Cybersecurity News


Zero-Day Attacks on Critical WooCommerce Bug Threaten Databases

Zero-Day Attacks on Critical WooCommerce Bug Threaten Databases The popular e-commerce platform for WordPress has started deploying emergency patches.
15 July 2021

CISA Launches New Website to Aid Ransomware Defenders

StopRansomware.gov provides information to help organizations protect against, and respond to, ransomware attacks.
15 July 2021

Microsoft: Israeli Firm's Tools Used to Target Activists, Dissidents

Candiru sold spyware that exploited Windows vulnerabilities and had been used in attacks against dissidents, activists, and journalists.
15 July 2021

IoT-Specific Malware Infections Jumped 700% Amid Pandemic

Gafgyt and Mirai malware represented majority of IoT malware, new data from Zscaler shows.
15 July 2021

How to Bridge On-Premises and Cloud Identity

Identity fabric, a cloud-native framework, removes the need for multiple, siloed, proprietary identity systems.
15 July 2021

Fake Zoom App Dropped by New APT ‘LuminousMoth’

Fake Zoom App Dropped by New APT ‘LuminousMoth’ First comes spear-phishing, next download of malicious DLLs that spread to removable USBs, dropping Cobalt Strike Beacon, and then, sometimes, a fake Zoom app.
15 July 2021

SonicWall Warns Secure VPN Hardware Bugs Under Attack

SonicWall Warns Secure VPN Hardware Bugs Under Attack SonicWall issued an urgent security alert warning customers that some of its current and legacy secure VPN appliances were under active attack.
15 July 2021

SonicWall Warns Firewall Hardware Bugs Under Attack

SonicWall Warns Firewall Hardware Bugs Under Attack SonicWall issued an urgent security alert warning customers that some of its current and legacy firewall appliances were under active attack.
15 July 2021

What to Look for in an Effective Threat Hunter

The most important personality traits, skills, and certifications to look for when hiring a threat hunting team.
15 July 2021

Data officers raid two properties over Matt Hancock CCTV footage leak

Data officers raid two properties over Matt Hancock CCTV footage leak

Computer equipment and electronic devices seized in connection with images of minister kissing aide

Two residential properties in the south of England have been raided by data protection officers, as part of their investigation into who leaked CCTV footage of Matt Hancock kissing an aide in his office.

The Information Commissioner’s Office (ICO) said they had seized computer equipment and electronic devices as part of the operation on Thursday morning, amid an ongoing investigation into alleged breaches of the Data Protection Act.

Continue reading...
15 July 2021

Safari Zero-Day Used in Malicious LinkedIn Campaign

Safari Zero-Day Used in Malicious LinkedIn Campaign Researchers shed light on how attackers exploited Apple web browser vulnerabilities to target government officials in Western Europe.
15 July 2021

Sports events and online streaming: prepare your cybersecurity

If you'll be watching Sports Streaming events on your SmartTV, laptop, tablet or cell phone, learn the tips to keep you and your personal data safe.

The post Sports events and online streaming: prepare your cybersecurity appeared first on WeLiveSecurity

15 July 2021

SonicWall: 'Imminent' Ransomware Attack Targets Older Products

The attack exploits a known vulnerability that was fixed in new versions of firmware released this year.
14 July 2021

Google to Bring HTTPS-First Mode to Chrome Browser

Beginning in M94, Chrome will offer HTTPS-First Mode, which will attempt to upgrade all page loads to HTTPS.
14 July 2021

Targeted Attack Activity Heightens Need for Orgs. to Patch New SolarWinds Flaw

A China-based threat actor -- previously observed targeting US defense industrial base organizations and software companies -- is exploiting the bug in SolarWinds' Serv-U software, Microsoft says.
14 July 2021

Cryptominer Farm Rigged with 3,800 PS4s Busted in Ukraine

Cryptominer Farm Rigged with 3,800 PS4s Busted in Ukraine Ukrainian cops seize PlayStation 4 consoles, graphics cards, processors and more in cryptomining sting involving alleged electricity theft.
14 July 2021

Did the Cybersecurity Workforce Gap Distract Us From the Leak?

Cyber games can play a critical role in re-engaging our workforce and addressing the employee retention crisis.
14 July 2021

Linux-Focused Cryptojacking Gang Tracked to Romania

Linux-Focused Cryptojacking Gang Tracked to Romania The gang is using a new brute-forcer – “Diicot brute” – to crack passwords on Linux-based machines with weak passwords.
14 July 2021

Apps Built Better: Why DevSecOps is Your Security Team’s Silver Bullet

Apps Built Better: Why DevSecOps is Your Security Team’s Silver Bullet Phil Richards, vice president and CSO at Ivanti, explains how organizations can design DevOps processes and systems to thwart cyberattacks.
14 July 2021

Trickbot Malware Rebounds with Virtual-Desktop Espionage Module

Trickbot Malware Rebounds with Virtual-Desktop Espionage Module The attackers have spruced up the 'vncDll' module used for spying on targets and stealing data.
14 July 2021