Cybersecurity News
Emotet botnet returns after a four-month absence
2019's most active malware botnet returns to life with new spam campaign after it previously went dark on February 7, 2020.17 July 2020
Election Security: Recovering from 2016, Looking Toward 2020
Researchers publish the results of a four-year investigation and discuss whether the US is ready to secure its largest elections.17 July 2020
Twitter Hack Update: What We Know (and What We Don’t)
With limited confirmed information, a raft of theories and circumstantial evidence has come to light as to who was behind the attack and how they carried it out.
17 July 2020
Cybercriminals Targeted Streaming Services to Provide Pandemic Entertainment
Prior to 2020, about 1 in 5 credential attacks targeted video services, but that's nothing compared to the first quarter of 2020, according to newly published data.17 July 2020
US judge: WhatsApp lawsuit against Israeli spyware firm NSO can proceed
NSO Group was sued last year by messaging app owned by Facebook
An Israeli company whose spyware has been used to target journalists in India, politicians in Spain, and human rights activists in Morocco may soon be forced to divulge information about its government clients and practices after a judge in California ruled that a lawsuit against the company could proceed.
NSO Group was sued by WhatsApp, which is owned by Facebook, last year, after the popular messaging app accused the company of sending malware to 1,400 of its users over a two-week period and targeting their mobile phones.
Continue reading...17 July 2020
CISA Emergency Directive Orders Immediate Fix of Windows DNS Server Bug
An emergency directive orders some federal agencies to apply Microsoft’s patch for a critical DNS vulnerability by Friday, July 17 at 2 p.m. (ET).
17 July 2020
Week in security with Tony Anscombe
Trojanized cryptocurrency trading apps targeting Mac users – An Android chat app turns out to be spyware – Twitter sustains a massive hack
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
17 July 2020
Cloud provider stopped ransomware attack but had to pay ransom demand anyway
BlackBaud said it had to pay a ransom demand to ensure hackers would delete data they stole from its network.17 July 2020
Cisco releases security fixes for critical VPN, router vulnerabilities
The worst bugs can be exploited for remote code execution and privilege escalation attacks.17 July 2020
Google says a bug is erroneously showing security alerts for TiVO devices
TiVO streaming dongle owners are getting a security alert when linking their Google account to their device.16 July 2020
8 Signs of a Smartphone Hack
A rapidly dwindling battery life or sudden spike in data usage could indicate your iOS or Android device has been compromised.
16 July 2020
Who’s Behind Wednesday’s Epic Twitter Hack?
Twitter was thrown into chaos on Wednesday after accounts for some of the world's most recognizable public figures, executives and celebrities starting tweeting out links to bitcoin scams. Twitter says the attack happened because someone tricked or coerced an employee into providing access to internal Twitter administrative tools. This post is an attempt to lay out some of the timeline of this attack, and point to clues about who may have been behind it.16 July 2020
DHS CISA tells government agencies to patch Windows Server DNS bug within 24h
CISA cites "likelihood of the vulnerability being exploited" and widespread use of Windows Server as primary reason for today's rare measure.16 July 2020
Major Flaws Open the Edge to Attack
Attackers are using critical exploits for flaws in VPN appliances, app-delivery services, and other network-edge hardware and software to punch through corporate perimeters. What can companies do?16 July 2020
Enterprise Data Security: It’s Time to Flip the Established Approach
Companies should forget about auditing where data resides and who has access to it.
16 July 2020
Twitter: No evidence hackers accessed user passwords
Social network has no plans to reset user passwords after yesterday's massive hack that spread a Bitcoin scam on the platform.16 July 2020
EU Court Ruling Means New Global Protections for EU Customer Data
The ruling in a case involving Facebook means that international companies must provide EU-level privacy controls for EU-generated data no matter where it's stored or transferred.16 July 2020
Twitter Attack Raises Concerns Over its Internal Controls
Attackers temporarily gained control of the accounts of Joe Biden, Barack Obama, Bill Gates, and others, to tweet a bitcoin scam.16 July 2020
Hackers Look to Steal COVID-19 Vaccine Research
The Russia-linked APT29 has set its sights on pharma research in Western nations in a likely attempt to get ahead on a cure for coronavirus.
16 July 2020
Cybersecurity Leaders: Invest In Your People
Training, especially cross-training, is insanely powerful when team members are able to experience, train, and work together. It also builds trust.16 July 2020