Cybersecurity News


Moobot Milks Tenda Router Bugs for Propagation

Moobot Milks Tenda Router Bugs for Propagation An analysis of the campaign revealed Cyberium, an active Mirai-variant malware hosting site.
14 June 2021

Volkswagen Vendor Exposed Data of 3.3m Drivers

Volkswagen Vendor Exposed Data of 3.3m Drivers Nearly all of the leaked data was for owners or wannabe owners of the automaker’s luxury brand of Audis, now at greater risk for phishing, ransomware or car theft.
14 June 2021

Know Thy Enemy: Fighting Half-Blind Against Ransomware Won't Work

We lack reliable, representative, actionable data about ransomware's actual scope, scale, and impact. The Ransom Incident Response Network could change that.
14 June 2021

Name That Toon: Sight Unseen

Name That Toon: Sight Unseen Feeling creative? Submit your caption in the comments, and our panel of experts will reward the winner with a $25 Amazon gift card.
14 June 2021

Colonial Pipeline Cyberattack Proves a Single Password Isn't Enough

Since the attack, it's been revealed that it was down to a single password. Yes, ransomware needs to be on your radar -- but a focus on credentials is vital.
14 June 2021

Dentist charged by SEC for digital token project fraud, pump-and-dump AI stock scheme

The “adviser” was allegedly responsible for three securities frauds.
14 June 2021

Volkswagen, Audi disclose data breach impacting over 3.3 million customers, interested buyers

An unsecured treasure trove of data used for sales was exposed online.
14 June 2021

Vishing: What is it and how do I avoid getting scammed?

How do vishing scams work, how do they impact businesses and individuals, and how can you protect yourself, your family and your business?

The post Vishing: What is it and how do I avoid getting scammed? appeared first on WeLiveSecurity

14 June 2021

Codecov to retire the Bash script responsible for supply chain attack wave

A new uploader, shipped as a NodeJS executable, has been introduced in its place.
14 June 2021

Ransomware

Ransomware is a special type of malware. Once it infected your computer, it encrypts all of your files and demands you pay a ransom if you want your files back. Be suspicious of any emails trying to trick you into opening infected attachments or click on malicious links, common sense is your best defense. In addition. backups are often the only way you can recover from ransomware.
14 June 2021

Unpatched Bugs Found Lurking in Provisioning Platform Used with Cisco UC

Unpatched Bugs Found Lurking in Provisioning Platform Used with Cisco UC A trio of security flaws open the door to remote-code execution and a malware tsunami.
11 June 2021

Trickbot Investigation Shows Details of Massive Cybercrime Effort

Nearly a score of cybercriminals allegedly worked together to create the Trickbot malware and deploy it against more than a million users, an unsealed indictment claims.
11 June 2021

McDonald's Data Breach Exposed Business & Customer Data

An investigation has revealed company data has been breached in the United States, South Korea, and Taiwan.
11 June 2021

Baby Clothes Giant Carter’s Leaks 410K Customer Records

Baby Clothes Giant Carter’s Leaks 410K Customer Records Purchase automation software delivered shortened URLs without protections.
11 June 2021

REvil Hits US Nuclear Weapons Contractor: Report

REvil Hits US Nuclear Weapons Contractor: Report "We hereby keep a right (sic) to forward all of the relevant documentation and data to military agencies of our choise (sic)" REvil reportedly wrote.
11 June 2021

Cyberpunk 2077 Hacked Data Circulating Online

Cyberpunk 2077 Hacked Data Circulating Online CD Projekt Red confirmed that employee and game-related data appears to be floating around the cyber-underground, four months after a hack on the Witcher and Cyberpunk 2077 developer.
11 June 2021

Details Emerge on How Gaming Giant EA Was Hacked

Hacking group stole source code to FIFA 21 and the company's Frostbite engine.
11 June 2021

Many Mobile Apps Intentionally Using Insecure Connections for Sending Data

A new analysis of iOS and Android apps released to Apple's and Google's app stores over the past five years found many to be deliberately breaking HTTPS protections.
11 June 2021

Monumental Supply-Chain Attack on Airlines Traced to State Actor

Monumental Supply-Chain Attack on Airlines Traced to State Actor Airlines are warned to scour networks for traces of the campaign, likely the work of APT41, lurking in networks.
11 June 2021

Secure Access Trade-offs for DevSecOps Teams

Thanks to recent advancements in access technologies, everyone can apply identity-based authentication and authorization and zero-trust principles for their computing resources.
11 June 2021