Cybersecurity News
Skimming code battle on NutriBullet website may have risked customer credit card data
The cat-and-mouse game between skimmer installation and removal carried on for weeks.18 March 2020
Google APP users won't be allowed to install apps from outside the Play Store
Some exceptions exist, but Google users enrolled in the Advanced Protection Program won't be able to install Android apps from third-party apps stores anymore.18 March 2020
VMware patches privilege escalation vulnerability in Fusion, Horizon
Exploits to root systems with Fusion, VMRC or Horizon Client installations were possible.18 March 2020
Was your Facebook post on the coronavirus deleted? This is why
Anti-spam issues prompted accusations of censorship.18 March 2020
Magecart Cyberattack Targets NutriBullet Website
Researchers warn that a Magecart group has set up skimmers on the blender manufacturer's website, in hopes of stealing customer payment-card data.
18 March 2020
Two Trend Micro zero-days exploited in the wild by hackers
Patches for both zero-days were released on Monday, along with fixes for three other similarly critical vulnerabilities.17 March 2020
Coronavirus Widens the Money Mule Pool
With many people being laid off or working from home thanks to the Coronavirus pandemic, cybercrooks are almost certain to have more than their usual share of recruitable "money mules" -- people who get roped into money laundering schemes under the pretense of a work-at-home job offer. Here's the story of one upstart mule factory that spoofs a major nonprofit and tells new employees they'll be collecting and transmitting donations for an international "Coronavirus Relief Fund."17 March 2020
A COVID-19 Cybersecurity Poll: Securing a Remote Workforce
COVID-19 is changing how we work. Weigh in on how your organization is securing its remote footprint with our short Threatpost poll.
17 March 2020
This Stalkerware Delivers Extra-Creepy Features
Stalkerware called Monitor Minor gives users the ability to creep on a target’s missives swapped via Instagram, Skype and Snapchat.
17 March 2020
Attorney General Directs DoJ to Prioritize Coronavirus Crime
Criminal activity related to the pandemic cannot be tolerated, William Barr states in memo.17 March 2020
FBI warns of human traffickers luring victims on dating apps
The warning highlights one of the potential risks associated with revealing too much private information online
The post FBI warns of human traffickers luring victims on dating apps appeared first on WeLiveSecurity
17 March 2020
TrickBot Module Takes Aim at Remote Desktops
The module, still in development, focuses on compromising Windows systems by brute-forcing accounts via the Remote Desktop Protocol.17 March 2020
Startup Offering Secure Access to Corporate Apps Emerges from Stealth
Axis Security has raised $17 million in VC funding.17 March 2020
Women in Payments: Q&A with Marie-Christine Vittet
For Marie-Christine Vittet, cybersecurity is more than a job, it’s a way of life. In this month’s blog series, Vittet describes how data protection has become a part of her DNA.
17 March 2020
Security Lessons We've Learned (So Far) from COVID-19
Takeaways about fighting new fires, securely enabling remote workforces, and human nature during difficult times.
17 March 2020
This Tax Season, Save the Scorn and Protect Customers from Phishing Scams
As security professionals, it's easy to get cynical about the continued proliferation of tax ID theft and blame the consumers themselves. But that doesn't help anyone.17 March 2020
WordPress and Apache Struts account for 55% of all weaponized vulnerabilities
Comprehensive study looks at the most attacked web technologies of the last decade.17 March 2020
Remote Workforce Jumps 15% In Two Weeks
Netskope reports the total number of remote employees is the highest it has ever observed.17 March 2020
APT36 Taps Coronavirus as ‘Golden Opportunity’ to Spread Crimson RAT
The Pakistani-linked APT has been spotted infecting victims with data exfiltration malware.
17 March 2020
InfoSec Pros Uncertain About Relationships With Partner Security Teams
Only half of respondents to a recent Dark Reading study felt confident that their third-party business partners would, at least, tell them if a compromise occurred.
17 March 2020