Cybersecurity News


Congress wants to know what commercial spyware other countries are using

Intelligence funding bill for 2021 to mandate DNI to submit report to Congress about surveillance vendors and the countries that use spyware.
11 June 2020

Podcast: Would You Use A Contact-Tracing Coronavirus App?

Podcast: Would You Use A Contact-Tracing Coronavirus App? Contact tracing apps for the coronavirus are being developed and tested globally as the world starts to re-open. Are the apps worth using to flatten the curve? Or do data privacy worries trump public health?
11 June 2020

'Highly Active' APT Group Targeting Microsoft Office, Outlook

The Gamaredon group has ramped up activity in recent months and makes no effort to stay under the radar, researchers report.
11 June 2020

Attack Surface Area Larger Than Most Businesses Believe

Workers are not the only outside-the-perimeter security risk. Companies have a variety of vulnerable Internet-facing resources exposing their business to risk, study finds.
11 June 2020

What COVID-19 Teaches Us About Social Engineering

Unless we do something proactively, social engineering's impact is expected to keep getting worse as people's reliance on technology increases and as more of us are forced to work from home.
11 June 2020

Hackers breached A1 Telekom, Austria's largest ISP

A1 needed more than six months to kick the hackers off its network. Whsitleblower claims the intruders were Chinese hackers.
11 June 2020

Gamaredon group grows its game

Active APT group adds cunning remote template injectors for Word and Excel documents; unique Outlook mass-mailing macro

The post Gamaredon group grows its game appeared first on WeLiveSecurity

11 June 2020

Microsoft discovers cryptomining gang hijacking ML-focused Kubernetes clusters

Attacks targeted Kubeflow servers that left their administration panel exposed on the internet.
11 June 2020

Congress asks Juniper for the results of its 2015 NSA backdoor investigation

Thirteen US government officials ask Juniper to publish the findings of its 2015 investigation.
10 June 2020

Senators ask Juniper for the results of its 2015 NSA backdoor investigation

Thirteen US senators ask Juniper to publish the findings of its 2015 investigation.
10 June 2020

When Your Biggest Security and Privacy Threats Come From the Ones You Love

Research examines the risks and design challenges of accounting for privacy threats in intimate relationships.
10 June 2020

Misconfigured Databases Targeted Hours After Deployment

Researchers left a poorly configured database open on the Internet to learn who would connect to it and what they would steal.
10 June 2020

Rate of Ransomware Attacks in Healthcare Slows in H1 2020

But lull is unlikely to continue for long, some security experts say.
10 June 2020

Employees Stream Entertainment on Enterprise Systems During Pandemic

Employees aren't limiting use of their work computers to business purposes while working from home.
10 June 2020

Helping Remote Workers Overcome Remote Attacks

Helping Remote Workers Overcome Remote Attacks Because remote workers' devices are all connected to a home network, they don’t even need to be attacked directly. Instead, attackers have multiple avenues of attack that can be exploited.
10 June 2020

Snake Ransomware Delivers Double-Strike on Honda, Energy Co.

Snake Ransomware Delivers Double-Strike on Honda, Energy Co. The ICS/SCADA-focused malware is likely behind a duo of attacks this week, on Honda and a South American energy company, researchers said.
10 June 2020

Vast hack‑for‑hire scheme targeted thousands of people, organizations

An obscure Indian company operated a scheme targeting banks, non-profits, politicians and journalists all over the world, a report says

The post Vast hack‑for‑hire scheme targeted thousands of people, organizations appeared first on WeLiveSecurity

10 June 2020

Critical Intel Flaws Fixed in Active Management Technology

Critical Intel Flaws Fixed in Active Management Technology Two critical flaws in Intel AMT, which could enable privilege escalation, were patched along with 20 other bugs in its June security update.
10 June 2020

The Telehealth Attack Surface

Amid the surge in digital healthcare stemming from the coronavirus pandemic, security is taking a backseat to usability.
10 June 2020

What to Know About the Approved Scanning Vendor Program

 

New vulnerabilities, security holes and bugs are being discovered daily. It is vital to have Internet-facing systems scanned regularly for vulnerabilities to help identify new threats so they can be addressed as soon as possible. Gill Woodcock, VP Global Head of Programs, answers common questions about the Approved Scanning Vendor program.

10 June 2020