1. Nmap Online
  2. Cybersecurity News

Cybersecurity News

99% of Websites at Risk of Attack Via JavaScript Plug-ins

The average website includes content from 32 different third-party JavaScript programs, new study finds.
14 July 2020

EFF’s new database reveals what tech local police are using to spy on you

An interactive map shows you everything from Ring partnerships to predictive policing.
14 July 2020

Welcome Chat as a secure messaging app? Nothing could be further from the truth

ESET research uncovers a malicious operation that both spies on victims and leaks their data

The post Welcome Chat as a secure messaging app? Nothing could be further from the truth appeared first on WeLiveSecurity

14 July 2020

Critical SAP Bug Allows Full Enterprise System Takeover

Critical SAP Bug Allows Full Enterprise System Takeover Exploitation of the bug can allow an attacker to lift sensitive information, delete files, execute code, carry out sabotage and more.
14 July 2020

RECON bug lets hackers create admin accounts on SAP servers

SAP patches bug impacting most of its apps and customer base.
13 July 2020

A hacker is selling details of 142 million MGM hotel guests on the dark web

EXCLUSIVE: The MGM Resorts 2019 data breach is much larger than initially reported.
13 July 2020

Breached Data Indexer ‘Data Viper’ Hacked

Data Viper, a security startup that provides access to some 15 billion usernames, passwords and other information exposed in more than 8,000 website breaches, has itself been hacked and its user database posted online. The hackers also claim they are selling on the dark web roughly 2 billion records Data Viper collated from numerous breaches and data leaks, including data from several companies that likely either do not know they have been hacked or have not yet publicly disclosed an intrusion. The apparent breach at St. Louis, Mo. based Data Viper offers a cautionary and twisted tale of what can happen when security researchers seeking to gather intelligence about illegal activity online get too close to their prey or lose sight of their purported mission. The incident also highlights the often murky area between what's legal and ethical in combating cybercrime.
13 July 2020

Zero-Trust Efforts Rise with the Tide of Remote Working

With employees likely to continue to spend much, if not all, of their time working from home, companies are focusing more on technologies to boost the security of their now-distributed workplace.
13 July 2020

A Paramedic's Lessons for Cybersecurity Pros

A paramedic turned cybersecurity expert shares his experiences in both fields, highlights their similarities, and explains how they can learn from each other.
13 July 2020

Lost in Translation: Serious Flaws Found in ICS Protocol Gateways

These oft-forgotten devices contain serious vulnerabilities that allow attackers to hack OT systems remotely, researchers will reveal at Black Hat USA next month.
13 July 2020

Russian Hacker Convicted for Social Network Hacks

The Russian national was convicted of hacking into accounts at LinkedIn, Dropbox, and Formspring.
13 July 2020

Google Meet adds zoombombing protection for education customers

Google will block anonymous users from joining Google Meet video conferences organized by G Suite for Education customers.
13 July 2020

Zoom patches zero‑day flaw in Windows client

The vulnerability exposed Zoom users running Windows 7 or earlier OS versions to remote attacks

The post Zoom patches zero‑day flaw in Windows client appeared first on WeLiveSecurity

13 July 2020

Experts Predict Rise of Data Theft in Ransomware Attacks

The most attractive targets for data theft are businesses perceived as most likely to pay to prevent exposure of their information.
13 July 2020

TrickBot Sample Accidentally Warns Victims They’re Infected

TrickBot Sample Accidentally Warns Victims They’re Infected A data-stealing module in a recent sandboxed sample triggers browser-based fraud alerts for Trickbot victims -- and shows something of the inner working of the malware's operators.
13 July 2020

Secret Service Creates Cyber Fraud Task Forces

Secret Service Creates Cyber Fraud Task Forces Traditional financial crime and cyberattacks are converging, requiring new skills and approaches to the problem, officials said.
13 July 2020

Decoding the Verizon DBIR Report: An Insider's Look Beyond the Headlines

To truly understand cybersecurity trends, we must look beyond the headlines and ask more of the data. What you learn might surprise you.
13 July 2020

A ‘New Age’ of Sophisticated Business Email Compromise is Coming

A ‘New Age’ of Sophisticated Business Email Compromise is Coming A new BEC threat group is heralding more sophisticated email scams that target organizations without DMARC and squeeze as much money out of victims as possible.
13 July 2020

The Enemy Within: How Insider Threats Are Changing

The Enemy Within: How Insider Threats Are Changing Insider-threat security experts unravel the new normal during this time of remote working, and explain how to protect sensitive data from this escalating risk.
13 July 2020

How CARTA Strategies for Web Applications are Met with Indusface AppTrana Solution

How CARTA Strategies for Web Applications are Met with Indusface AppTrana Solution From an operational standpoint, the foundation of CARTA starts with an assessment and then building the zero-trust principles on top of that with an adaptive security model.
13 July 2020