Cybersecurity News
Instagram bug opened a path for hackers to hijack app, turn smartphones into spies
The RCE vulnerability, now patched, took nothing more than an image file to trigger.24 September 2020
Microsoft says it detected active attacks leveraging Zerologon vulnerability
Zerologon patching window is slowly closing as Microsoft warns of attacks in the wild.24 September 2020
New 'Alien' malware can steal passwords from 226 Android apps
Most targets are banking apps, but Alien can also show phishing pages for social, instant messaging, and cryptocurrency apps.24 September 2020
Govt. Services Firm Tyler Technologies Hit in Apparent Ransomware Attack
Tyler Technologies, a Texas-based company that bills itself as the largest provider of software and technology services to the United States public sector, is battling a network intrusion that has disrupted its operations. The company declined to discuss the exact cause of the disruption, but their response so far is straight out of the playbook for responding to ransomware incidents.23 September 2020
Gaming Industry Hit With 10B+ Attacks In Past Two Years

23 September 2020
Zerologon Patches Roll Out Beyond Microsoft

23 September 2020
Shopify's Employee Data Theft Underscores Risk of Rogue Insiders
The e-commerce platform has alerted more than 100 merchants of a data breach, highlighting the danger of malicious insiders.23 September 2020
Google Cloud Debuts Threat-Detection Service
Lockdown economics are driving a threat-intelligence business boom. Chronicle Detect is Google's answer to monitoring so much log data created by the distributed workforce.23 September 2020
Microsoft, Italy, and the Netherlands warn of increased Emotet activity
New alerts about a spike in Emotet activity come after France, Japan, New Zealand issued similar warnings at the start of the month.23 September 2020
India's Cybercrime and APT Operations on the Rise
Growing geopolitical tensions with China in particular are fueling an increase in cyberattacks between the two nations, according to IntSights.23 September 2020
Gamer Credentials Now a Booming, Juicy Target for Hackers

23 September 2020
Microsoft's Azure Defender for IoT Uses CyberX Tech
Azure Defender for IoT is built to help IT and OT teams discover IoT and OT assets, identify critical flaws, and detect malicious behavior.23 September 2020
My Journey Toward SAP Security
When applications are critical to the business's core functions, the CISO and their staff better get the security right.23 September 2020
Making the Case for Medical Device Cybersecurity

23 September 2020
Request for Comments: PCI DSS Version 4.0 Draft Standard
From 23 September to 13 November 2020, PCI SSC stakeholders can participate in a Request for Comments (RFC) on a draft of PCI Data Security Standard Version 4.0 (PCI DSS v4.0 Draft v0.2 for RFC). This is the second RFC for the draft of PCI DSS v4.0. The first RFC was held in late 2019, and feedback received during that RFC has been incorporated into the draft.
23 September 2020
179 arrested in massive dark web bust
The sting is said to be the US Government’s largest operation targeting crime in the internet’s seedy underbelly
The post 179 arrested in massive dark web bust appeared first on WeLiveSecurity
23 September 2020
Critical Industrial Flaws Pose Patching Headache For Manufacturers

23 September 2020
CISA: LokiBot Stealer Storms Into a Resurgence

23 September 2020
OldGremlin Ransomware Group Bedevils Russian Orgs

23 September 2020
FBI, DHS Warn of 'Likely' Disinformation Campaigns About Election Results
Nation-state actors and cybercriminals could wage cyberattacks and spread false information about the integrity of the election results while officials certify the final vote counts.23 September 2020