Cybersecurity News
Another Destructive Wiper Targets Organizations in Ukraine
CaddyWiper is one in a barrage of data-wiping cyber-attacks to hit the country since January as the war on the ground with Russia marches on.
iPhone, Android users lose life savings to romance fraud, cryptocurrency operation
Attackers now 'double dip' to clear out victim bank accounts.US military vs. Silicon Valley – a cultural divide
The US military knows it needs to speed up technology adoption through optimization, something at the heart of Silicon Valley culture
The post US military vs. Silicon Valley – a cultural divide appeared first on WeLiveSecurity
Phony Instagram ‘Support Staff’ Emails Hit Insurance Company
The phishing scam tried to steal login credentials by threatening account shutdown, due to users having purportedly shared “fake content.”
Cyberattacks Against Israeli Government Sites: ‘Largest in the Country’s History’
DDoS attacks against Israel telecom companies took down government sites, sparking a temporary state of emergency.
Paving the Way: Inspiring Women in Payments - A Q&A featuring Helena Shi
Inspired by the Global Chief Information Officer at one of the world’s largest global investment management companies – who was also a mother of three – Helena Shi realized that it was possible to balance motherhood and have a successful career. In fact, a week after giving birth to her baby, Helena completed her PCI QSA requalification and negotiated a work-from-home environment because her career was equally as important to her. In this edition of our blog, Helena describes the barriers for women in technology professions – particularly for those that have children – and how women can overcome to have both a career and a family.
Most QNAP NAS Devices Affected by ‘Dirty Pipe’ Linux Flaw
The “Dirty Pipe” Linux kernel flaw – a high-severity vulnerability in all major distros that grants root access to unprivileged users who have local access – affects most of QNAP’s network-attached storage (NAS) appliances, the Taiwanese manufacturer warned on Monday. Dirty Pipe, a recently reported local privilege escalation vulnerability, affects the Linux kernel on QNAP […]
Lawmakers Probe Early Release of Top RU Cybercrook
Aleksei Burkov, a cybercriminal who long operated two of Russia's most exclusive underground hacking forums, was arrested in 2015 by Israeli authorities. The Russian government fought Burkov's extradition to the U.S. for four years -- even arresting and jailing an Israeli woman to force a prisoner swap. That effort failed: Burkov was sent to America, pleaded guilty, and was sentenced to nine years in prison. But a little more than a year later, he was quietly released and deported back to Russia. Now some Republican lawmakers are asking why a Russian hacker once described as "an asset of supreme importance" was allowed to shorten his stay.The role of cloud services, public tools in the Russia-Ukraine cyber conflict
DDoS tools and how-to guides are being spread through cloud technologies.Pandora Ransomware Hits Giant Automotive Supplier Denso
Denso confirmed that cybercriminals leaked stolen, classified information from the Japan-based car-components manufacturer after an attack on one of its offices in Germany.
CaddyWiper: More destructive wiper malware strikes Ukraine
The wiper avoids domain controllers to stay under the radar.CaddyWiper: New wiper malware discovered in Ukraine
This is the third time in as many weeks that ESET researchers have spotted previously unknown data wiping malware taking aim at Ukrainian organizations
The post CaddyWiper: New wiper malware discovered in Ukraine appeared first on WeLiveSecurity
Staff Think Conti Group Is a Legit Employer – Podcast
The ransomware group’s benefits – bonuses, employee of the month, performance reviews & top-notch training – might be better than yours, says BreachQuest’s Marco Figueroa.
Request for Comments: Web Software Module for the PCI Secure Software Standard
From 14 March to 12 April 2022, eligible stakeholders are invited to review and provide feedback on the Web Software Module for the PCI Secure Software Standard during a 30-day request for comments (RFC) period.
Cybercrooks’ Political In-Fighting Threatens the West
They’re choosing sides in the Russia-Ukraine war, beckoning previously shunned ransomware groups and thereby reinvigorating those groups' once-diminished power.
Automotive giant Denso confirms hack, Pandora ransomware group takes credit
Denso supplies Toyota, General Motors, and Honda, to name but a few.Ukraine reportedly adopts Clearview AI to track Russian invaders
The facial recognition technology has not been made available to Russia.Ubisoft reveals 'security incident' forcing company-wide password refresh
The gaming giant remains tight-lipped on the particulars of the assumed hack.A first look at threat intelligence and threat hunting tools
An overview of some of the most popular open-source tools for threat intelligence and threat hunting
The post A first look at threat intelligence and threat hunting tools appeared first on WeLiveSecurity
Russia Issues Its Own TLS Certs
The country’s citizens are being blocked from the internet because foreign certificate authorities can't accept payments due to Ukraine-related sanctions, so it created its own CA.
