Cybersecurity News
80K Retail WooCommerce Sites Exposed by Plugin XSS Bug

Stealthy ‘WIRTE’ Gang Targets Middle Eastern Governments

Widespread ‘Smishing’ Campaign Defrauds Iranian Android Users

Jumping the air gap: 15 years of nation‑state effort
ESET researchers studied all the malicious frameworks ever reported publicly that have been used to attack air-gapped networks and are releasing a side-by-side comparison of their most important TTPs
The post Jumping the air gap: 15 years of nation‑state effort appeared first on WeLiveSecurity
How Decryption of Network Traffic Can Improve Security

Lloyd’s Carves Out Cyber-Insurance Exclusions for State-Sponsored Attacks

Finland Faces Blizzard of FluBot-Spreading Text Messages

Panasonic’s Data Breach Leaves Open Questions

Paving the way: Inspiring Women in Payments - A podcast featuring Coalfire
In this edition of our podcast, the PCI Security Standards Council is pleased to host a panel discussion featuring four women from Coalfire, a leading provider of IT advisory services for security in a variety of industries, including payments.
Yanluowang Ransomware Tied to Thieflock Threat Actor

Printing Shellz: Critical bugs impacting 150 HP printer models patched
"Cross-site printing attacks" feature in the research.Anti-virus firm McAfee seems to be sending junk emails

I received a flood of renewal demands and unsubscribing doesn’t work
I cancelled my McAfee anti-virus subscription earlier this year when I discovered it had been double charging me. It refunded only the current year and led me on a wild goose chase to recover the previous two years’ money; I eventually gave up.
Now that my subscription period has ended, it is bombarding me with renewal demand emails several times a day. This weekend I received 15.
Continue reading...IKEA Hit by Email Reply-Chain Cyberattack

Researchers Flag 300K Banking Trojan Infections from Google Play in 4 Months

ScarCruft APT Mounts Desktop/Mobile Double-Pronged Spy Attacks

Unpatched Windows Zero-Day Allows Privileged File Access

More than 1,000 arrested in global crackdown on online fraud
The INTERPOL-led operation involved law enforcement from 20 countries and led to the seizure of millions of dollars in illicit gains
The post More than 1,000 arrested in global crackdown on online fraud appeared first on WeLiveSecurity
Shape-Shifting ‘Tardigrade’ Malware Hits Vaccine Makers

The Internet is Held Together With Spit & Baling Wire
Imagine being able to disconnect or redirect Internet traffic destined for some of the world's largest companies -- just by spoofing an email. This is the nature of a threat vector recently removed by a Fortune 500 firm that operates one of the world's largest Internet backbones.Week in security with Tony Anscombe
How scammers take advantage of supply chain shortages – Tips for safe online shopping this holiday season – Steps to take after receiving a data breach notice
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity