Cybersecurity News


Twitter: Employees Compromised in Phone Spear-Phishing Attack

The attack earlier this month started with a spear-phishing attack targeting Twitter employees, the company says in a new update.
31 July 2020

Week in security with Tony Anscombe

New ESET Threat Report is out – Defending against Thunderspy attacks – Thousands of databases wiped in Meow attacks

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

31 July 2020

Twitter breach: Staff tricked by ‘phone spear phishing’

The attackers exploited the human factor to gain access to Twitter’s internal systems and the accounts of some of the world’s most prominent figures

The post Twitter breach: Staff tricked by ‘phone spear phishing’ appeared first on WeLiveSecurity

31 July 2020

What's Next for PCI SSC Mobile Payments Security Standards?

 

PCI SSC has published Software-based PIN-entry on COTS (SPoC)™ v1.1, Contactless Payments on COTS (CPoC™) v1.0 and has updated Technical FAQs for both. So, what is next for new standards development in mobile?

31 July 2020

3 Ways Social Distancing Can Strengthen your Network

Security teams can learn a lot from the current pandemic to make modern hybrid business networks stronger and more resilient. Here's how.
31 July 2020

'Hidden Property Abusing' Allows Attacks on Node.js Applications

A team of researchers from Georgia Tech find a new attack technique that targets properties in Node.js and plan to publicly release a tool that has already identified 13 new vulnerabilities.
31 July 2020

Twitter: Epic Account Hack Caused by Mobile Spearphishing Scam

Twitter: Epic Account Hack Caused by Mobile Spearphishing Scam Hackers "mislead certain employees" to gain access to internal tools to take over high-profile accounts and push out a Bitcoin scam.
31 July 2020

BootHole fixes causing boot problems across multiple Linux distros

Debian, Ubuntu, Red Hat, CentOS, Fedora users reports issues with booting or dual-booting their devices.
31 July 2020

Black Hat USA 2020 Preview: Election Security, COVID Disinformation and More

Black Hat USA 2020 Preview: Election Security, COVID Disinformation and More Threatpost editors break down the top themes, speakers and sessions to look out for this year at Black Hat 2020 - from election security to remote work and the pandemic.
31 July 2020

China arrests over 100 people suspected of involvement in PlusToken cryptocurrency scam

Many of the alleged fraudsters had previously fled overseas.
31 July 2020

Mimecast acquires communication security provider MessageControl

The email and data security firm says the deal will help protect customers against phishing campaigns.
31 July 2020

Theoretical technique to abuse EMV cards detected used in the real world

Known as EMV-Bypass Cloning, a technique first described in 2008 has been seen abused in the wild this year.
31 July 2020

Browsers to Enforce Shorter Certificate Life Spans: What Businesses Should Know

Apple, Google, and Mozilla will shorten the life span for TLS certificates in a move poised to aid security but cause operational troubles.
30 July 2020

Dark Web Travel Fraudsters Left Hurting From Lockdowns

Shadow travel businesses that depend on loyalty program fraud have been impacted just like the legitimate travel orgs they prey on.
30 July 2020

Zoom Flaw Could Have Allowed Hackers To Crack Meeting Passcodes

Zoom Flaw Could Have Allowed Hackers To Crack Meeting Passcodes Zoom has fixed the issue, which stemmed from a lack of checks against incorrect passcode attempts.
30 July 2020

Mimecast Buys MessageControl

The email security provider brings into its fold social engineering and human identity capabilities.
30 July 2020

Ill-Defined Career Paths Hamper Growth for IT Security Pros

Appsec and cloud security skills are the most in demand, and a shortage of staff is wearing on security teams, a new study shows.
30 July 2020

EU sanctions China, Russia, and North Korea for past hacks

The EU has imposed today its first-ever economical sanctions following cyber-attacks from foreign adversaries.
30 July 2020

Poll: Endpoint Extravaganza

What shape do you expect remote endpoints to be in when they start winging their way back to the office?
30 July 2020

5 Tips for Optimizing Your Company's Cyber-Crisis Preparedness

Cyber-incident response often addresses short-term needs, but we need to broaden the view of crisis management to be more forward-thinking.
30 July 2020