers uncover a new APT group that has been stealing sensitive documents from several governments in Eastern Europe and the Balkans since 2011
The post XDSpy: Stealing government secrets since 2011 appeared first on WeLiveSecurity
02 October 2020
4G, 5G networks could be vulnerable to exploit due to ‘mishmash’ of old technologies
The decades-old SS7 signaling system is one of numerous protocols exposing 5G networks to abuse.02 October 2020
Kids and Family Members
If you have children visiting or staying with family members (such as grandparents), make sure the family members know your rules concerning technology that your kids must follow. Just because your kids leave the house does not mean the rules about what they can do online change.02 October 2020
Facebook sues two Chrome extension makers for scraping user data
Facebook has sued today the makers of the UpVoice and Ads Feed Chrome extensions.01 October 2020
Singapore Asks Big Cybersecurity Questions to Improve National Defense
An executive from Singapore's Cyber Security Agency examines the role of security in a nation increasingly dependent on technology.01 October 2020
Emotet Emails Strike Thousands of DNC Volunteers
Hundreds of U.S. organizations on Thursday received emails purporting to come from the Democratic National Committee, in a new politically charged Emotet spear-phishing attack.
01 October 2020
New HP Bug Bounty Program Targets Vulns in Printer Cartridges
White-hat hackers will receive $10,000 for each security bug they discover plus a base fee, under this invitation-only initiative.01 October 2020
QR Codes: A Sneaky Security Threat
What to watch out for, and how to protect yourself from malicious versions of these mobile shortcuts.
01 October 2020
US Treasury Warns of Sanctions Violations for Paying Ransomware Attackers
An alarming new advisory issued today by the federal government could upend ransomware response.01 October 2020
CFAA 101: A Computer Fraud & Abuse Act Primer for InfoSec Pros
From WarGames, to Aaron Swartz, to bug bounties, to Van Buren, here's what cybersecurity researchers should know about the US's primary anti-hacking law before it gets its day in the Supreme Court.
01 October 2020
Microsoft Office 365 Phishing Attack Uses Multiple CAPTCHAs
Cybercriminals set up three different CAPTCHAs that Office 365 targets must click through before the final phishing page.
01 October 2020
US Treasury says some ransomware payments may need its express approval
US Treasury says companies paying ransoms to previously-sanctioned cybercrime groups may face sanctions unless it is notified of the payment beforehand.01 October 2020
How a Chinese malware gang defrauded Facebook users of $4 million
SilentFade group utilized a Windows rootkit, browser injections, clever scripting, and a Facebook platform bug to buy and post ads on behalf of hacked users.01 October 2020
'It Won't Happen to Me': Employee Apathy Prevails Despite Greater Cybersecurity Awareness
To protect your organization from all emerging file-borne threats, the security and leadership teams must align to develop a streamlined approach to file security.01 October 2020
NFL, NBA Players Hacked in Would-Be Cyber-Slam-Dunk
Federal prosecutors charged two men with crimes that carry up to 20 years in prison.
01 October 2020
Ransomware Victims That Pay Up Could Incur Steep Fines from Uncle Sam
Companies victimized by ransomware and firms that facilitate negotiations with ransomware extortionists could face steep fines from the U.S. federal government if the crooks who profit from the attack are already under economic sanctions, the Treasury Department warned today.01 October 2020
Russian National Sentenced to 7+ Years for Hacking US Tech Firms
Yevgeniy Nikulin received an 88-month sentence for breaking into LinkedIn, Dropbox, and the now-defunct social platform Formspring.01 October 2020
Spammers Smuggle LokiBot Via URL Obfuscation Tactic
Researchers say that the campaign sidesteps end user detection and security solutions.
01 October 2020
PCI PIN Security in Practice Case Study: First Tech
In this PCI PIN Security Requirements in Practice Case Study, Brazil Regional Engagement Board Member First Tech shares how the knowledge of PCI PIN Security requirements support to assist with the generation of keys in a secure environment.
01 October 2020