Cybersecurity News
Health Prognosis on the Security of IoMT Devices? Not Good
As more so-called Internet of Medical Things devices go online, hospitals and medical facilities face significant challenges in securing them from attacks that could endanger patients' lives.25 April 2020
WHO Confirms Email Credentials Leak
Washington Post had identified the group as one among several whose passwords and emails were dumped online and abused.24 April 2020
SAS@home Virtual Summit Showcases New Threat Intel, Industry Changes

24 April 2020
Latest Apple Text-Bomb Crashes iPhones via Message Notifications

24 April 2020
MSI Utility Vulnerability Based on Missing Quotation Marks
The lack of quotation marks in the way a service called an application left MSI computers open to persistent privilege escalation attacks.24 April 2020
Symlink race bugs discovered in 28 antivirus products
Most products have patched, researchers said, without naming the ones who skipped.24 April 2020
Apple Downplays Threat Posed by Newly Disclosed Zero-Days in iOS
Bugs don't pose an immediate threat, and there is no evidence they were exploited, as ZecOps claimed earlier this week, Apple says.24 April 2020
Cybercrime Group Steals $1.3M from Banks
A look at how the so-called Florentine Banker Group lurked for two months in a sophisticated business email compromise attack on Israeli and UK financial companies.24 April 2020
Find Your Framework: Thinking Fast and Slow
Economist Daniel Kahneman's classic book has lessons for those in security, especially now.24 April 2020
News Wrap: Nintendo Account Hacks, Apple Zero Days, NFL Security

24 April 2020
Unproven Coronavirus Therapy Proves Cash Cow for Shadow Pharmacies
Many of the same shadowy organizations that pay people to promote male erectile dysfunction drugs via spam and hacked websites recently have enjoyed a surge in demand for medicines used to fight malaria, lupus and arthritis, thanks largely to unfounded suggestions that these therapies can help fight the COVID-19 pandemic. A review of the sales figures from some of the top pharmacy affiliate programs suggests sales of drugs containing hydroxychloroquine rivaled that of their primary product -- generic Viagra and Cialis -- and that this as-yet-unproven Coronavirus treatment accounted for as much as 25 to 30 percent of all sales over the past month.24 April 2020
Sextortion Campaigns Net Cybercriminals Nearly $500K in Five Months
Tracking the cryptocurrency paid by victims finds that, even with a low rate of payout, the scheme netted a cool half million for the various groups involved.24 April 2020
Facebook-NSO lawsuit: Hundreds of WhatsApp attacks linked to one IP address
Facebook fights to keep the lawsuit on track after NSO filed a motion to dismiss the case earlier this month.24 April 2020
Narrow the Scope of Compliance
Many organizations are doing more than they need regarding compliance.24 April 2020
Nintendo Confirms Breach of 160,000 Accounts

24 April 2020
Week in security with Tony Anscombe
ESET research into vulnerabilities in smart home hubs – Discovering and disrupting a botnet in Latin America – Digital assistants in the work-from-home era
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
24 April 2020
Apple Pushes Back Against Zero-Day Exploit Claims

24 April 2020
Nintendo says 160,000 users impacted in recent account hacks
Nintendo disconnects NNID legacy login system from main Nintendo profiles after massive account hijacking campaign.24 April 2020
Apple disputes recent iOS zero-day claim
Apple says it "thoroughly investigated" a recent report about three iOS Mail bugs but "found no evidence they were used against customers."24 April 2020
Stuck at home, UK lockdown DIY fans slammed with Robert Dyas data breach
The hardware store is the latest victim of card-skimmer malware.24 April 2020