Cybersecurity News
More evil: A deep look at Evilnum and its toolset
ESET research gives a detailed picture of the operations of the Evilnum group and its toolkit deployed in attacks against carefully chosen targets in the fintech sector
The post More evil: A deep look at Evilnum and its toolset appeared first on WeLiveSecurity
09 July 2020
Researchers connect Evilnum hacking group to cyberattacks against Fintech firms
The APT is also a loyal customer of Golden Chickens, a Malware-as-a-Service outfit.09 July 2020
Google abandons Isolated Region cloud services project in China
Google says the Isolated Region project was scrapped due to other services offering “better outcomes.”09 July 2020
More pre-installed malware has been found in budget US smartphones
Cheap phones often have tradeoffs but researchers say this should never compromise user safety.09 July 2020
Nvidia fixes code execution vulnerability in GeForce Experience
Security updates have also been released for the JetPack software development kit.08 July 2020
Conti ransomware uses 32 simultaneous CPU threads for blazing-fast encryption
The Conti ransomware also abuses the Windows Restart Manager component to unlock apps and free up their data (for encryption).08 July 2020
Microsoft's new KDP tech blocks malware by making parts of the Windows kernel read-only
New KDP security feature is currently being tested with Windows 10 Insider builds.08 July 2020
Study Finds 15 Billion Stolen, Exposed Credentials in Criminal Markets
Data is fueling account takeover attacks in a big way, Digital Shadows says.08 July 2020
New Fraud Ring "Bargain Bear" Brings Sophistication to Online Crime
The ring tests the validity of stolen credentials to be used in fraud through an online marketplace.08 July 2020
As More People Return to Travel Sites, So Do Malicious Bots
Attacks against travel-related websites are on the rise as the industry begins to slowly recover from COVID-19, new data shows.08 July 2020
More Malware Found Preinstalled on Government Smartphones
Researchers report the American Network Solutions UL40 smartphone comes with compromised apps.08 July 2020
Advertising Plugin for WordPress Threatens Full Site Takeovers
Thousands of vulnerable websites need to apply the patch to avoid RCE.
08 July 2020
US Charges Kazakhstani Citizen With Hacking Into More Than 300 Orgs
The accused man, and members of his cybercriminal group, allegedly made at least $1.5 million hacking into companies and selling access to systems over the past three years.08 July 2020
How Advanced Attackers Take Aim at Office 365
Researchers discuss how adversaries use components of Office 365 that are poorly understood and not closely monitored.08 July 2020
Fresh Options for Fighting Fraud in Financial Services
Fraud prevention requires a consumer-centric, data sharing approach.08 July 2020
Google open-sources Tsunami vulnerability scanner
Google says Tsunami is an extensible network scanner for detecting high-severity vulnerabilities with as little false-positives as possible.08 July 2020
Notorious Hacker ‘Fxmsp’ Outed After Widespread Access-Dealing
The Kazakh native made headlines last year for hacking McAfee, Symantec and Trend Micro; but the Feds say he's also behind a widespread backdoor operation spanning six continents.
08 July 2020
Microsoft Seizes Malicious Domains Used in Mass Office 365 Attacks
The phishing campaign targeted Office 365 accounts in 62 countries, using business-related reports and the coronavirus pandemic as lures.
08 July 2020
Why Cybersecurity's Silence Matters to Black Lives
The industry is missing an opportunity to educate the public about bad actors who capitalize off of protest, voting rights education and police brutality petitions through social engineering and phishing attacks.08 July 2020
A Most Personal Threat: Implantable Devices in Secure Spaces
Do implantable medical devices pose a threat to secure communication facilities? A Virginia Tech researcher says they do, and the problem is growing.08 July 2020
