Cybersecurity News


DHS's CISA Warns of New Critical Infrastructure Ransomware Attack

An attack on a natural gas compression facility sent the operations offline for two days.
19 February 2020

SMS Attack Spreads Emotet, Steals Bank Credentials

SMS Attack Spreads Emotet, Steals Bank Credentials A new Emotet campaign is spread via SMS messages pretending to be from banks and may have ties to the TrickBot trojan.
19 February 2020

Hackers Were Inside Citrix for Five Months

Networking software giant Citrix Systems says malicious hackers were inside its networks for five months between 2018 and 2019, making off with personal and financial data on company employees, contractors, interns, job candidates and their dependents. The disclosure comes almost a year after Citrix acknowledged that digital intruders had broken in by probing its employee accounts for weak passwords.
19 February 2020

Hamas Ensnares Israeli Soldiers with Pretty ‘Ladies’

Hamas Ensnares Israeli Soldiers with Pretty ‘Ladies’ The third catfish attempt in three years from the Palestinian militant group adds a few technical advances to the mix.
19 February 2020

Don't Let Iowa Bring Our Elections Back to the Stone Age

The voting experience should be the same whether the vote is in person, by mail, or over the Internet. Let's not allow one bad incident stop us from finding new ways to achieve this.
19 February 2020

Cynet Offers Free Threat Assessment for Mid-Sized and Large Organizations

Cynet Offers Free Threat Assessment for Mid-Sized and Large Organizations Cynet Free Threat Assessment spotlights critical, exposed attack surfaces and provides actionable knowledge of attacks that are currently alive and active.
19 February 2020

Latest Tax Scams Target Apps and Tax-Prep Websites

Latest Tax Scams Target Apps and Tax-Prep Websites Traditional e-mail based scams are also in the mix this year, one in particular that uses the legitimate app TeamViewer to take over victims’ systems.
19 February 2020

Hackers exploit zero-day in WordPress plugin to create rogue admin accounts

Attacks detected targeting sites running the ThemeREX Addons plugin.
19 February 2020

What DNS encryption means for enterprise threat hunters

The dawn of the DNS over HTTPS era is putting business security and SOC teams to the challenge

The post What DNS encryption means for enterprise threat hunters appeared first on WeLiveSecurity

19 February 2020

Chinese hackers have breached online betting and gambling sites

Hacks confirmed at gambling and betting websites in Southeast Asia, rumors of other hacks in Europe and the Middle East.
18 February 2020

The Trouble with Free and Open Source Software

Insecure developer accounts, legacy software, and nonstandard naming schemes are major problems, Linux Foundation and Harvard study concludes.
18 February 2020

Microsoft has a subdomain hijacking problem

Spammers hijack Microsoft subdomains to advertise poker casinos. Many other subdomains have been vulnerable for years.
18 February 2020

FC Barcelona Suffers Likely Credential-Stuffing Attack on Twitter

FC Barcelona Suffers Likely Credential-Stuffing Attack on Twitter OurMine took over the Spanish powerhouse soccer team's Twitter account.
18 February 2020

Dell Sells RSA to Private Equity Firm for $2.1B

Deal with private equity entity Symphony Technology Group revealed one week before the security industry's RSA Conference in San Francisco.
18 February 2020

Ring Mandates 2FA After Rash of Hacks

Ring Mandates 2FA After Rash of Hacks Ring outlined new security and data privacy measures, Tuesday, following backlash of the connected doorbell in the past year.
18 February 2020

Iran-Backed APTs Collaborate on 3-Year ‘Fox Kitten’ Global Spy Campaign

Iran-Backed APTs Collaborate on 3-Year ‘Fox Kitten’ Global Spy Campaign APT34/OilRig and APT33/Elfin have established a highly developed and persistent infrastructure that could be converted to distribute destructive wiper malware.
18 February 2020

Lumu to Emerge from Stealth at RSAC

The new company will focus on giving customers earlier indications of network and server compromise.
18 February 2020

Cyber Fitness Takes More Than a Gym Membership & a Crash Diet

Make cybersecurity your top priority, moving away from addressing individual problems with Band-Aids and toward attaining a long-term cyber-fitness plan.
18 February 2020

DHS says ransomware hit US gas pipeline operator

Operations halted for two days at unnamed US natural gas compression facility.
18 February 2020

Encoding Stolen Credit Card Data on Barcodes

Crooks are constantly dreaming up new ways to use and conceal stolen credit card data. According to the U.S. Secret Service, the latest scheme involves stolen card information embedded in barcodes affixed to phony money network rewards cards. The scammers then pay for merchandise by instructing a cashier to scan the barcode and enter the expiration date and card security code.
18 February 2020