Cybersecurity News
New Attack Technique Uses Misconfigured Docker API
A new technique builds and deploys an attack on the victim's own system15 July 2020
Puzzles and Riddles Help InfoSec Pros Solve Real-World Problems
A researcher shares the unexpected lessons learned in years of creating puzzles and riddles for his cybersecurity colleagues.15 July 2020
'Patch ASAP': Cisco Issues Updates for Routers, VPN Firewall
Cisco issues five critical security patches among a batch of some 31 updates.15 July 2020
Vulns in Open Source EHR Puts Patient Health Data at Risk
Five high-risk flaws in health IT software from LibreHealth, a researcher at Bishop Fox finds.15 July 2020
How Nanotechnology Will Disrupt Cybersecurity
Tangible solutions related to cryptography, intelligent threat detection and consumer security are closer than you think.15 July 2020
Brazil’s Banking Trojans Go Global
Four sophisticated malware families are ramping up their techniques and actively spreading to new countries, including the U.S.
15 July 2020
Microsoft patches critical, wormable flaw in Windows DNS Server
The company urges organizations to waste no time in installing updates to fix the vulnerability that rates a ‘perfect’ 10 on the severity scale
The post Microsoft patches critical, wormable flaw in Windows DNS Server appeared first on WeLiveSecurity
15 July 2020
Firefox on Android: Camera remains active when phone is locked or the user switches apps
Mozilla says it will fix the bug later this year, in October.15 July 2020
Top 5 Questions (and Answers) About GRC Technology
For the first time in a long time, we must shift from managing localized risks against a landscape of economic growth to managing those issues under much less certain circumstances.15 July 2020
Report: CIA received more offensive hacking powers in 2018
In 2018, US President Trump gave the CIA more powers to carry out covert cyber operations resulting in several hacks and data dumps from Iranian and Russian spy agencies.15 July 2020
Report: CIA most likely behind APT34 and FSB hacks and data dumps
In 2018, US President Trump gave the CIA more powers to carry out covert cyber operations resulting in several hacks and data dumps from Iranian and Russian spy agencies.15 July 2020
Report: CIA behind APT34 and FSB hacks and data dumps
In 2018, US President Trump gave the CIA more powers to carry out covert cyber operations resulting in several hacks and data dumps from Iranian and Russian spy agencies.15 July 2020
The TLS 1.2 Deadline is Looming, Do You Have Your Act Together?
Sectors such as Education (47%), Energy (40%), and Public Administration (37%) have struggled to implement TLS 1.2 protocols
15 July 2020
Stay on the Cutting Edge of Mobile Security
Here are some of the mobile-focused Briefings, Trainings, and Arsenal tools that will be explored at Black Hat USA.15 July 2020
Details of 142 million MGM hotel guests selling for US$2,900
It appears that the July 2019 breach at MGM Resorts affected far more people than initially thought
The post Details of 142 million MGM hotel guests selling for US$2,900 appeared first on WeLiveSecurity
15 July 2020
Mobile security threats amid COVID‑19 and beyond: A Q&A with Lukas Stefanko
ESET malware researcher Lukas Stefanko gives us a peek behind the scenes of his analysis of CryCryptor ransomware and puts the threat into a broader context
The post Mobile security threats amid COVID‑19 and beyond: A Q&A with Lukas Stefanko appeared first on WeLiveSecurity
15 July 2020
DevSecOps Requires a Different Approach to Security
Breaking applications into microservices means more difficulty in gaining good visibility into runtime security and performance issues, says startup Traceable.14 July 2020
‘Wormable’ Flaw Leads July Microsoft Patches
Microsoft today released updates to plug a whopping 123 security holes in Windows and related software, including fixes for a critical, "wormable" flaw in Windows Server versions that Microsoft says is likely to be exploited soon. While this particular weakness mainly affects enterprises, July's care package from Redmond has a little something for everyone. So if you're a Windows (ab)user, it's time once again to back up and patch up (preferably in that order).14 July 2020
Microsoft Patches Wormable RCE Flaw in Windows DNS Servers
Patch Tuesday security updates address a critical vulnerability in Windows DNS Servers, which researchers believe is likely to be exploited.14 July 2020
Microsoft Tackles 123 Fixes for July Patch Tuesday
Eighteen critical bugs, impacting Windows Server, Office and Outlook, were fixed as part of the patch roundup.
14 July 2020