Cybersecurity News
New Zealand CERT issues advisory on ransomware campaign
New Zealand CERT issues advisory on ransomware campaign By William Knowles Senior Editor InfoSec News June 18, 2020 The New Zealand Computer Emergency Response Team (CERT NZ) has released an advisory on a ransomware campaign leveraging remote access technologies. Unknown malicious cyber bad actors are targeting organizations’ networks through remote access tools, such as Remote […]18 June 2020
FEMA IT Specialist Charged in ID Theft, Tax Refund Fraud Conspiracy
An information technology specialist at the Federal Emergency Management Agency (FEMA) was arrested this week on suspicion of hacking into the human resource databases of University of Pittsburgh Medical Center (UPMC) in 2014, stealing personal data on more than 65,000 UPMC employees, and selling the data on the dark web.18 June 2020
Healthcare CISOs Share COVID-19 Response Stories
Cybersecurity leaders discussed the threats and challenges that arose during the pandemic, and how they responded, during a virtual roundtable.18 June 2020
Mozilla to launch VPN product 'in the next few weeks'
Mozilla VPN to exit beta this summer. Future plans include launching a Mac client. Currently only available on Windows, Android, iOS, and Firefox extension.18 June 2020
Cisco Patches Flaw in Webex Videoconferencing App
Vulnerability would have allowed an attacker to gain access to sensitive information on a system, Trustwave's SpiderLab says.18 June 2020
Google Yanks 106 ‘Malicious’ Chrome Extensions
Trojan Chrome browser extensions spied on users and maintained a foothold on the networks of financial services, oil and gas, media and entertainment, healthcare and pharmaceuticals and government organizations.
18 June 2020
Facebook’s FTC-Mandated Privacy Committee Now in Effect
Facebook will report its privacy practices to both the committee, the FTC, and to a third-party assessor.
18 June 2020
Have Your Say: Dark Reading Video News Desk Seeks Reader Contributions
We've got questions for you on black infosec, burnout, vulnerabilities, COVID-19, and much more. Send us your video responses and we'll play them in our News Desk broadcast during Black Hat Virtual.18 June 2020
Facebook sues websites that sold Instagram likes and scraped Facebook user data
Facebook files lawsuits against MGP25 Cyberint Services in Spain and against Massroot8 in the US.18 June 2020
IcedID Banker is Back, Adding Steganography, COVID-19 Theme
The malware has boosted its anti-detection capabilities in a new email campaign.
18 June 2020
The Bigger the News, the Bigger the Cyber Threats
Criminals use disasters, wars, and now pandemics as air cover to focus collective anxiety and fear into highly targeted, malicious messaging.18 June 2020
60% of Businesses Plan to Spend More on Cyber Insurance
New data reveals 65% of SMEs plan to invest more in cyber insurance, compared with 58% of large enterprises.18 June 2020
Russia unbans Telegram
Russia's media watchdog Roskomnadzor said Telegram has agreed to help Russian law enforcement fight against extremist and terrorist content shared on its platform.18 June 2020
O365 Phishing Campaign Leveraged Legit Domains
A sophisticated scheme used legitimate redirection tools to convince victims to give up Office 365 credentials.18 June 2020
Cisco Webex, Router Bugs Allow Code Execution
High-severity flaws plague Cisco's Webex collaboration platform, as well as its RV routers for small businesses.
18 June 2020
Most Contact-Tracing Apps Fail Basic Security
A survey of 17 Android applications for informing citizens if they had potential contact with a COVD-19-infected individual finds few have adopted code-hardening techniques.18 June 2020
Google removes 106 Chrome extensions for collecting sensitive user data
Security firm identifies 111 malicious Chrome extensions collecting user keystrokes, clipboard content, cookies, more.18 June 2020
CISO Dialogue: How to Optimize Your Security Budget
CISOs are never going to have all the finances they want. Hard choices must be made. The CISO of Amazon Prime Video discusses his approaches to a slimmed-down budget.18 June 2020
BofA Phish Gets Around DMARC, Other Email Protections
The June campaign was targeted and aimed at stealing online banking credentials.
18 June 2020
Five Password Tips for Securing the New WFH Normal
Darren James, product specialist with Specops Software, warned that password resets, for example, are a particularly vexing issue for sysadmins, as they can often lockout end-users from their accounts.
18 June 2020