Cybersecurity News


Vulnerability in Wireless Router Chipsets Prompts Advisory

Synopsys issues an advisory for vulnerabilities affecting the chipsets of wireless routers from Qualcomm, Mediatek, and Realtek.
29 September 2020

Zerologon Attacks Against Microsoft DCs Snowball in a Week

Zerologon Attacks Against Microsoft DCs Snowball in a Week The attempted compromises, which could allow full control over Active Directory identity services, are flying thick and fast just a week after active exploits of CVE-2020-1472 were first flagged.
29 September 2020

Shifting Left of Left: Why Secure Code Isn't Always Quality Code

Shifting Left of Left: Why Secure Code Isn't Always Quality Code Enabling engineers to share responsibility for security and empowering them to erase common vulnerabilities are good starting points.
29 September 2020

The Network Perimeter: This Time, It’s Personal

The Network Perimeter: This Time, It’s Personal Botnets and IoT devices are forming a perfect storm for IT staff wrestling with WFH employee security.
29 September 2020

What to Know Before Participating in a PCI SSC RFC

 

The PCI SSC Request for Comments (RFC) process is an avenue for PCI SSC stakeholders to provide feedback on existing and new PCI security standards and programs. This feedback plays a critical role in the ongoing maintenance and development of these resources for the payment card industry.

29 September 2020

FBI, CISA warn of disinformation campaigns about hacked voting systems

Threat actors may spread false claims about compromised voting systems in order to undermine confidence in the electoral process

The post FBI, CISA warn of disinformation campaigns about hacked voting systems appeared first on WeLiveSecurity

29 September 2020

Microsoft: Some ransomware attacks take less than 45 minutes

Microsoft goes over the recent malware trends in its new "Digital Defense Report."
29 September 2020

Las Vegas Students’ Personal Data Leaked, Post-Ransomware Attack

Las Vegas Students’ Personal Data Leaked, Post-Ransomware Attack A researcher said he discovered an open data cache with names, grades, birthdates and more, after the Clark County School District refused to pay the ransom.
29 September 2020

State-Sponsored Hacking Groups Increasingly Use Cloud & Open Source Infrastructure

Microsoft shuts down Azure Active Directory instances used by attackers to evade detection and warns that the use of open source tools by espionage groups is growing.
29 September 2020

The Shared Irresponsibility Model in the Cloud Is Putting You at Risk

Step up, put the architecture and organization in place, and take responsibility. If you don't, who will?
29 September 2020

Telehealth Poll: How Risky Are Remote Doctor Visits?

Telehealth Poll: How Risky Are Remote Doctor Visits? Threatpost's latest poll probes telehealth security risks and asks for IT cures.
29 September 2020

Nevada school district refuses to submit to ransomware blackmail, hacker publishes student data

Thousands of students have reportedly had their private data released online.
29 September 2020

Former Amazon finance manager and family charged with $1.4m insider trading scheme

The charges relate to trading made before Amazon earnings announcements.
29 September 2020

QNAP tells NAS users to update firmware to avoid new type of ransomware

AgeLocker ransomware has been seen infecting QNAP NAS systems since June.
29 September 2020

911 services down in multiple US states

Most services are now restored. No technical reason for the outage given.
28 September 2020

All four of the world's largest shipping companies have now been hit by cyber-attacks

Maritime industry needs to focus more on securing shore-based systems and stop prioritizing the less likely ship-based attacks.
28 September 2020

Ivanti Acquires Two Security Companies

Purchase of MobileIron and Pulse Secure announced simultaneously.
28 September 2020

Universal Health Services Network Down in Apparent Ransomware Attack

UHS reportedly hit with ransomware that took down its network that supports hundreds of healthcare facilities and hospitals.
28 September 2020

Windows 7 ‘Upgrade’ Emails Steal Outlook Credentials

Windows 7 ‘Upgrade’ Emails Steal Outlook Credentials Researchers warn of emails pretending to help business employees upgrade to Windows 10 - and then stealing their Outlook emails and passwords.
28 September 2020

Mac, Linux Users Now Targeted by FinSpy Variants

Mac, Linux Users Now Targeted by FinSpy Variants FinSpy has returned in new campaigns targeting dissident organizations in Egypt - and researchers uncovered new samples of the spyware targeting macOS and Linux users.
28 September 2020