Cybersecurity News


PCI DSS v4.0: Anticipated Timelines and Latest Updates

 

Industry feedback, together with the changes in payments, technology, and security, is driving our approach to PCI DSS v4.0. In discussions with industry stakeholders, we have received a number of questions about PCI DSS v4.0. Below we interview Lauren Holloway, Director, Data Security Standards, who answers some key questions about what is happening with PCI DSS v4.0.

29 May 2020

Digital Distancing with Microsegmentation

Physical distancing has blunted a virus's impact; the same idea can be applied to computers and networks to minimize breaches, attacks, and infections.
29 May 2020

All Links Are Safe ... Right?

Today is a perfect day for a security breach.
29 May 2020

Request for Comments: PIN v3.1 Standard Draft

 

From 29 May 2020 to 30 June 2020, PCI SSC stakeholders can participate in a Request for Comments (RFC) on PIN v3.1 Standard draft.

29 May 2020

‘Hack-For-Hire’ Firms Spoof WHO To Target Google Credentials

‘Hack-For-Hire’ Firms Spoof WHO To Target Google Credentials Google TAG report reveals that "hack for hire" firms are tapping into the coronavirus pandemic via WHO phishing lures.
29 May 2020

Zscaler Buys Edge Networks

The acquisition is Zscaler's second major buy this quarter.
29 May 2020

ACLU Sues Clearview AI Over Faceprint Collection, Sale

ACLU Sues Clearview AI Over Faceprint Collection, Sale Watchdog group said company has violated the Illinois BIPA and ‘will end privacy as we know it’ without intervention.
29 May 2020

NCA launches UK ad campaign to divert kids searching for cybercrime tools

DDoS-for-hire and Trojan-related searches are on the agency’s radar.
29 May 2020

Judge demands Capital One release Mandiant cyberforensic report on data breach

Attorneys suing the company will now have access to the report in preparation for a potential trial.
29 May 2020

GitHub warns Java developers of new malware poisoning NetBeans projects

The malware's end goal was to install a remote access trojan and grant hackers access to highly sensitive workstations were sensitive projects were being developed.
29 May 2020

A Rogues' Gallery of MacOS Malware

A Rogues' Gallery of MacOS Malware MacOS isn't immune from malware. Being prepared means understanding the nature of the worst threats a security team is likely to see attacking Macs in the enterprise.
28 May 2020

GitHub Supply Chain Attack Uses Octopus Scanner Malware

Octopus Scanner is a new malware used to compromise 26 open source projects in a massive GitHub supply chain attack.
28 May 2020

Inside the Hoaxcalls Botnet: Both Success and Failure

Inside the Hoaxcalls Botnet: Both Success and Failure The DDoS group sets itself apart by using exploits -- but it doesn't always pan out.
28 May 2020

Researchers ID Hacktivist Who Defaced Nearly 5,000 Websites

Opsec mistakes lead a Check Point researcher to an individual in Brazil who was behind a longtime hacking campaign.
28 May 2020

Google to enable the Chrome anti-notification spam system in July 2020

Chrome will block sites from showing notification spam by default. Has been an opt-in feature since February.
28 May 2020

Hackers Compromise Cisco Servers Via SaltStack Flaws

Hackers Compromise Cisco Servers Via SaltStack Flaws Attackers compromised six Cisco VIRL-PE servers that are affected by critical SaltStack vulnerabilities.
28 May 2020

Valak Malware Retasked to Steal Data from US, German Firms

Once considered a loader for other malware, Valak regularly conducts reconnaissance and steals information and credentials, new analysis shows.
28 May 2020

Fortune 500 company NTT discloses security breach

Japanese telecommunications giant NTT says hackers breached its internal network and stole data on 621 customers.
28 May 2020

NSA Warns Russia's 'Sandworm' Group Is Targeting Email Servers

The Russian military group has been exploiting a flaw in the Exim mail transfer agent since last August, the NSA reports.
28 May 2020

Cisco discloses security breach that impacted VIRL-PE infrastructure

Hackers used vulnerabilities in the SaltStack data center software to breach six Cisco servers.
28 May 2020