Cybersecurity News
C-Level & Studying for the CISSP

Attackers Actively Targeting Flaw in Door-Access Controllers
There's been a sharp increase in scans for vulnerable Nortek Linear Emerge E3 systems, SonicWall says.Researchers Find 24 'Dangerous' Android Apps with 382M Installs
Shenzhen Hawk Internet Co. is identified as the parent company behind five app developers seeking excessive permissions in Android apps.Twitter says an attacker used its API to match usernames to phone numbers
The attack took place on Christmas Eve and came from IP addresses from Iran, Israel, and Malaysia.AZORult Campaign Adopts Novel Triple-Encryption Technique

Tesla Autopilot Duped By ‘Phantom’ Images

Coronavirus Phishing Attack Infects US, UK Inboxes
Cybercriminals capitalize on fears of a global health emergency with phishing emails claiming to offer advice for protecting against coronavirus.Only three of the Top 100 international airports pass basic security checks
Tests involved scanning public websites, mobile apps, and exposures of sensitive airport data on public code repositories and the dark web.Ashley Madison Breach Extortion Scam Targets Hundreds

How Device-Aware 2FA Can Defeat Social Engineering Attacks
While device-aware two-factor authentication is no panacea, it is more secure than conventional SMS-based 2FA. Here's why.Would you get hooked by a phishing scam? Test yourself
As the tide of phishing attacks rises, improving your scam-spotting skills is never a bad idea
The post Would you get hooked by a phishing scam? Test yourself appeared first on WeLiveSecurity
Would you get hooked by a phishing scam? Test yourself
As the tide of phishing attacks rises, improving your scam-spotting skills is never a bad idea
The post Would you get hooked by a phishing scam? Test yourself appeared first on WeLiveSecurity
Charges dropped against Coalfire security team who broke into courthouse during pen test
Miscommunication led to arrests during a midnight physical security test.TrickBot Switches to a New Windows 10 UAC Bypass to Evade Detection

ZeroHedge banned from Twitter over coronavirus bioweapon claims
The financial news website came under fire for doxxing a Chinese scientist accused of being behind the virus.Magecart group jumps from Olympic ticket website to new wave of e-commerce shops
Skimmer references were spotted on domains serving customers worldwide.Hackers are hijacking smart building access systems to launch DDoS attacks
More than 2,300 building access systems can be hijacked due to a severe vulnerability left without a fix.Raytheon engineer arrested for taking US missile defense data to China
FBI arrests former 10-year-old Raytheon electric engineer for taking classified info about US missile defense systems to China and then lying about it.Will we just accept our loss of privacy, or has the techlash already begun? | Alan Rusbridger

Not so long ago we searched Google. Now we seem quite happy to let Google search us
Probably too late to ask, but was the past year the moment we lost our technological innocence? The Alexa in the corner of the kitchen monitoring your every word? The location-betraying device in your pocket? The dozen trackers on that web page you just opened? The thought that a 5G network could, in some hazily understood way, be hardwired back to Beijing? The spooky use of live facial recognition on CCTV cameras across London.
With privacy there have been so many landmarks in the past 12 months. The $5bn Federal Trade Commission fine on Facebook to settle the Cambridge Analytica scandal? The accidental exposure of a mind-blowing 1.2 billion people’s details from two data enrichment companies? Up to 50m medical records spilled?
We gleefully carry surveillance machines in our pockets and install them in our homes
Related: Cybercrime laws need urgent reform to protect UK, says report
Continue reading...