Cybersecurity News


Russia responsible for hacking gas firm tied to Trump impeachment: report

The cyberattack bears similar hallmarks to the 2016 DNC hack.
14 January 2020

49 million user records from US data broker LimeLeads put up for sale online

Data from an exposed LimeLeads Elasticsearch server ends up on a hacking forum.
14 January 2020

This Trojan hijacks your smartphone to send offensive text messages

The feature is certainly one way to advertise a malware infection.
14 January 2020

Windows 7 end of life: Time to move on

Today, Microsoft is officially pulling the plug on its support for Windows 7. What’s your plan?

The post Windows 7 end of life: Time to move on appeared first on WeLiveSecurity

14 January 2020

Windows 7 end of life: Time to move on

Today, Microsoft is officially pulling the plug on its support for Windows 7. What’s your plan?

The post Windows 7 end of life: Time to move on appeared first on WeLiveSecurity

14 January 2020

Smart Home Devices

Now adays most of us have numerous devices in our homes connect to the Internet. From thermostats and gaming consoles to baby monitors, door locks or even your car. Ensure you change the default passwords on these devices and enable automatic updating.
14 January 2020

Cryptic Rumblings Ahead of First 2020 Patch Tuesday

Sources tell KrebsOnSecurity that Microsoft Corp. is slated to release a software update on Tuesday to fix an extraordinarily serious security vulnerability in a core cryptographic component present in all versions of Windows. Those sources say Microsoft has quietly shipped a patch for the bug to branches of the U.S. military and to other high-value customers/targets that manage key Internet infrastructure, and that those organizations have been asked to sign agreements preventing them from disclosing details of the flaw prior to Jan. 14, the first Patch Tuesday of 2020.
13 January 2020

Microsoft to Officially End Support for Windows 7, Server 2008

Windows 7 and Server 2008 will continue to work after Jan. 14, 2020, but will no longer receive security updates.
13 January 2020

Website Collecting Australian Fire Donations Hit by Magecart

The attack may have compromised donors' payment information.
13 January 2020

Exploits Released for As-Yet Unpatched Critical Citrix Flaw

Organizations need to apply mitigations for vulnerability in Citrix Application Delivery Controller and Citrix Gateway ASAP, security researchers say.
13 January 2020

What Questions Should I Keep in Mind to Improve My Security Metrics?

If you can answer these six questions, you'll be off to a great start.
13 January 2020

Microsoft spots malicious npm package stealing data from UNIX systems

Malicious JavaScript package was only active on the npm repository for two weeks.
13 January 2020

Scammers Dupe Texas School District Out of $2.3M

Scammers Dupe Texas School District Out of $2.3M The wide-scale phishing scam reportedly started in early November and continued through December, before it was discovered by the Texas school district.
13 January 2020

Joker Android Malware Snowballs on Google Play

Joker Android Malware Snowballs on Google Play Google has removed 17,000 Joker-infested apps from the Play store to date.
13 January 2020

CES Surveillance Hype Worries Privacy Advocates

CES Surveillance Hype Worries Privacy Advocates CES wiz-bang surveillance tech gives privacy advocates the willies.
13 January 2020

An Identity Management Spin on Shaggy's Hit Song

Wondering how this guy could be so clumsy? So is he.
13 January 2020

Report: Chinese hacking group APT40 hides behind network of front companies

A group of anonymous security analysts have tracked down 13 front companies operating in the island of Hainan through which they say the Chinese state has been recruiting hackers.
13 January 2020

5 major US wireless carriers vulnerable to SIM swapping attacks

When it comes to protection against this insidious type of scam, the telcos’ authentication procedures leave a lot be desired, a study finds

The post 5 major US wireless carriers vulnerable to SIM swapping attacks appeared first on WeLiveSecurity

13 January 2020

5 major US wireless carriers vulnerable to SIM swapping attacks

When it comes to protection against this insidious type of scam, the telcos’ authentication procedures leave a lot be desired, a study finds

The post 5 major US wireless carriers vulnerable to SIM swapping attacks appeared first on WeLiveSecurity

13 January 2020

Phishing for Apples, Bobbing for Links

Anyone searching for a primer on how to spot clever phishing links need look no further than those targeting customers of Apple, whose brand by many measures has emerged as the most targeted. Past stories here have examined how scammers working with organized gangs try to phish iCloud credentials from Apple customers who have a mobile device that is lost or stolen. Today's piece looks at the well-crafted links used in some of these lures.
13 January 2020