Cybersecurity News


11 Tips for Protecting Active Directory While Working from Home

To improve the security of your corporate's network, protect the remote use of AD credentials.
22 April 2020

Security researcher identifies new APT group mentioned in 2017 Shadow Brokers leak

Shadow Brokers data dump yields another one of its secrets
22 April 2020

Learning From the Honeypot: A Researcher and a Duplicitous Docker Image

Learning From the Honeypot: A Researcher and a Duplicitous Docker Image When Larry Cashdollar set up a honeypot in a Docker image, he found behavior that was more enlightening than he had imagined.
22 April 2020

Apple Patches Two iOS Zero-Days Abused for Years

Apple Patches Two iOS Zero-Days Abused for Years Researchers revealed two zero-day security vulnerabilities affecting Apple's stock Mail app on iOS devices.
22 April 2020

Connected Home Hubs Open Houses to Full Remote Takeover

Connected Home Hubs Open Houses to Full Remote Takeover Users should update their firmware for three popular smart-home hubs.
22 April 2020

Making the Case for Process Documentation in Cyber Threat Intel

Standard language and processes, not to mention more efficient dissemination of findings and alerts all make documenting your security processes a must
22 April 2020

LA County Hit with DoppelPaymer Ransomware Attack

LA County Hit with DoppelPaymer Ransomware Attack The DoppelPaymer ransomware group is claiming that it launched a cyberattack against Torrance - and is now leaking the LA city's data online.
22 April 2020

Apple investigating report of a new iOS exploit being used in the wild

Cyber-security firm ZecOps said today it detected attacks against high-profile targets using a new iOS email exploit.
22 April 2020

Updated Guidance: Responding to a Data Breach


PCI Security Standards Council recently updated the guidance document: Responding to a Cardholder Data Breach. This guide is intended to help merchants and service providers with incident response preparation. This guide also describes how and when a Payment Card Industry Forensic Investigator (PFI) should be engaged to assist.

22 April 2020

Microsoft Issues Out-Of-Band Security Update For Office, Paint 3D

Microsoft Issues Out-Of-Band Security Update For Office, Paint 3D The flaws exist in Autodesk's FBX library, integrated in Microsoft's Office, Office 365 ProPlus and Paint 3D applications.
22 April 2020

8 Steps to Enhance Government Agencies' Security Posture

Given the heterogeneous architectures of critical state and local systems, it's imperative we learn from the security exposures of other critical infrastructure and pledge to be better
22 April 2020

SBA Security Incident May Affect Nearly 8,000 Businesses

Business owners who applied for federal disaster loans may have had information exposed to other applicants, the Small Business Administration reports.
22 April 2020

Poll: Worried About Losing Your Job?

With the unemployment rate surging due to COVID-19, are you concerned your job is in jeopardy?
22 April 2020

Small Businesses Tapping COVID-19 Loans Hit with Data Exposure

Small Businesses Tapping COVID-19 Loans Hit with Data Exposure The SBA said sensitive information about applicants may have been revealed to others applying for disaster loan program funds.
22 April 2020

This is what happens to cryptocurrency paid out in sextortion campaigns

Researchers have followed the trail of dirty coins generated through extorting sextortion spam victims.
22 April 2020

Hackers have breached 60 ad servers to load their own malicious ads

Why buy legitimate ad slots to deliver malvertising when you can just hack the server instead.
22 April 2020

Domain Registrars Under Pressure to Combat COVID-19-Related Scams

A huge increase in malicious website registrations has prompted concern from US lawmakers.
22 April 2020

Using Big Tech to tackle coronavirus risks swapping one lockdown for another | Adam Smith

Using Big Tech to tackle coronavirus risks swapping one lockdown for another | Adam Smith

An app that logs movements and contacts might seem like a fair trade now but we risk giving away our privacy for good

Even when the lockdown is lifted, there is no guarantee that life will ever return to normal. To prevent a future outbreak of coronavirus, the UK will need to roll out mass testing, maintain some social distancing measures and closely monitor communities to curb future flare-ups.

In pursuing that last aim, governments across the world are developing technology to track our movements. When lockdown ends, technology could be a valuable means of controlling future outbreaks, alerting people to cases of Covid-19 in their area and hopefully preventing future shutdowns.

Related: The expansion of mass surveillance to stop coronavirus should worry us all | Veena Dubal

Adam Smith is a technology reporter at the Independent

Continue reading...
22 April 2020

Buying a secondhand device? Here’s what to keep in mind

If you’re trying to be responsible towards the planet, also be responsible to yourself and take these steps so that the device doesn’t end up costing you more than you’ve saved

The post Buying a secondhand device? Here’s what to keep in mind appeared first on WeLiveSecurity

22 April 2020

Smart IoT home hubs vulnerable to remote code execution attacks

IoT hubs used in homes and offices were found to be susceptible to exploit due to critical bugs in their firmware.
22 April 2020