Cybersecurity News


Most Orgs Would Take Security Bugs Over Ethical Hacking Help

Most Orgs Would Take Security Bugs Over Ethical Hacking Help A new survey suggests that security is becoming more important for enterprises, but they’re still falling back on old "security by obscurity" ways.
10 March 2022

Russia May Use Ransomware Payouts to Avoid Sanctions

Russia May Use Ransomware Payouts to Avoid Sanctions FinCEN warns financial institutions to beware of unusual cryptocurrency payments or illegal transactions Russia may use to evade restrictions imposed due to its invasion of Ukraine.
10 March 2022

Multi-Ransomwared Victims Have It Coming–Podcast

Multi-Ransomwared Victims Have It Coming–Podcast Let's blame the victim. IT decision makers' confidence about security doesn't jibe with their concession that repeated incidents are their own fault, says ExtraHop's Jamie Moles.
10 March 2022

Qakbot Botnet Sprouts Fangs, Injects Malware into Email Threads

Qakbot Botnet Sprouts Fangs, Injects Malware into Email Threads The ever-shifting, ever-more-powerful malware is now hijacking email threads to download malicious DLLs that inject password-stealing code into webpages, among other foul things.
10 March 2022

APT41 Spies Broke Into 6 US State Networks via a Livestock App

APT41 Spies Broke Into 6 US State Networks via a Livestock App The China-affiliated state-sponsored threat actor used Log4j and zero-day bugs in the USAHerds animal-tracking software to hack into multiple government networks.
09 March 2022

Microsoft Patch Tuesday, March 2022 Edition

Microsoft on Tuesday released software updates to plug at least 70 security holes in its Windows operating systems and related software. For the second month running, there are no scary zero-day threats looming for Windows users (that we know of), and relatively few "critical" fixes. And yet we know from experience that attackers are already trying to work out how to turn these patches into a roadmap for exploiting the flaws they fix. Here's a look at the security weaknesses Microsoft says are most likely to be targeted first.
09 March 2022

Most ServiceNow Instances Misconfigured, Exposed

Most ServiceNow Instances Misconfigured, Exposed Customers aren't locking down access correctly, leading to ~70 percent of ServiceNow implementations being vulnerable to malicious data extraction.
09 March 2022

Russian APTs Furiously Phish Ukraine – Google

Russian APTs Furiously Phish Ukraine – Google Also on the rise: DDoS attacks against Ukrainian sites and phishing activity capitalizing on the conflict, with China's Mustang Panda targeting Europe.
09 March 2022

Securing healthcare: An IT health check on the state of the sector

No sector or organization is immune to rapidly escalating cyberthreats, but when it comes to healthcare, the stakes couldn’t be higher

The post Securing healthcare: An IT health check on the state of the sector appeared first on WeLiveSecurity

09 March 2022

Internet Backbone Giant Lumen Shuns .RU

Lumen Technologies, an American company that operates one of the largest Internet backbones and carries a significant percentage of the world's Internet traffic, said today it will stop routing traffic for organizations based in Russia. Lumen's decision comes just days after a similar exit by backbone provider Cogent, and amid a news media crackdown in Russia that has already left millions of Russians in the dark about what is really going on with their president's war in Ukraine.
08 March 2022

Microsoft Addresses 3 Zero-Days & 3 Critical Bugs for March Patch Tuesday

Microsoft Addresses 3 Zero-Days & 3 Critical Bugs for March Patch Tuesday The computing giant patched 71 security vulnerabilities in an uncharacteristically light scheduled update, including its first Xbox bug.
08 March 2022

The Uncertain Future of IT Automation

The Uncertain Future of IT Automation While IT automation is growing, big challenges remain. Chris Hass, director of information security and research at Automox, discusses how the future looks.
08 March 2022

Zero-Click Flaws in Widely Used UPS Devices Threaten Critical Infratructure

Zero-Click Flaws in Widely Used UPS Devices Threaten Critical Infratructure The 'TLStorm' vulnerabilities, found in APC Smart-UPS products, could allow attackers to cause both cyber and physical damage by taking down critical infrastructure.
08 March 2022

Bug in the Linux Kernel Allows Privilege Escalation, Container Escape

Bug in the Linux Kernel Allows Privilege Escalation, Container Escape A missing check allows unprivileged attackers to escape containers and execute arbitrary commands in the kernel.
08 March 2022

Conti Ransomware Group Diaries, Part IV: Cryptocrime

Three stories here last week pored over several years’ worth of internal chat records stolen from the Conti ransomware group, the most profitable ransomware gang in operation today. The candid messages revealed how Conti evaded law enforcement and intelligence agencies, what it was like on a typical day at the Conti office, and how Conti secured the digital weaponry used in their attacks. This final post on the Conti conversations explores different schemes that Conti pursued to invest in and steal cryptocurrencies.
07 March 2022

Novel Attack Turns Amazon Devices Against Themselves

Novel Attack Turns Amazon Devices Against Themselves Researchers have discovered how to remotely manipulate the Amazon Echo through its own speakers.
07 March 2022

Samsung Confirms Lapsus$ Ransomware Hit, Source Code Leak

Samsung Confirms Lapsus$ Ransomware Hit, Source Code Leak The move comes just a week after GPU-maker NVIDIA was hit by Lapsus$ and every employee credential was leaked.
07 March 2022

Nvidia’s Stolen Code-Signing Certs Used to Sign Malware

Nvidia’s Stolen Code-Signing Certs Used to Sign Malware Nvidia certificates are being used to sign malware, enabling malicious programs to pose as legitimate and slide past security safeguards on Windows machines.
07 March 2022

Critical Firefox Zero-Day Bugs Allow RCE, Sandbox Escape

Critical Firefox Zero-Day Bugs Allow RCE, Sandbox Escape Both vulnerabilities are use-after-free issues in Mozilla's popular web browser.
07 March 2022

Cyber‑readiness in the face of an escalated gray zone conflict

Organizations worldwide should remain on high alert for cyberattacks as the risk of major cyber-spillover from the crisis in Ukraine continues to loom large

The post Cyber‑readiness in the face of an escalated gray zone conflict appeared first on WeLiveSecurity

07 March 2022