Cybersecurity News
Sharp Spike in Ransomware in U.S. as Pandemic Inspires Attackers
COVID-19 has changed the face of cybercrime, as the latest malware statistics show.
23 July 2020
NY Charges First American Financial for Massive Data Leak
In May 2019, KrebsOnSecurity broke the news that the website of mortgage title insurance giant First American Financial Corp. had exposed approximately 885 million records related to mortgage deals going back to 2003. On Wednesday, regulators in New York announced that First American was the target of their first ever cybersecurity enforcement action in connection with the incident, charges that could bring steep financial penalties.23 July 2020
Google adds security enhancements to Gmail, Meet and Chat
The tech giant introduces its own version of verified accounts in Gmail, rolls out increased moderation controls in Meet, and enhances phishing protection in Chat
The post Google adds security enhancements to Gmail, Meet and Chat appeared first on WeLiveSecurity
23 July 2020
ASUS Home Router Bugs Open Consumers to Snooping Attacks
The two flaws allow man-in-the-middle attacks that would give an attacker access to all data flowing through the router.
23 July 2020
Cisco, Zoom and Others Must Bolster Security, Say Privacy Chiefs
Privacy commissioners worldwide urged video conferencing systems like Microsoft, Cisco and Zoom to adopt end-to-end encryption, two-factor authentication and other security measures.
23 July 2020
Vulnerable Invisible Salamanders and You: A Tale of Encryption Weakness
A Black Hat presentation will discuss how vulnerabilities found in Facebook Messenger encryption could mean trouble for your secure messages.
23 July 2020
Deepfakes & James Bond Research Project: Cool but Dangerous
Open source software for creating deepfakes is getting better and better, to the chagrin of researchers
23 July 2020
Twitter: Hackers Accessed Private Messages for Elite Accounts
A Dutch elected official is among those whose DMs were hijacked, the company said.
23 July 2020
8 Cybersecurity Themes to Expect at Black Hat USA 2020
Here are the trends and topics that'll capture the limelight at next month's virtual event.
23 July 2020
Fawkes protects your identity from facial recognition systems, pixel by pixel
Changes made to photos undetectable to the naked eye could still prevent matches in deep learning systems.23 July 2020
CouchSurfing investigates data breach after 17m user records appear on hacking forum
EXCLUSIVE: CouchSurfing working with law enforcement and security firm to investigate incident.23 July 2020
New 'Shadow Attack' can replace content in digitally signed PDF files
15 out of the 28 biggest desktop PDF viewers are vulnerable, German academics say.23 July 2020
Chinese hackers blamed for the spread of MgBot Trojan across India, Hong Kong
The APT is focused on breaking into both Windows PCs and Android mobile devices.23 July 2020
IBM Verify Gateway vulnerability allowed remote attackers to brute-force their way in
The severe bug could be harnessed for brute-force attacks.23 July 2020
Twitter says hackers accessed DMs for 36 users in last week's hack
Hackers targeted 130 accounts, tweeted on behalf of 45, and downloaded data from eight.22 July 2020
Slack credentials abundant on cybercrime markets, but little interest from hackers
Security researchers find more than 17,000 Slack credentials for roughly 12,000 Slack workspaces being sold online.22 July 2020
Google's Project Zero team won't be applying for Apple's SRD program
Other security researchers have expressed similar intentions to skip the Apple SRD program after the program rules give Apple full control of the vulnerability disclosure process.22 July 2020
Surge in Consumer-Grade IoT Devices Undermining Enterprise Security
Individuals and business groups are connecting everything from Amazon Echo devices to data-sampling sensors on networks with sensitive systems with little regard to safety, two reports show.22 July 2020
VC Investment in Cybersecurity Dips & Shifts with COVID-19
While the pandemic has infected funding for cybersecurity startups, it also has emboldened some startups with innovative tools that secure the wave of at-home work.22 July 2020
OilRig APT Drills into Malware Innovation with Unique Backdoor
The RDAT tool uses email as a C2 channel, with attachments that hide data and commands inside images.
22 July 2020