Cybersecurity News


WannaCryptor remains a global threat three years on

WannaCryptor is still alive and kicking, so much so that it sits atop the list of the most commonly detected ransomware families

The post WannaCryptor remains a global threat three years on appeared first on WeLiveSecurity

12 May 2020

6 Free Cybersecurity Training and Awareness Courses

6 Free Cybersecurity Training and Awareness Courses Most are designed to help organizations address teleworking risks related to COVID-19 scams.
12 May 2020

Texas courts slammed by ransomware attack

Officials say they will not bow to any blackmail or ransom demands.
12 May 2020

WordPress plugin Page Builder by SiteOrigin patched against code execution attacks

The vulnerabilities impacted over one million websites.
12 May 2020

Lukas Stefanko: How we fought off a DDoS attack from a mobile botnet

Hot on the heels of his research into an attack that attempted to take down ESET’s website, Lukas Stefanko sheds more light on threats posed by mobile botnets

The post Lukas Stefanko: How we fought off a DDoS attack from a mobile botnet appeared first on WeLiveSecurity

12 May 2020

Android app promised to serve news updates, served ESET with a DDoS attack instead

The app managed to slither into Google Play and was downloaded at least 50,000 times.
12 May 2020

Astaroth malware hides command servers in YouTube channel descriptions

Astaroth continues to evolve into a dangerous threat. Luckily, it's only spreading in Brazil only, right now.
12 May 2020

Thunderbolt Vulnerabilities Could Threaten Millions of PCs

Attackers with physical access to targeted machines could exploit these flaws to access and copy data within minutes, researchers say.
11 May 2020

Astaroth’s New Evasion Tactics Make It ‘Painful to Analyze’

Astaroth’s New Evasion Tactics Make It ‘Painful to Analyze’ The infostealer has gone above and beyond in its new anti-analysis and obfuscation tactics.
11 May 2020

Unpatched Bugs in Oracle iPlanet Opens Door to Info-Disclosure, Injection

Unpatched Bugs in Oracle iPlanet Opens Door to Info-Disclosure, Injection CVE-2020-9315 and CVE-2020-9314 in iPlanet version 7 will not receive patches.
11 May 2020

Data Breaches Declined in Q1 2020 Over Q1 2019 -- Or Did They?

Numbers are down, but that may only be because organizations have been too busy fighting COVID-19-related cyberthreats to notice compromises, Risk Based Security says.
11 May 2020

Iran reports failed cyber-attack on Strait of Hormuz port

Iranian officials said hackers infiltrated and damaged a small number of computers at the port of Shahid Rajaei in the city of Bandar Abbas.
11 May 2020

Researchers Analyze Oracle WebLogic Flaw Under Attack

Trend Micro researchers explain how attackers bypassed the patch for a deserialization vulnerability in the Oracle WebLogic Server.
11 May 2020

Ransomware Hit ATM Giant Diebold Nixdorf

Diebold Nixdorf, a major provider of automatic teller machines (ATMs) and payment technology to banks and retailers, recently suffered a ransomware attack that disrupted some operations. The company says the hackers never touched its ATMs or customer networks, and that the intrusion only affected its corporate network.
11 May 2020

Package delivery giant Pitney Bowes confirms second ransomware attack in 7 months

Pitney Bowes network infected with Maze ransomware, after the company got hit by the Ryuk gang in October last year.
11 May 2020

Millions of Thunderbolt-Equipped Devices Open to ‘ThunderSpy’ Attack

Millions of Thunderbolt-Equipped Devices Open to ‘ThunderSpy’ Attack If an attacker can get his hands on a Thunderbolt-equipped device for five minutes, he can launch a new data-stealing attack called "Thunderspy."
11 May 2020

Sphinx Malware Returns to Riddle U.S. Targets

Sphinx Malware Returns to Riddle U.S. Targets The banking trojan has upgraded and is seeing a resurgence on the back of coronavirus stimulus payment themes.
11 May 2020

Over 160 million user records put up for sale on the dark web

Eleven companies, ranging from online marketplaces to news websites, have had their user databases poached

The post Over 160 million user records put up for sale on the dark web appeared first on WeLiveSecurity

11 May 2020

Rule of Thumb: USB Killers Pose Real Threat

They look just like a USB thumb drive, but instead of storing data, they can be used to destroy it and the device the data is saved on.
11 May 2020

Breaking news? App promises news feeds, brings DDoS attacks instead

After being targeted by an Android DDoS app, ESET seized the opportunity to analyze the attack and to help put an end to it

The post Breaking news? App promises news feeds, brings DDoS attacks instead appeared first on WeLiveSecurity

11 May 2020