Cybersecurity News


Meetup Critical Flaws Allow ‘Group’ Takeover, Payment Theft

Meetup Critical Flaws Allow ‘Group’ Takeover, Payment Theft Researchers disclosed critical flaws in the popular Meetup service at Black Hat USA 2020 this week, which could allow takeover of Meetup "Groups."
03 August 2020

How Should I Securely Destroy/Discard My Devices?

How Should I Securely Destroy/Discard My Devices? While it is possible to do data destruction in-house, doing it correctly and at scale can be tedious.
03 August 2020

2gether hacked: €1.2m in cryptocurrency stolen, native tokens offered in exchange

Almost a third of funds stored in cryptocurrency investment accounts have been taken.
03 August 2020

GandCrab ransomware distributor arrested in Belarus

Creator of the actual ransomware still at large.
03 August 2020

Google: Eleven zero-days detected in the wild in the first half of 2020

A report from Google's Project Zero also looks at 2019 zero-day statistics and draws some interesting conclusions.
02 August 2020

Phishing campaigns, from first to last victim, take 21h on average

Most phishing victims experience a fraudulent transaction around 5 days after getting phished, new research shows.
01 August 2020

Author of FastPOS malware revealed, pleads guilty

A 30-year-old Moldovan man admitted this month to creating the FastPOS malware.
01 August 2020

How the FBI tracked down the Twitter hackers

A timeline of the Twitter hack composed from court documents published today.
31 July 2020

Three Charged in July 15 Twitter Compromise

Three individuals have been charged for their alleged roles in the July 15 hack on Twitter, an incident that resulted in Twitter profiles for some of the world's most recognizable celebrities, executives and public figures sending out tweets advertising a bitcoin scam. 
31 July 2020

4 Unpatched Bugs Plague Grandstream ATAs for VoIP Users

4 Unpatched Bugs Plague Grandstream ATAs for VoIP Users The flaws have been confirmed by Grandstream, but no firmware update has yet been issued.
31 July 2020

3 Arrested for Massive Twitter Breach

Three individuals aged 17, 19, and 22 have been charged for their alleged roles in the massive July 15 Twitter attack.
31 July 2020

Authorities Arrest Alleged 17-Year-Old ‘Mastermind’ Behind Twitter Hack

Authorities Arrest Alleged 17-Year-Old ‘Mastermind’ Behind Twitter Hack Three have been arrested in alleged connection with the recent high-profile Twitter hack - including a 17-year-old teen from Florida who is the reported "mastermind" behind the attack.
31 July 2020

Florida teen arrested for orchestrating Twitter hack

Main suspect identified as Graham Ivan Clark, a 17-year-old teen from Tampa, Florida.
31 July 2020

New Initiative Links Cybersecurity Pros to Election Officials

A University of Chicago Harris School of Public Policy initiative will build a database of cybersecurity volunteers.
31 July 2020

CWT Travel Agency Faces $4.5M Ransom in Cyberattack, Report

CWT Travel Agency Faces $4.5M Ransom in Cyberattack, Report The corporate-travel leader has confirmed an attack that knocked systems offline.
31 July 2020

Anti-NATO Disinformation Campaign Leveraged CMS Compromises

Anti-NATO Disinformation Campaign Leveraged CMS Compromises Researchers uncovered a disinformation campaign aiming to discredit NATO via fake news content on compromised news websites.
31 July 2020

Twitter: Employees Compromised in Phone Spear-Phishing Attack

The attack earlier this month started with a spear-phishing attack targeting Twitter employees, the company says in a new update.
31 July 2020

Week in security with Tony Anscombe

New ESET Threat Report is out – Defending against Thunderspy attacks – Thousands of databases wiped in Meow attacks

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

31 July 2020

Twitter breach: Staff tricked by ‘phone spear phishing’

The attackers exploited the human factor to gain access to Twitter’s internal systems and the accounts of some of the world’s most prominent figures

The post Twitter breach: Staff tricked by ‘phone spear phishing’ appeared first on WeLiveSecurity

31 July 2020

What's Next for PCI SSC Mobile Payments Security Standards?

 

PCI SSC has published Software-based PIN-entry on COTS (SPoC)™ v1.1, Contactless Payments on COTS (CPoC™) v1.0 and has updated Technical FAQs for both. So, what is next for new standards development in mobile?

31 July 2020