Cybersecurity News
Data leak strikes US cannabis users, sensitive information exposed
A database backing point-of-sale systems used in medical and recreational marijuana dispensaries has been compromised.22 January 2020
ProtonVPN apps handed to open source community in transparency push
The code backing ProtonVPN apps on all platforms can now be examined at leisure.22 January 2020
PoC Exploits Do More Good Than Harm: Threatpost Poll
More than half of security experts think that the good outweighs the bad when it comes to proof-of-concept exploits, according to a recent Threatpost poll.
22 January 2020
In enterprise attack wave, NetWire Trojan now buries itself in disk image files
Enterprise companies are being targeted by a business email scam harnessing the Trojan.22 January 2020
German government to pay €800,000 in Windows 7 ESU fees this year
The sum represents ESU fees for over 33,000 government workstations that are still running Windows 7, allowing German government systems to receive security updates for one more year.22 January 2020
16Shop Phishing Gang Goes After PayPal Users
A sophisticated malware-as-a-service phishing kit includes full customer service and anti-detection technologies.
21 January 2020
Microsoft, DHS Warn of Zero-Day Attack Targeting IE Users
Software firm is "aware of limited targeted attacks" exploiting a scripting issue vulnerability in Internet Explorer 9, 10, and 11 that previously has not been disclosed.21 January 2020
New Ransomware Tactic Shows How Windows EFS Can Aid Attackers
Researchers have discovered how ransomware can take advantage of the Windows Encrypting File System, prompting security vendors to release patches.21 January 2020
FireEye Buys Cloudvisory
The purchase is intended to bring new cloud capabilities to the FireEye Helix security platform.21 January 2020
Microsoft discovers new sLoad 2.0 (Starslord) malware
sLoad malware gangs makes a comeback after having operations exposed last month.21 January 2020
Avoid That Billion-Dollar Fine: Blurring the Lines Between Security and Privacy
While doing good for the user is the theoretical ideal, the threat of fiscal repercussions should drive organizations to take privacy seriously. That means security and data privacy teams must work more closely.21 January 2020
Ransomware Upgrades with Credential-Stealing Tricks
The latest version of the FTCode ransomware can steal credentials from five popular browsers and email clients.21 January 2020
Citrix Accelerates Patch Rollout For Critical RCE Flaw
Citrix has issued the first of several updates fixing a critical vulnerability in various versions of its Citrix Application Delivery Controller (ADC) and Citrix Gateway products.
21 January 2020
Nearly 75% of SD-WAN Owners Lack Confidence Post-Digital Transformation
More businesses think SD-WAN will reduce WAN costs, but only 37% think SD-WANs will help defend against malware and other threats.21 January 2020
US Cyber Command was not prepared to handle the amount of data it hacked from ISIS
Operation Glowing Symphony was a success, but Cyber Command operators were not prepared for the amount of data they found in hacked ISIS accounts and servers.21 January 2020
FTCODE Ransomware Now Steals Chrome, Firefox Credentials
New versions of the ransomware now sniff out saved credentials for Internet Explorer, Mozilla Firefox, Mozilla Thunderbird, Google Chrome and Microsoft Outlook.
21 January 2020
Data Awareness Is Key to Data Security
Traditional data-leak prevention is not enough for businesses facing today's dynamic threat landscape.21 January 2020
Microsoft Zero-Day Actively Exploited, Patch Forthcoming
CVE-2020-0674 is a critical flaw for most Internet Explorer versions, allowing remote code execution and complete takeover.
21 January 2020
FTCODE ransomware is now armed with browser, email password stealing features
Encrypting your PC isn’t enough -- hackers want your email passwords, too.21 January 2020
Did you really 'like' that? How Chameleon attacks spring in Facebook, Twitter, LinkedIn
Social networks impacted seem to disagree on the scope of the attack.21 January 2020