Cybersecurity News


XDSpy: Stealing government secrets since 2011

ESET researchers uncover a new APT group that has been stealing sensitive documents from several governments in Eastern Europe and the Balkans since 2011

The post XDSpy: Stealing government secrets since 2011 appeared first on WeLiveSecurity

02 October 2020

4G, 5G networks could be vulnerable to exploit due to ‘mishmash’ of old technologies

The decades-old SS7 signaling system is one of numerous protocols exposing 5G networks to abuse.
02 October 2020

Kids and Family Members

If you have children visiting or staying with family members (such as grandparents), make sure the family members know your rules concerning technology that your kids must follow. Just because your kids leave the house does not mean the rules about what they can do online change.
02 October 2020

Facebook sues two Chrome extension makers for scraping user data

Facebook has sued today the makers of the UpVoice and Ads Feed Chrome extensions.
01 October 2020

Singapore Asks Big Cybersecurity Questions to Improve National Defense

An executive from Singapore's Cyber Security Agency examines the role of security in a nation increasingly dependent on technology.
01 October 2020

Emotet Emails Strike Thousands of DNC Volunteers

Emotet Emails Strike Thousands of DNC Volunteers Hundreds of U.S. organizations on Thursday received emails purporting to come from the Democratic National Committee, in a new politically charged Emotet spear-phishing attack.
01 October 2020

New HP Bug Bounty Program Targets Vulns in Printer Cartridges

White-hat hackers will receive $10,000 for each security bug they discover plus a base fee, under this invitation-only initiative.
01 October 2020

QR Codes: A Sneaky Security Threat

QR Codes: A Sneaky Security Threat What to watch out for, and how to protect yourself from malicious versions of these mobile shortcuts.
01 October 2020

US Treasury Warns of Sanctions Violations for Paying Ransomware Attackers

An alarming new advisory issued today by the federal government could upend ransomware response.
01 October 2020

CFAA 101: A Computer Fraud & Abuse Act Primer for InfoSec Pros

CFAA 101: A Computer Fraud & Abuse Act Primer for InfoSec Pros From WarGames, to Aaron Swartz, to bug bounties, to Van Buren, here's what cybersecurity researchers should know about the US's primary anti-hacking law before it gets its day in the Supreme Court.
01 October 2020

Imperva Agrees to Buy jSonar

The deal is expected to close in mid-October.
01 October 2020

Microsoft Office 365 Phishing Attack Uses Multiple CAPTCHAs

Microsoft Office 365 Phishing Attack Uses Multiple CAPTCHAs Cybercriminals set up three different CAPTCHAs that Office 365 targets must click through before the final phishing page.
01 October 2020

US Treasury says some ransomware payments may need its express approval

US Treasury says companies paying ransoms to previously-sanctioned cybercrime groups may face sanctions unless it is notified of the payment beforehand.
01 October 2020

How a Chinese malware gang defrauded Facebook users of $4 million

SilentFade group utilized a Windows rootkit, browser injections, clever scripting, and a Facebook platform bug to buy and post ads on behalf of hacked users.
01 October 2020

'It Won't Happen to Me': Employee Apathy Prevails Despite Greater Cybersecurity Awareness

To protect your organization from all emerging file-borne threats, the security and leadership teams must align to develop a streamlined approach to file security.
01 October 2020

NFL, NBA Players Hacked in Would-Be Cyber-Slam-Dunk

NFL, NBA Players Hacked in Would-Be Cyber-Slam-Dunk Federal prosecutors charged two men with crimes that carry up to 20 years in prison.
01 October 2020

Ransomware Victims That Pay Up Could Incur Steep Fines from Uncle Sam

Companies victimized by ransomware and firms that facilitate negotiations with ransomware extortionists could face steep fines from the U.S. federal government if the crooks who profit from the attack are already under economic sanctions, the Treasury Department warned today.
01 October 2020

Russian National Sentenced to 7+ Years for Hacking US Tech Firms

Yevgeniy Nikulin received an 88-month sentence for breaking into LinkedIn, Dropbox, and the now-defunct social platform Formspring.
01 October 2020

Spammers Smuggle LokiBot Via URL Obfuscation Tactic

Spammers Smuggle LokiBot Via URL Obfuscation Tactic Researchers say that the campaign sidesteps end user detection and security solutions.
01 October 2020

PCI PIN Security in Practice Case Study: First Tech

 

In this PCI PIN Security Requirements in Practice Case Study, Brazil Regional Engagement Board Member First Tech shares how the knowledge of PCI PIN Security requirements support to assist with the generation of keys in a secure environment.

01 October 2020