Cybersecurity News


News Wrap, Coronavirus Edition: WFH Security Woes, Pwn2Own

News Wrap, Coronavirus Edition: WFH Security Woes, Pwn2Own Threatpost editors discuss this week's top news stories from COVID-19 themed malware attacks to Pwn2Own updates.
20 March 2020

News Wrap, Coronavirus Edition: WFH Security Woes, Pwn2Own

News Wrap, Coronavirus Edition: WFH Security Woes, Pwn2Own Threatpost editors discuss this week's top news stories from COVID-19 themed malware attacks to Pwn2Own updates.
20 March 2020

Hackers breach FSB contractor and leak details about IoT hacking project

Digital Revolution hacker group leaks details about "Fronton" an IoT botnet a contractor was allegedly building for the FSB, Russia's intelligence agency.
20 March 2020

Security Breach Disrupts Fintech Firm Finastra

Finastra, a company that provides a range of technology solutions to banks worldwide, said it was shutting down key systems in response to a security breach discovered Friday morning. The company's public statement and notice to customers does not mention the cause of the outage, but their response so far is straight out of the playbook for dealing with ransomware attacks.
20 March 2020

Proof of Concept Released for kr00k Wi-Fi Vulnerability

The code demonstrates a relatively simple method to exploit a vulnerability in more than a billion devices.
20 March 2020

Keep calm and carry on working (remotely)

How can employees stay motivated and productive while teleworking during the COVID-19 crisis?

The post Keep calm and carry on working (remotely) appeared first on WeLiveSecurity

20 March 2020

Zxyel Flaw Powers New Mirai IoT Botnet Strain

In February, hardware maker Zyxel fixed a zero-day vulnerability in its routers and VPN firewall products after KrebsOnSecurity told the company the flaw was being abused by attackers to break into devices. This week, security researchers said they spotted that same vulnerability being exploited by a new variant of Mirai, a malware strain that targets vulnerable Internet of Things (IoT) devices for use in large-scale attacks and as proxies for other cybercrime activity.
20 March 2020

WHO chief emails claiming to offer coronavirus drug advice plant keyloggers on your PC

Fraudsters are trying to capitalize on fears surrounding the illness in new phishing campaigns.
20 March 2020

Security Ratings Are a Dangerous Fantasy

They don't predict breaches, and they don't help people make valuable business decisions or make users any safer.
20 March 2020

Covid-19 Spurs Facial Recognition Tracking, Privacy Fears

Covid-19 Spurs Facial Recognition Tracking, Privacy Fears The coronavirus pandemic is creating a lucrative market for facial recognition manufacturers. But privacy issues need to be top of mind, tech experts warn.
20 March 2020

Covid-19 Spurs Facial Recognition Tracking, Privacy Fears

Covid-19 Spurs Facial Recognition Tracking, Privacy Fears The coronavirus pandemic is creating a lucrative market for facial recognition manufacturers. But privacy issues need to be top of mind, tech experts warn.
20 March 2020

New Mirai Variant ‘Mukashi’ Targets Zyxel NAS Devices

New Mirai Variant ‘Mukashi’ Targets Zyxel NAS Devices The botnet exploits a vulnerability discovered last month that can allow threat actors to remotely compromise and control devices.
20 March 2020

New Mirai Variant ‘Mukashi’ Targets Zyxel NAS Devices

New Mirai Variant ‘Mukashi’ Targets Zyxel NAS Devices The botnet exploits a vulnerability discovered last month that can allow threat actors to remotely compromise and control devices.
20 March 2020

Attack Surface, Vulnerabilities Increase as Orgs Respond to COVID-19 Crisis

In typical fashion, attackers are gearing up to take advantage of the surge in teleworking prompted by the pandemic.
20 March 2020

What to do if your Twitter account has been hacked

Losing access to your account can be stressful, but there are steps you can take to get it back – and to avoid getting hacked again

The post What to do if your Twitter account has been hacked appeared first on WeLiveSecurity

20 March 2020

Windows, Ubuntu, macOS, VirtualBox fall at Pwn2Own hacking contest

Team Fluoroacetate wins fourth tournament in a row.
20 March 2020

APT28 has been scanning vulnerable email servers for more than a year

Scans have been observed against webmail and Microsoft Exchange Autodiscover servers.
20 March 2020

US, Israel, South Korea, and China look at intrusive surveillance solutions for tracking COVID-19

As the coronavirus (COVID-19) outbreak spreads across the world, some governments are deploying or exploring the idea of deploying privacy-intrusive solutions for tracking the disease's spread.
19 March 2020

Misconfigured Elasticsearch Instance Exposes More Than 5 Billion Records

The collections contained information collected by a UK research firm on data breaches from the years 2012 to 2019.
19 March 2020

Coronavirus Poll Results: Cyberattacks Ramp Up, WFH Prep Uneven

Coronavirus Poll Results: Cyberattacks Ramp Up, WFH Prep Uneven A poll of Threatpost readers shows that security preparedness is uneven as organizations make an unprecedented transition to remote working.
19 March 2020