Cybersecurity News


Week in security with Tony Anscombe

ESET research uncovers a backdoor targeting POS systems – Why you shouldn't share your Netflix password – Data of millions of hotel guests exposed

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

13 November 2020

The Sameness of Every Day: How to Change Up Audit Fatigue

And with more data compliance laws on the way, audit fatigue could be a real challenge for infosec professionals.
13 November 2020

A Hacker's Holiday: How Retailers Can Avoid Black Friday Cyber Threats

Starting on Nov. 27, online retailers of all sizes will find out if their e-commerce capabilities are ready for prime time or not.
13 November 2020

Microsoft says three APTs have targeted seven COVID-19 vaccine makers

The three state-sponsored hacker groups (APTs) are Russia's Strontium (Fancy Bear) and North Korea's Zinc (Lazarus Group) and Cerium.
13 November 2020

Report: CISA Chief Expects White House to Fire Him

Report: CISA Chief Expects White House to Fire Him Chris Krebs, the first and current director of the CISA, said his protection of election process drew ire from Trump administration.
13 November 2020

Cybersecurity careers: Which one is right for you?

Looking for vulnerabilities, securing systems or dismantling them, these are all viable career paths in the cybersecurity industry. Could one of them be right for you?

The post Cybersecurity careers: Which one is right for you? appeared first on WeLiveSecurity

13 November 2020

Chainalysis launches program to manage cryptocurrency seized by law enforcement

The program will monitor and store virtual coins confiscated in criminal cases.
13 November 2020

Amazon files lawsuit against Instagram, TikTok influencers over 'dupe' sales scam

The company claims influencers worked together to promote fake products listed on Amazon’s platform.
13 November 2020

Info of 27.7 million Texas drivers exposed in Vertafore data breach

Vertafore blames incident on human error after user data was stored on an unsecured external storage service. The files were accessed by an external party.
13 November 2020

Australian government warns of possible ransomware attacks on health sector

The ACSC says it has seen an uptick in attacks targeting the health sector with SDBBot, a known precursor of the Clop ransomware.
12 November 2020

Manufacturing Sees Rising Ransomware Threat

Crypto-ransomware groups are increasingly adopting malware and tools that can probe and attack operational technology, such as industrial control systems, according to an assessment of current threats.
12 November 2020

'Pay2Key' Could Become Next Big Ransomware Threat

Researchers from Check Point say an Iranian-based threat actor has successfully attacked multiple Israeli companies could soon go global.
12 November 2020

Cyberattackers Serve Up Custom Backdoor for Oracle Restaurant Software

Cyberattackers Serve Up Custom Backdoor for Oracle Restaurant Software The modular malware is highly sophisticated but may not be able to capture credit-card info.
12 November 2020

Credential Stuffing Fills E-commerce Pipeline in 2020

There were 1.3 billion attacks in the third quarter alone, according to new analysis from Arkose Labs.
12 November 2020

Animal Jam Hacked, 46M Records Roam the Dark Web

Animal Jam Hacked, 46M Records Roam the Dark Web Animal Jam, just the latest in a string of attacks on gaming apps, has adopted a transparent communications strategy after stolen data turned up on a criminal forum.
12 November 2020

BlackBerry discovers new hacker-for-hire mercenary group

CostaRicto is the fifth hacker-for-hire mercenary group discovered this year.
12 November 2020

New 'CostaRicto' Hack-for-Hire Group Targets Global Businesses

The group of APT mercenaries uses bespoke malware and strong operation security to target a range of organizations, located primarily in Southeast Asia.
12 November 2020

DARPA and Academia Jumpstart 5G IoT Security Efforts

With 5G IoT devices projected to hit 49 million units by 2023, researchers launch programs to keep IoT from becoming a blackhole of exfiltration.
12 November 2020

Digging into the Dark Web: How Security Researchers Learn to Think Like the Bad Guys

Digging into the Dark Web: How Security Researchers Learn to Think Like the Bad Guys Hacker forums are a rich source of threat intelligence.
12 November 2020

Bugs in Critical Infrastructure Gear Allow Sophisticated Cyberattacks

Bugs in Critical Infrastructure Gear Allow Sophisticated Cyberattacks Security problems in Schneider Electric programmable logic controllers allow compromise of the hardware, responsible for physical plant operations.
12 November 2020