Cybersecurity News


Chrome 83 arrives with enhanced security and privacy controls

New features include DNS over HTTPS, a Safety Check section and simpler cookie management

The post Chrome 83 arrives with enhanced security and privacy controls appeared first on WeLiveSecurity

21 May 2020

The Need for Compliance in a Post-COVID-19 World

With the current upheaval, business leaders may lose focus and push off implementing security measures, managing risk, and keeping up with compliance requirements. That's a big mistake.
21 May 2020

Most Bluetooth Devices Vulnerable to Impersonation Attacks

Vulnerabilities in the Bluetooth authentication process give attackers a way to insert rogue devices between two securely paired devices, academic researchers find.
21 May 2020

Supreme Court Phish Targets Office 365 Credentials

Supreme Court Phish Targets Office 365 Credentials Cybercriminals are hunting out victims' Office 365 credentials -- by dishing out Supreme court "summons" in a phishing attack.
21 May 2020

Crooks Tap Google Firebase in Fresh Phishing Tactic

Crooks Tap Google Firebase in Fresh Phishing Tactic Cybercriminals are taking advantage of the Google name and the cloud to convince victims into handing over their login details.
21 May 2020

Thousands of Israeli sites defaced with code seeking permission to access users' webcams

The hacks have been linked back to a local Israeli WordPress hosting provider.
21 May 2020

Japan investigates potential leak of prototype missile data in Mitsubishi hack

The country is analyzing how such a leak could impact national security.
21 May 2020

Centralized Contact Tracing Raises Concerns Among Privacy-Conscious Citizens

The long debate over whether encryption and anonymity shield too much criminal behavior also has staged a resurgence.
21 May 2020

No “Game over” for the Winnti Group

The notorious APT group continues to play the video game industry with yet another backdoor

The post No “Game over” for the Winnti Group appeared first on WeLiveSecurity

21 May 2020

Video game developers under siege by cyberattacks seeking to plunder in-game cash

The Winnti Group is targeting gaming vendors once more with a new backdoor.
21 May 2020

BlockFi discloses failed hack attempt after SIM swapping incident

BlockFi says a hacker SIM swapped an employee to gain access to its platform, but the hacker failed in their attempt to steal BlockFi customer funds.
20 May 2020

Hacker selling 40 million user records from popular Wishbone app

Seller claims the data was obtained following a hack that took place earlier this year.
20 May 2020

60% of Insider Threats Involve Employees Planning to Leave

Researchers shows most "flight-risk" employees planning to leave an organization tend to start stealing data two to eight weeks before they go.
20 May 2020

Digital Transformation Risks in Front-end Code

Why making every front-end developer a DevSecOps expert will lead to a more holistic approach to web and native application security.
20 May 2020

NetWalker Ransomware Gang Hunts for Top-Notch Affiliates

NetWalker Ransomware Gang Hunts for Top-Notch Affiliates The operators behind the Toll Group attack are taking applications for technically advanced partners.
20 May 2020

Fraudulent Unemployment, COVID-19 Relief Claims Earn BEC Gang Millions

Fraudulent Unemployment, COVID-19 Relief Claims Earn BEC Gang Millions The business email compromise (BEC) gang Scattered Canary has filed more than 200 fraudulent claims for unemployment benefits and for COVID-19 relief funds.
20 May 2020

Offers to Sell Enterprise Network Access Surge on Dark Web

In contrast, Q1 2019 saw more interest in selling and buying access to individual servers.
20 May 2020

Bank of America blames PPP applications leak on faulty SBA test server

BofA says SBA test platform allowed others to view details for its customers' PPP loan applications.
20 May 2020

Microsoft Warns of Vulnerability Affecting Windows DNS Server

A new security advisory addresses a vulnerability that could be exploited to cause a denial-of-service attack.
20 May 2020

Coronavirus-Themed Phishing Fears Largely Overblown, Researchers Say

As COVID-19-themed spam rises, phishing-not so much. An analysis of newly registered domains finds that only 2.4% are actually phishing sites aiming to steal credentials.
20 May 2020