Cybersecurity News
Twitter: Employees Compromised in Phone Spear-Phishing Attack
The attack earlier this month started with a spear-phishing attack targeting Twitter employees, the company says in a new update.31 July 2020
Week in security with Tony Anscombe
New ESET Threat Report is out – Defending against Thunderspy attacks – Thousands of databases wiped in Meow attacks
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
31 July 2020
Twitter breach: Staff tricked by ‘phone spear phishing’
The attackers exploited the human factor to gain access to Twitter’s internal systems and the accounts of some of the world’s most prominent figures
The post Twitter breach: Staff tricked by ‘phone spear phishing’ appeared first on WeLiveSecurity
31 July 2020
What's Next for PCI SSC Mobile Payments Security Standards?
PCI SSC has published Software-based PIN-entry on COTS (SPoC)™ v1.1, Contactless Payments on COTS (CPoC™) v1.0 and has updated Technical FAQs for both. So, what is next for new standards development in mobile?
31 July 2020
3 Ways Social Distancing Can Strengthen your Network
Security teams can learn a lot from the current pandemic to make modern hybrid business networks stronger and more resilient. Here's how.31 July 2020
'Hidden Property Abusing' Allows Attacks on Node.js Applications
A team of researchers from Georgia Tech find a new attack technique that targets properties in Node.js and plan to publicly release a tool that has already identified 13 new vulnerabilities.31 July 2020
Twitter: Epic Account Hack Caused by Mobile Spearphishing Scam
Hackers "mislead certain employees" to gain access to internal tools to take over high-profile accounts and push out a Bitcoin scam.
31 July 2020
BootHole fixes causing boot problems across multiple Linux distros
Debian, Ubuntu, Red Hat, CentOS, Fedora users reports issues with booting or dual-booting their devices.31 July 2020
Black Hat USA 2020 Preview: Election Security, COVID Disinformation and More
Threatpost editors break down the top themes, speakers and sessions to look out for this year at Black Hat 2020 - from election security to remote work and the pandemic.
31 July 2020
China arrests over 100 people suspected of involvement in PlusToken cryptocurrency scam
Many of the alleged fraudsters had previously fled overseas.31 July 2020
Mimecast acquires communication security provider MessageControl
The email and data security firm says the deal will help protect customers against phishing campaigns.31 July 2020
Theoretical technique to abuse EMV cards detected used in the real world
Known as EMV-Bypass Cloning, a technique first described in 2008 has been seen abused in the wild this year.31 July 2020
Browsers to Enforce Shorter Certificate Life Spans: What Businesses Should Know
Apple, Google, and Mozilla will shorten the life span for TLS certificates in a move poised to aid security but cause operational troubles.30 July 2020
Dark Web Travel Fraudsters Left Hurting From Lockdowns
Shadow travel businesses that depend on loyalty program fraud have been impacted just like the legitimate travel orgs they prey on.30 July 2020
Zoom Flaw Could Have Allowed Hackers To Crack Meeting Passcodes
Zoom has fixed the issue, which stemmed from a lack of checks against incorrect passcode attempts.
30 July 2020
Mimecast Buys MessageControl
The email security provider brings into its fold social engineering and human identity capabilities.30 July 2020
Ill-Defined Career Paths Hamper Growth for IT Security Pros
Appsec and cloud security skills are the most in demand, and a shortage of staff is wearing on security teams, a new study shows.30 July 2020
EU sanctions China, Russia, and North Korea for past hacks
The EU has imposed today its first-ever economical sanctions following cyber-attacks from foreign adversaries.30 July 2020
Poll: Endpoint Extravaganza
What shape do you expect remote endpoints to be in when they start winging their way back to the office?30 July 2020
5 Tips for Optimizing Your Company's Cyber-Crisis Preparedness
Cyber-incident response often addresses short-term needs, but we need to broaden the view of crisis management to be more forward-thinking.30 July 2020