Cybersecurity News
How an Industry Consortium Can Reinvent Security Solution Testing
By committing to independent testing to determine value, vendors will ensure that their products do what they say they do.21 May 2020
Request for Comments: Secure Software Standard Update: Draft Terminal Software Module
From 21 May to 22 June 2020, PCI SSC stakeholders can participate in a Request for Comments (RFC) on Secure Software Standard Update: Draft Terminal Software Module.
21 May 2020
Hackers tried (and failed) to install ransomware using a zero-day in Sophos firewalls
Sophos acted quickly to put out a patch that stopped the hackers' attempts to deploy ransomware on enterprise networks protected by Sophos firewall devices.21 May 2020
Critical Cisco Bug in Unified CCX Allows Remote Code Execution
Cisco has fixed a critical remote code-execution flaw in its popular customer interaction management solution.
21 May 2020
Silent Night Banking Trojan Charges Top Dollar on the Underground
The malware-as-a-service is advanced, obfuscated and modular -- and built for mass campaigns.
21 May 2020
Chrome 83 arrives with enhanced security and privacy controls
New features include DNS over HTTPS, a Safety Check section and simpler cookie management
The post Chrome 83 arrives with enhanced security and privacy controls appeared first on WeLiveSecurity
21 May 2020
The Need for Compliance in a Post-COVID-19 World
With the current upheaval, business leaders may lose focus and push off implementing security measures, managing risk, and keeping up with compliance requirements. That's a big mistake.21 May 2020
Most Bluetooth Devices Vulnerable to Impersonation Attacks
Vulnerabilities in the Bluetooth authentication process give attackers a way to insert rogue devices between two securely paired devices, academic researchers find.21 May 2020
Supreme Court Phish Targets Office 365 Credentials
Cybercriminals are hunting out victims' Office 365 credentials -- by dishing out Supreme court "summons" in a phishing attack.
21 May 2020
Crooks Tap Google Firebase in Fresh Phishing Tactic
Cybercriminals are taking advantage of the Google name and the cloud to convince victims into handing over their login details.
21 May 2020
Thousands of Israeli sites defaced with code seeking permission to access users' webcams
The hacks have been linked back to a local Israeli WordPress hosting provider.21 May 2020
Japan investigates potential leak of prototype missile data in Mitsubishi hack
The country is analyzing how such a leak could impact national security.21 May 2020
Centralized Contact Tracing Raises Concerns Among Privacy-Conscious Citizens
The long debate over whether encryption and anonymity shield too much criminal behavior also has staged a resurgence.21 May 2020
No “Game over” for the Winnti Group
The notorious APT group continues to play the video game industry with yet another backdoor
The post No “Game over” for the Winnti Group appeared first on WeLiveSecurity
21 May 2020
Video game developers under siege by cyberattacks seeking to plunder in-game cash
The Winnti Group is targeting gaming vendors once more with a new backdoor.21 May 2020
BlockFi discloses failed hack attempt after SIM swapping incident
BlockFi says a hacker SIM swapped an employee to gain access to its platform, but the hacker failed in their attempt to steal BlockFi customer funds.20 May 2020
Hacker selling 40 million user records from popular Wishbone app
Seller claims the data was obtained following a hack that took place earlier this year.20 May 2020
60% of Insider Threats Involve Employees Planning to Leave
Researchers shows most "flight-risk" employees planning to leave an organization tend to start stealing data two to eight weeks before they go.20 May 2020
Digital Transformation Risks in Front-end Code
Why making every front-end developer a DevSecOps expert will lead to a more holistic approach to web and native application security.20 May 2020
NetWalker Ransomware Gang Hunts for Top-Notch Affiliates
The operators behind the Toll Group attack are taking applications for technically advanced partners.
20 May 2020