Cybersecurity News
Phish of GoDaddy Employee Jeopardized Escrow.com, Among Others
A spear-phishing attack this week hooked a customer service employee at GoDaddy.com, the world's largest domain name registrar, KrebsOnSecurity has learned. The incident gave the phisher the ability to view and modify key customer records, access that was used to briefly hijack domains for a half-dozen GoDaddy customers, including transaction brokering site escrow.com.31 March 2020
Defense Evasion Dominated 2019 Attack Tactics
Researchers mapped tactics and techniques to the MITRE ATT&CK framework to determine which were most popular last year.31 March 2020
Watering-Holes Target Asian Ethnic Victims with Flash Update Decoy
About 10 compromised websites employ a multi-stage, targeted effort to fingerprint and compromise victims.
31 March 2020
FCC tells US telcos to implement caller ID authentication by June 30, 2021
FCC says all US telcos must use the new SHAKEN/STIR protocol to support caller ID authentication by June, next year.31 March 2020
Researchers Uncover Unsophisticated - But Creative - Watering-Hole Attack
Holy Water campaign is targeting users of a specific religious and ethnic group in Asia, Kaspersky says.31 March 2020
Marriott discloses new data breach impacting 5.2 million hotel guests
Marriott says a hacker gained access to the accounts of two employees.31 March 2020
COVID-19: Latest Security News & Commentary
Check out Dark Reading's updated, exclusive news and commentary surrounding the coronavirus pandemic.
31 March 2020
Why Third-Party Risk Management Has Never Been More Important
Given today's coronavirus pandemic, the need for companies to collect cybersecurity data about their business partners is more critical than ever. Here's how to start.31 March 2020
Latest Security News & Commentary about COVID-19
Check out Dark Reading's updated, exclusive news and commentary surrounding the coronavirus pandemic.31 March 2020
Data from 5.2M Marriott Loyalty Program Members Hit by Breach
The data was breached through the credentials of two franchisee employees.31 March 2020
Patching Poses Security Problems with Move to More Remote Work
Security teams were not ready for the wholesale move to remote work and the sudden expansion of the attack surface area, experts say.31 March 2020
Zoom Scrutinized As Security Woes Mount
The New York Attorney General has inquired about Zoom's data security strategy, as the conferencing platform comes under heavy scrutiny for its privacy policies.
31 March 2020
8-Year-Old VelvetSweatshop Bug Resurrected in LimeRAT Campaign
An old RAT learns an old trick.
31 March 2020
Palo Alto Networks to Buy CloudGenix for $420M
Palo Alto Networks plans to integrate CloudGenix's SD-WAN technology into its Prisma SASE platform following the deal.31 March 2020
Millions of Guests Impacted in Marriott Data Breach, Again
The second breach in less than 24 months stemmed from employee account compromises.
31 March 2020
Does the 2020 Online Census Account for Security Risk?
Experts discuss the security issues surrounding a census conducted online and explain how COVID-19 could exacerbate the risk.31 March 2020
How Much Downtime Can Your Company Handle?
Why every business needs cyber resilience and quick recovery times.31 March 2020
Limited-Time Free Offers to Secure the Enterprise Amid COVID-19
These products and services could be of immediate help to infosec pros now protecting their organizations while working from home.
31 March 2020
Covid-19 Poll Results: One in Four Prioritize Health Over Privacy
An informal Threatpost reader poll shows the majority of site visitors are privacy absolutists. But attitudes shift when the trade off is saving lives.
31 March 2020
Have you backed up your smartphone lately?
With World Backup Day upon us, we walk you through the ways to back up your iPhone or Android phone so that your personal data remains safe
The post Have you backed up your smartphone lately? appeared first on WeLiveSecurity
31 March 2020