Cybersecurity News
Disinformation Spurs a Thriving Industry as U.S. Election Looms

26 August 2020
With More Use of Cloud, Passwords Become Even Weaker Link
Slow patching provides vulnerabilities to exploit. A lack of network segmentation allows unrestricted lateral movement. Yet a report surveying a year of penetration tests finds that passwords still top the list of what attackers use to compromise systems.26 August 2020
PCI DSS in Practice Case Study: Cielo
In this PCI DSS in Practice Case Study, Brazil Regional Engagement Board Member Cielo shares the challenge of dealing with legacy systems that did not have adequate controls to meet PCI DSS. The company recognized that training employees on security awareness and the support of senior management were essential to address these challenges.
26 August 2020
Deep Fake: Setting the Stage for Next-Gen Social Engineering
Humans are susceptible to normalcy bias, which may leave us vulnerable to disinformation that reinforces our beliefs.26 August 2020
Medical Data Leaked on GitHub Due to Developer Errors

26 August 2020
How to Write a Cybersecurity Playbook During a Pandemic

26 August 2020
Mercenary hacker group targets companies with 3Ds Max malware
Hacker-for-hire group uses a malicious 3Ds Max plugin to infect companies with malware and steal proprietary information.26 August 2020
Russian arrested for trying to recruit an insider and hack a Nevada company
A Russian national traveled to the US to recruit and convince an employee of a Nevada company to install malware on the company's network.25 August 2020
Four More Bugs Patched in Microsoft’s Azure Sphere IoT Platform

25 August 2020
FBI informant provides a glimpse into the inner workings of tech support scams
Court documents expose how tech support scammers operate.25 August 2020
Election Security's Sticky Problem: Attackers Who Don't Attack Votes

25 August 2020
Phishing Attack Used Box to Land in Victim Inboxes
A phishing attack targeting government and security organizations used a legitimate Box page with Microsoft 365 branding to trick victims.25 August 2020
Online Business Fraud Down, Consumer Fraud Up
Criminals are changing tactics to match changing business conditions in the coronavirus pandemic, according to a new report.25 August 2020
FBI, CISA warn of spike in vishing attacks
Cybercriminals increasingly take aim at teleworkers, setting up malicious duplicates of companies' internal VPN login pages
The post FBI, CISA warn of spike in vishing attacks appeared first on WeLiveSecurity
25 August 2020
Three Easy Ways to Avoid Meow-like Database Attacks
The largest problem facing database security today is the disconnect between security teams and DBAs beginning from the moment of configuration and continuing throughout the database lifecycle.25 August 2020
Palo Alto Networks to Acquire The Crypsis Group for $265M
This is the latest in a series of acquisitions that Palo Alto has made since 2018.25 August 2020
Conti (Ryuk) joins the ranks of ransomware gangs operating data leak sites
More and more ransomware gangs are now operating sites where they leak sensitive data from victims who refuse to pay the ransom demand.25 August 2020
Safari Bug Revealed After Apple Takes Nearly a Year to Patch

25 August 2020
Lazarus Group Targets Cryptocurrency Firms Via LinkedIn Messages

25 August 2020
The Fatal Flaw in Data Security
Simply stated: No matter how sophisticated your security software is, data cannot be simultaneously used and secured. But that may be changing soon.25 August 2020