1. Nmap Online
  2. Cybersecurity News

Cybersecurity News

Eight Common OT / Industrial Firewall Mistakes

Eight Common OT / Industrial Firewall Mistakes Firewalls are easy to misconfigure. While the security consequences of such errors may be acceptable for some firewalls, the accumulated risks of misconfigured firewalls in a defense-in-depth OT network architecture are generally unacceptable.
27 April 2020

Germany pivots from centralized coronavirus tracing app to privacy-protecting alternative

The move will likely be applauded by privacy and civil rights groups.
27 April 2020

Single Malicious GIF Opened Microsoft Teams to Nasty Attack

Single Malicious GIF Opened Microsoft Teams to Nasty Attack Now patched flaw allowed attacker to take over an organization’s entire roster of Microsoft Teams accounts.
27 April 2020

This is how viewing a GIF in Microsoft Teams triggered account hijacking bug

Seeing an animation was enough to be impacted, researchers say.
27 April 2020

Hackers are exploiting a Sophos firewall zero-day

Sophos releases emergency patch to fix SQL injection bug exploited in the wild, impacting its XG Firewall product.
25 April 2020

Health Prognosis on the Security of IoMT Devices? Not Good

As more so-called Internet of Medical Things devices go online, hospitals and medical facilities face significant challenges in securing them from attacks that could endanger patients' lives.
25 April 2020

WHO Confirms Email Credentials Leak

Washington Post had identified the group as one among several whose passwords and emails were dumped online and abused.
24 April 2020

SAS@home Virtual Summit Showcases New Threat Intel, Industry Changes

SAS@home Virtual Summit Showcases New Threat Intel, Industry Changes The free online conference, scheduled for April 28-30, will feature top security researchers from across the industry.
24 April 2020

Latest Apple Text-Bomb Crashes iPhones via Message Notifications

Latest Apple Text-Bomb Crashes iPhones via Message Notifications Sindhi-language characters can crash iPhones and other iOS/macOS devices if a victim views texts, Twitter posts or messages within various apps containing them.
24 April 2020

MSI Utility Vulnerability Based on Missing Quotation Marks

The lack of quotation marks in the way a service called an application left MSI computers open to persistent privilege escalation attacks.
24 April 2020

Symlink race bugs discovered in 28 antivirus products

Most products have patched, researchers said, without naming the ones who skipped.
24 April 2020

Apple Downplays Threat Posed by Newly Disclosed Zero-Days in iOS

Bugs don't pose an immediate threat, and there is no evidence they were exploited, as ZecOps claimed earlier this week, Apple says.
24 April 2020

Cybercrime Group Steals $1.3M from Banks

A look at how the so-called Florentine Banker Group lurked for two months in a sophisticated business email compromise attack on Israeli and UK financial companies.
24 April 2020

Find Your Framework: Thinking Fast and Slow

Economist Daniel Kahneman's classic book has lessons for those in security, especially now.
24 April 2020

News Wrap: Nintendo Account Hacks, Apple Zero Days, NFL Security

News Wrap: Nintendo Account Hacks, Apple Zero Days, NFL Security Nintendo account hacks, two Apple zero days reportedly being exploited in the wild, and the NFL virtual draft were all hot topics in the security space this week.
24 April 2020

Unproven Coronavirus Therapy Proves Cash Cow for Shadow Pharmacies

Many of the same shadowy organizations that pay people to promote male erectile dysfunction drugs via spam and hacked websites recently have enjoyed a surge in demand for medicines used to fight malaria, lupus and arthritis, thanks largely to unfounded suggestions that these therapies can help fight the COVID-19 pandemic. A review of the sales figures from some of the top pharmacy affiliate programs suggests sales of drugs containing hydroxychloroquine rivaled that of their primary product -- generic Viagra and Cialis -- and that this as-yet-unproven Coronavirus treatment accounted for as much as 25 to 30 percent of all sales over the past month.
24 April 2020

Sextortion Campaigns Net Cybercriminals Nearly $500K in Five Months

Tracking the cryptocurrency paid by victims finds that, even with a low rate of payout, the scheme netted a cool half million for the various groups involved.
24 April 2020

Facebook-NSO lawsuit: Hundreds of WhatsApp attacks linked to one IP address

Facebook fights to keep the lawsuit on track after NSO filed a motion to dismiss the case earlier this month.
24 April 2020

Narrow the Scope of Compliance

Many organizations are doing more than they need regarding compliance.
24 April 2020

Nintendo Confirms Breach of 160,000 Accounts

Nintendo Confirms Breach of 160,000 Accounts After gamers reported unauthorized logins and purchases, Nintendo confirmed that over 160,000 accounts had been hacked.
24 April 2020