Cybersecurity News
Online Skimming and Payment Security
On the blog, we cover basic questions with Christopher D. Roberti, Senior Vice President for Cyber, Intelligence, and Security Policy at the U.S. Chamber of Commerce and PCI SSC SVP, Engagement Officer for Market Intelligence and Stakeholder Engagement Troy Leach, about this growing threat to businesses across the U.S. and how to better protect yourself from this dangerous threat.
09 January 2020
AWS Issues 'Urgent' Warning for Database Users to Update Certs
Users of AWS Aurora, DocumentDB, and RDS databases must download and install a fresh certificate and rotate the certificate authority.09 January 2020
4 Ring Employees Fired For Spying on Customers
Ring said that four employees were fired because they for inappropriate access to customers' connected video feeds.
09 January 2020
Unremovable malware found preinstalled on low-end smartphone sold in the US
Malwarebytes said it found malware pre-installed on Unimax U673c handsets, sold by Assurance Wireless (Virgin Mobile) in the US.09 January 2020
California’s Tough New Privacy Law and Its Biggest Challenges
The California Consumer Privacy Act has been adopted, but the largest U.S. privacy regulation fails to address how companies can know where their data is.
09 January 2020
Operationalizing Threat Intelligence at Scale in the SOC
Open source platforms such as the Malware Information Sharing Platform are well positioned to drive a community-based approach to intelligence sharing.09 January 2020
Hackers probe Citrix servers for weakness to remote code execution vulnerability
At least 80,000 organizations could be at risk.09 January 2020
7 Free Tools for Better Visibility Into Your Network
It's hard to protect what you don't know is there. These free tools can help you understand just what it is that you need to protect -- and need to protect yourself from.
09 January 2020
Rockwell Automation to Buy ICS Security Services Firm
Industrial control systems vendor plans to acquire Avnet Data Security, which provides penetration testing, assessments, training, and managed network and security services for the ICS sector.09 January 2020
Mozilla rushes out patch for Firefox zero‑day
The US cybersecurity agency warns that the critical vulnerability could allow attackers to take control of people's computers
The post Mozilla rushes out patch for Firefox zero‑day appeared first on WeLiveSecurity
09 January 2020
Mozilla rushes out patch for Firefox zero‑day
The US cybersecurity agency warns that the critical vulnerability could allow attackers to take control of people's computers
The post Mozilla rushes out patch for Firefox zero‑day appeared first on WeLiveSecurity
09 January 2020
Travelex customers left in cashless limbo, ICO not formally alerted to data theft claims
The ransomware attack has infuriated stranded customers and the ICO has still not seen an official data breach report.09 January 2020
TrickBot Adds Custom, Stealthy Backdoor to its Arsenal
The PowerTrick backdoor, which fetched yet other backdoors, is designed to help TrickBot evade detection.
09 January 2020
City of Las Vegas said it successfully avoided devastating cyber-attack
Security breach took place on January 7, but the city said it detected the intrusion in time to prevent any damage.09 January 2020
Kids and Education
One of the most effective methods you can use to protect kids online is to talk to them. The younger you start talking to them, and they to you, the better. Hold regular conversations about online safety issues, even going so far as to show them actual negative events that have taken place. If you don't know what your kids are doing, simply ask. Play the clueless parent and ask them to show you what the latest technologies are and how they use them. Quite often, kids love the idea of being the teacher and will open up.09 January 2020
15% of Ransomware Victims Paid Ransom in 2019, Quadrupling 2018
Increasing sophistication of ransomware attacks might be forcing victims to open their wallets. Click image to read more.
08 January 2020
New Iranian data wiper malware hits Bapco, Bahrain's national oil company
Saudi Arabia's cyber-security agency spots new Dustman data-wiping malware.08 January 2020
Las Vegas Suffers Cyberattack on First Day of CES
The attack, still under investigation, hit early in the morning of Jan. 7.08 January 2020
Drake Lyrics Used as Calling Card in Malware Attack
A hacker who apparently likes the musician Drake leaves lyrics from the artist's song In My Feelings behind in an attack that delivers malware Lokibot or Azorult.
08 January 2020
Developers Still Don't Properly Handle Sensitive Data
The top classes of vulnerabilities for 2019 indicate that developers still don't correctly sanitize inputs, nor protect passwords and keys as they should.08 January 2020