Cybersecurity News

Exploit Fully Breaks SHA-1, Lowers the Attack Bar

Users of GnuPG, OpenSSL and Git could be in danger from an attack that's practical for ordinary attackers to carry out.

09 January 2020

TrickBot Group Adds New PowerShell-Based Backdoor to Arsenal

PowerTrick is sort of a custom-version of PowerShell Empire and can be used to download additional malware, SentinelOne says.

09 January 2020

Online Skimming and Payment Security

On the blog, we cover basic questions with Christopher D. Roberti, Senior Vice President for Cyber, Intelligence, and Security Policy at the U.S. Chamber of Commerce and PCI SSC SVP, Engagement Officer for Market Intelligence and Stakeholder Engagement Troy Leach, about this growing threat to businesses across the U.S. and how to better protect yourself from this dangerous threat.

09 January 2020

AWS Issues 'Urgent' Warning for Database Users to Update Certs

Users of AWS Aurora, DocumentDB, and RDS databases must download and install a fresh certificate and rotate the certificate authority.

09 January 2020

4 Ring Employees Fired For Spying on Customers

Ring said that four employees were fired because they for inappropriate access to customers' connected video feeds.

09 January 2020

Unremovable malware found preinstalled on low-end smartphone sold in the US

Malwarebytes said it found malware pre-installed on Unimax U673c handsets, sold by Assurance Wireless (Virgin Mobile) in the US.

09 January 2020

California’s Tough New Privacy Law and Its Biggest Challenges

The California Consumer Privacy Act has been adopted, but the largest U.S. privacy regulation fails to address how companies can know where their data is.

09 January 2020

Operationalizing Threat Intelligence at Scale in the SOC

Open source platforms such as the Malware Information Sharing Platform are well positioned to drive a community-based approach to intelligence sharing.

09 January 2020

Hackers probe Citrix servers for weakness to remote code execution vulnerability

At least 80,000 organizations could be at risk.

09 January 2020

7 Free Tools for Better Visibility Into Your Network

It's hard to protect what you don't know is there. These free tools can help you understand just what it is that you need to protect -- and need to protect yourself from.

09 January 2020

Rockwell Automation to Buy ICS Security Services Firm

Industrial control systems vendor plans to acquire Avnet Data Security, which provides penetration testing, assessments, training, and managed network and security services for the ICS sector.

09 January 2020

Mozilla rushes out patch for Firefox zero‑day

The US cybersecurity agency warns that the critical vulnerability could allow attackers to take control of people's computers

The post Mozilla rushes out patch for Firefox zero‑day appeared first on WeLiveSecurity

09 January 2020

Mozilla rushes out patch for Firefox zero‑day

The US cybersecurity agency warns that the critical vulnerability could allow attackers to take control of people's computers

The post Mozilla rushes out patch for Firefox zero‑day appeared first on WeLiveSecurity

09 January 2020

Travelex customers left in cashless limbo, ICO not formally alerted to data theft claims

The ransomware attack has infuriated stranded customers and the ICO has still not seen an official data breach report.

09 January 2020

TrickBot Adds Custom, Stealthy Backdoor to its Arsenal

The PowerTrick backdoor, which fetched yet other backdoors, is designed to help TrickBot evade detection.

09 January 2020

City of Las Vegas said it successfully avoided devastating cyber-attack

Security breach took place on January 7, but the city said it detected the intrusion in time to prevent any damage.

09 January 2020

Kids and Education

One of the most effective methods you can use to protect kids online is to talk to them. The younger you start talking to them, and they to you, the better. Hold regular conversations about online safety issues, even going so far as to show them actual negative events that have taken place. If you don't know what your kids are doing, simply ask. Play the clueless parent and ask them to show you what the latest technologies are and how they use them. Quite often, kids love the idea of being the teacher and will open up.

09 January 2020

Exploit Fully Breaks SHA-1, Lowers the Attack Bar

TrickBot Group Adds New PowerShell-Based Backdoor to Arsenal

Online Skimming and Payment Security

AWS Issues 'Urgent' Warning for Database Users to Update Certs

4 Ring Employees Fired For Spying on Customers

Unremovable malware found preinstalled on low-end smartphone sold in the US

California’s Tough New Privacy Law and Its Biggest Challenges

Operationalizing Threat Intelligence at Scale in the SOC

Hackers probe Citrix servers for weakness to remote code execution vulnerability

7 Free Tools for Better Visibility Into Your Network

Rockwell Automation to Buy ICS Security Services Firm

Mozilla rushes out patch for Firefox zero‑day

Mozilla rushes out patch for Firefox zero‑day

Travelex customers left in cashless limbo, ICO not formally alerted to data theft claims

TrickBot Adds Custom, Stealthy Backdoor to its Arsenal

City of Las Vegas said it successfully avoided devastating cyber-attack

Kids and Education

15% of Ransomware Victims Paid Ransom in 2019, Quadrupling 2018

New Iranian data wiper malware hits Bapco, Bahrain's national oil company

Las Vegas Suffers Cyberattack on First Day of CES