Cybersecurity News


People with dyslexia have skills that we need, says GCHQ

People with dyslexia have skills that we need, says GCHQ

UK surveillance agency says it has long valued neuro-diverse analysts – including Alan Turing

Apprentices on GCHQ’s scheme are four times more likely to have dyslexia than those on other organisations’ programmes, the agency has said, the result of a drive to recruit those whose brains process information differently.

GCHQ says those with dyslexia have valuable skills spotting patterns that others miss – a key area the spy agency wants to encourage as it pivots away from dead letter drops and bugging towards high-tech cybersecurity and data analysis.

Related: GCHQ releases 'most difficult puzzle ever' in honour of Alan Turing

Continue reading...
29 April 2021

Multi-Gov Task Force Plans to Take Down the Ransomware Economy

Multi-Gov Task Force Plans to Take Down the Ransomware Economy A coalition of 60 global entities (including the DoJ) has proposed a sweeping plan to hunt down and disrupt ransomware gangs by going after their financial operations.
29 April 2021

Your Digital Identity's Evil Shadow

Your Digital Identity's Evil Shadow In the wrong hands, these shady shadows are stealthy means to bypass security systems by hiding behind a proxy with legitimate IP addresses and user agents.
29 April 2021

COVID-19 Results for 25% of Wyoming Accidentally Posted Online

COVID-19 Results for 25% of Wyoming Accidentally Posted Online Sorry, we’ve upchucked your COVID test results and other medical and personal data into public GitHub storage buckets, the Wyoming Department of Health said.
29 April 2021

The Challenge of Securing Non-People Identities

Non-people identities, which can act intelligently and make decisions on behalf of a person's identity, are a growing cybersecurity risk.
29 April 2021

FBI teams up with ‘Have I Been Pwned’ to alert Emotet victims

The data breach notification site now allows you to check if your login credentials may have been compromised by Emotet

The post FBI teams up with ‘Have I Been Pwned’ to alert Emotet victims appeared first on WeLiveSecurity

29 April 2021

Anti-Vaxxer Hijacks QR Codes at COVID-19 Check-In Sites

Anti-Vaxxer Hijacks QR Codes at COVID-19 Check-In Sites The perp faces jail time, but the incident highlights the growing cyber-abuse of QR codes.
29 April 2021

SaaS Attacks: Lessons from Real-Life Misconfiguration Exploits

SaaS Attacks: Lessons from Real-Life Misconfiguration Exploits There is a way to protect users from deceptive OAuth apps, misconfigurations and misappropriated user permissions. SaaS Security Posture Management (SSPM) takes an automated approach to tracking, and even remediating, the exploitable misconfigurations in organizations’ SaaS apps.
29 April 2021

Task Force Seeks to Disrupt Ransomware Payments

Some of the world's top tech firms are backing a new industry task force focused on disrupting cybercriminal ransomware gangs by limiting their ability to get paid, and targeting the individuals and finances of the organized thieves behind these crimes.
29 April 2021

DoppelPaymer Gang Leaks Files from Illinois AG After Ransom Negotiations Break Down

DoppelPaymer Gang Leaks Files from Illinois AG After Ransom Negotiations Break Down Information stolen in April 10 ransomware attack was posted on a dark web portal and includes private documents not published as part of public records.
29 April 2021

Paleohacks data leak exposes customer records, password reset tokens

The leak wasn’t dealt with until Amazon was contacted directly.
29 April 2021

RotaJakiro: A Linux backdoor that has flown under the radar for years

The malware remains undetected by most VirusTotal engines.
29 April 2021

Prime targets: Governments shouldn’t go it alone on cybersecurity

A year into the pandemic, ESET reveals new research into activities of the LuckyMouse APT group and considers how governments can rise to the cybersecurity challenges of the accelerated shift to digital

The post Prime targets: Governments shouldn’t go it alone on cybersecurity appeared first on WeLiveSecurity

29 April 2021

Accenture acquires French cybersecurity firm Openminded

The bid is aimed at expanding Accenture’s European footprint.
29 April 2021

Securely Disposing Mobile Devices

Do you plan on giving away or selling one of your older mobile devices? Make sure you wipe or reset your device before disposing of it. If you don't, the next person who owns it will have access to all of your accounts and personal information.
29 April 2021

Adobe Open Sources Tool for Anomaly Research

The One-Stop Anomaly Shop (OSAS) project packages machine-learning algorithms into a Docker container for finding anomalies in security log data.
29 April 2021

Experian API Exposed Credit Scores of Most Americans

Big-three consumer credit bureau Experian just fixed a weakness with a partner website that let anyone look up the credit score of tens of millions of Americans just by supplying their name and mailing address, KrebsOnSecurity has learned. Experian says it has plugged the data leak, but the researcher who reported the finding says he fears the same weakness may be present at countless other lending websites that work with the credit bureau.
28 April 2021

FluBot Malware's Rapid Spread May Soon Hit US Phones

The FluBot Android malware has spread throughout several European countries through an SMS package delivery scam.
28 April 2021

74% of Financial Institutions See Spike in COVID-Related Threats

Financial losses have also increased among organizations in the last year, with the average cost reaching $720,000.
28 April 2021

Microsoft Office SharePoint Targeted With High-Risk Phish, Ransomware Attacks

Microsoft Office SharePoint Targeted With High-Risk Phish, Ransomware Attacks SharePoint servers are being picked at with high-risk, legitimate-looking, branded phish messages and preyed on by a ransomware gang using an old bug.
28 April 2021