Cybersecurity News
Vulnerability in Wireless Router Chipsets Prompts Advisory
Synopsys issues an advisory for vulnerabilities affecting the chipsets of wireless routers from Qualcomm, Mediatek, and Realtek.29 September 2020
Zerologon Attacks Against Microsoft DCs Snowball in a Week
The attempted compromises, which could allow full control over Active Directory identity services, are flying thick and fast just a week after active exploits of CVE-2020-1472 were first flagged.
29 September 2020
Shifting Left of Left: Why Secure Code Isn't Always Quality Code
Enabling engineers to share responsibility for security and empowering them to erase common vulnerabilities are good starting points.
29 September 2020
The Network Perimeter: This Time, It’s Personal
Botnets and IoT devices are forming a perfect storm for IT staff wrestling with WFH employee security.
29 September 2020
What to Know Before Participating in a PCI SSC RFC
The PCI SSC Request for Comments (RFC) process is an avenue for PCI SSC stakeholders to provide feedback on existing and new PCI security standards and programs. This feedback plays a critical role in the ongoing maintenance and development of these resources for the payment card industry.
29 September 2020
FBI, CISA warn of disinformation campaigns about hacked voting systems
Threat actors may spread false claims about compromised voting systems in order to undermine confidence in the electoral process
The post FBI, CISA warn of disinformation campaigns about hacked voting systems appeared first on WeLiveSecurity
29 September 2020
Microsoft: Some ransomware attacks take less than 45 minutes
Microsoft goes over the recent malware trends in its new "Digital Defense Report."29 September 2020
Las Vegas Students’ Personal Data Leaked, Post-Ransomware Attack
A researcher said he discovered an open data cache with names, grades, birthdates and more, after the Clark County School District refused to pay the ransom.
29 September 2020
State-Sponsored Hacking Groups Increasingly Use Cloud & Open Source Infrastructure
Microsoft shuts down Azure Active Directory instances used by attackers to evade detection and warns that the use of open source tools by espionage groups is growing.29 September 2020
The Shared Irresponsibility Model in the Cloud Is Putting You at Risk
Step up, put the architecture and organization in place, and take responsibility. If you don't, who will?29 September 2020
Telehealth Poll: How Risky Are Remote Doctor Visits?
Threatpost's latest poll probes telehealth security risks and asks for IT cures.
29 September 2020
Nevada school district refuses to submit to ransomware blackmail, hacker publishes student data
Thousands of students have reportedly had their private data released online.29 September 2020
Former Amazon finance manager and family charged with $1.4m insider trading scheme
The charges relate to trading made before Amazon earnings announcements.29 September 2020
QNAP tells NAS users to update firmware to avoid new type of ransomware
AgeLocker ransomware has been seen infecting QNAP NAS systems since June.29 September 2020
911 services down in multiple US states
Most services are now restored. No technical reason for the outage given.28 September 2020
All four of the world's largest shipping companies have now been hit by cyber-attacks
Maritime industry needs to focus more on securing shore-based systems and stop prioritizing the less likely ship-based attacks.28 September 2020
Ivanti Acquires Two Security Companies
Purchase of MobileIron and Pulse Secure announced simultaneously.28 September 2020
Universal Health Services Network Down in Apparent Ransomware Attack
UHS reportedly hit with ransomware that took down its network that supports hundreds of healthcare facilities and hospitals.28 September 2020
Windows 7 ‘Upgrade’ Emails Steal Outlook Credentials
Researchers warn of emails pretending to help business employees upgrade to Windows 10 - and then stealing their Outlook emails and passwords.
28 September 2020
Mac, Linux Users Now Targeted by FinSpy Variants
FinSpy has returned in new campaigns targeting dissident organizations in Egypt - and researchers uncovered new samples of the spyware targeting macOS and Linux users.
28 September 2020