Cybersecurity News


Japanese company NEC confirms 2016 security breach

NEC needed seven months to discover the hack, did not disclose it publicly.
31 January 2020

Winnti Group targeting universities in Hong Kong

ESET researchers uncover a new campaign of the Winnti Group targeting universities and using ShadowPad and Winnti malware

The post Winnti Group targeting universities in Hong Kong appeared first on WeLiveSecurity

31 January 2020

Winnti Group targeting universities in Hong Kong

ESET researchers uncover a new campaign of the Winnti Group targeting universities and using ShadowPad and Winnti malware

The post Winnti Group targeting universities in Hong Kong appeared first on WeLiveSecurity

31 January 2020

FBI launches investigation into Pegasus spyware vendor over US citizen hacks

NSO Group denies any knowledge of a probe taking place.
31 January 2020

Hacker snoops on art sale and walks away with $3.1m, victims fight each other in court

Each impacted party is claiming the other is responsible for not detecting the scam. The ownership of a valuable painting is at stake.
31 January 2020

Two Vulnerabilities Found in Microsoft Azure Infrastructure

Researchers detail the process of finding two flaws in the Azure Stack architecture and Azure App Service, both of which have been patched.
30 January 2020

Android Malware for Mobile Ad Fraud Spiked Sharply in 2019

Some 93% of all mobile transactions across 20 countries were blocked as fraudulent, Upstream says.
30 January 2020

Russian Cybercrime Forum Contests Bring Cash, Visibility to Winners

Competitions for users are a long-time tradition on underground cybercrime forums for members looking for money - and cred with major criminal syndicates.
30 January 2020

200K WordPress Sites Vulnerable to Plugin Flaw

200K WordPress Sites Vulnerable to Plugin Flaw Developers behind WordPress plugin Code Snippets have issued a patch for the high-severity flaw.
30 January 2020

Google open-sources the firmware needed to build hardware security keys

Google open-sourced today OpenSK, a Rust-based project to aid hardware vendors build hardware security keys.
30 January 2020

I'm an SMB. What Should I Watch for When Choosing Security Vendors?

I'm an SMB. What Should I Watch for When Choosing Security Vendors? SMBs need action, not just insight.
30 January 2020

How to Secure Your IoT Ecosystem in the Age of 5G

For businesses planning to adopt 5G, the sheer number of IoT devices creates a much larger attack surface.
30 January 2020

Microsoft launches Xbox bug bounty program with rewards of up to $20,000

Microsoft Security Response Center (MSRC) to start accepting vulnerabilities in Xbox gaming platform.
30 January 2020

How To Keep Your Privacy and Data Secure While Working With a Remote Team

Implementing basic strategies can ensure your remote team's work will be secure, data will be protected, and you'll be far less exposed to security risks.
30 January 2020

Coronavirus Campaigns Spread Emotet, Malware

Coronavirus Campaigns Spread Emotet, Malware The ongoing global spread of the disease precipitates malware infections.
30 January 2020

United Nations Data Breach Started with Microsoft SharePoint Bug

A remote code execution flaw enabled a breach of UN offices in Geneva and Vienna, as well as the Office of the High Commissioner for Human Rights.
30 January 2020

Bezos, WhatsApp Cyberattacks Show Growing Mobile Sophistication

Bezos, WhatsApp Cyberattacks Show Growing Mobile Sophistication The recently disclosed Jeff Bezos phone hack and other incidents show that mobile devices are being increasingly targeted by sophisticated nation-state attackers.
30 January 2020

Iranian hackers target US government workers in new campaign

New spear-phishing campaign targets government workers disguised as a well-known government survey service.
30 January 2020

Cisco Patches Two High-Severity Bugs in its Small Business Switch Lineup

Cisco Patches Two High-Severity Bugs in its Small Business Switch Lineup Vulnerabilities allow unauthenticated remote attackers to access sensitive device information and launch denial of service attacks.
30 January 2020

Enterprise Hardware Still Vulnerable to Memory Lane Attacks

Most laptops, workstations, and servers are still vulnerable to physical attacks via direct memory access, despite mitigations often being available, report says.
30 January 2020