Cybersecurity News


Malware Attacks Declined But Became More Evasive in Q2

Most of the malware used in attacks last quarter were designed to evade signature-based detection tools, WatchGuard says.
24 September 2020

CISA says a hacker breached a federal agency

CISA didn't name the attacker but it published an in-depth incident report detailing the hacker's every step.
24 September 2020

Bluetooth Security Weaknesses Pile Up, While Patching Remains Problematic

Turns out, creating wireless ecosystems for a vast number of different architectures, configurations, and use cases is hard.
24 September 2020

Microsoft removed 18 Azure AD apps used by Chinese state-sponsored hacker group

Azure AD apps were abused by the Gadolinium (APT40) group to attack Microsoft Azure customers.
24 September 2020

Feds Hit with Successful Cyberattack, Data Stolen

Feds Hit with Successful Cyberattack, Data Stolen The attack featured a unique, multistage malware and a likely PulseSecure VPN exploit.
24 September 2020

Cisco Patch-Palooza Tackles 29 High-Severity Bugs

Cisco Patch-Palooza Tackles 29 High-Severity Bugs Patches and workaround fixes address flaws on networking hardware running Cisco IOS XE software.
24 September 2020

Critical Instagram Flaw Could Let Attackers Spy on Victims

A now-patched remote code execution vulnerability could be exploited with a specially sized image file, researchers report.
24 September 2020

Free Apple iPhone 12? Chatbot Scam Spreads Via Texts

Free Apple iPhone 12? Chatbot Scam Spreads Via Texts Convincing SMS messages tell victims that they've been selected for a pre-release trial for the soon-to-be-launched device.
24 September 2020

Solving the Problem With Security Standards

More explicit threat models can make security better and open the door to real and needed innovation.
24 September 2020

Twitter prepares for US election with new security training, penetration tests

Twitter has also rolled out hardware security keys to all employees to prevent social engineering and phishing attacks.
24 September 2020

Microsoft: Attackers Exploiting ‘ZeroLogon’ Windows Flaw

Microsoft warned on Wednesday that malicious hackers are exploiting a particularly dangerous flaw in Windows Server systems that could be used to give attackers the keys to the kingdom inside a vulnerable corporate network. Microsoft's warning comes just days after the U.S. Department of Homeland Security issued an emergency directive instructing all federal agencies to patch the vulnerability by Sept. 21 at the latest.
24 September 2020

CrowdStrike Agrees to Acquire Preempt Security for $96M

CrowdStrike plans to use Preempt Security's conditional access technology to strengthen its Falcon platform.
24 September 2020

CrowdStrike Agrees to Acquire Preemptive Security for $96M

CrowdStrike plans to use Preemptive Security's conditional access technology to strengthen its Falcon platform.
24 September 2020

Microsoft Warns of Attackers Now Exploiting 'Zerologon' Flaw

The Security Intelligence team at Microsoft is tracking newly waged exploits in the wild.
24 September 2020

Ray‑Ban parent company reportedly suffers major ransomware attack

There is no evidence that cybercriminals were also able to steal customer data

The post Ray‑Ban parent company reportedly suffers major ransomware attack appeared first on WeLiveSecurity

24 September 2020

Polish police shut down hacker super-group involved in bomb threats, ransomware, SIM swapping

The hackers also distributed Windows and Android malware, and even ran 50 fake online stores where they defrauded buyers.
24 September 2020

Alien Android Banking Trojan Sidesteps 2FA

Alien Android Banking Trojan Sidesteps 2FA A new 'fork' of the Cerberus banking trojan, called Alien, targets victims' credentials from more than 200 mobile apps, including Bank of America and Microsoft Outlook.
24 September 2020

Since Remote Work Isn't Going Away, Security Should Be the Focus

These three steps will help organizations reduce long-term work-from-home security risks.
24 September 2020

ICO fines profiteering UK firm for touting coronavirus products over spam texts

The UK company sent cold texts offering products “effective against coronavirus.”
24 September 2020

Next-generation police dogs now sniff out your electronics

Drugs and weapons are not the only criminal evidence police dogs are on the hunt for.
24 September 2020