Cybersecurity News
Rogue CCTV technician spied on hundreds of customers during intimate moments
Prosecutors said the technician accessed more than 200 customer CCTV systems on more than 9,600 occasions to spy on them getting naked and engaging in sexual activity.23 January 2021
SonicWall says it was hacked using zero-days in its own products
The networking device vendor has published a series of mitigations as it's investigating the incident and preparing patches.23 January 2021
Intel Confirms Unauthorized Access of Earnings-Related Data
News likely contributed to slide of over 9% in chipmaker's stock at one point Friday.22 January 2021
Microsoft Edge, Google Chrome Roll Out Password Protection Tools
The new tools on Chrome and Edge will make it easier for browser users to discover - and change - compromised passwords.
22 January 2021
Amazon Kindle RCE Attack Starts with an Email
The "KindleDrip" attack would have allowed attackers to siphon money from unsuspecting victims.
22 January 2021
Speed of Digital Transformation May Lead to Greater App Vulnerabilities
The fastest-moving industries are struggling to produce secure code, according to AppSec experts.22 January 2021
How Cybersecurity Newbs Can Start Out on the Right Foot
Cybersecurity experts share their savvy tips and useful resources for infosec hopefuls.
22 January 2021
ADT Tech Hacks Home-Security Cameras to Spy on Women
A former ADT employee pleads guilty of accessing customers’ cameras so he could spy on them.
22 January 2021
Discord-Stealing Malware Invades npm Packages
The CursedGrabber malware has infiltrated the open-source software code repository.
22 January 2021
Ransomware Attackers Publish 4K Private Scottish Gov Agency Files
Up to 4,000 stolen files have been released by hackers who launched a ransomware attack against the Scottish Environmental Protection Agency on Christmas Eve.
22 January 2021
FSB warns of US cyberattacks after Biden administration comments
Unclear if political trolling or actual fear.22 January 2021
Week in security with Tony Anscombe
ESET research analyzes the Vadokrist banking trojan – Beware smishing scams – WhatsApp postpones privacy policy changes
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
22 January 2021
As Bitcoin price surges, DDoS extortion gangs return in force
Companies are receiving emails from cyber-criminals threatening large DDoS attacks unless a ransom is paid. Some groups are delivering on their threats.22 January 2021
Why North Korea Excels in Cybercrime
North Korea is laser-focused on boosting its cyber capabilities, and it's doing a remarkable job of it.22 January 2021
New website launched to document vulnerabilities in malware strains
Launched by security researcher John Page, the new MalVuln website lists bugs in malware code.22 January 2021
Threat Actors Can Exploit Windows RDP Servers to Amplify DDoS Attacks
Netscout researchers identify more than 14,000 existing servers that can be abused by ‘the general attack population’ to flood organizations’ networks with traffic.
22 January 2021
SEC calls out dubious cryptocurrency traders, miners soliciting customers worldwide
The companies mentioned are considered “misleading” or impersonators of genuine businesses.22 January 2021
Why do we fall for SMS phishing scams so easily?
Here’s how to spot scams where criminals use deceptive text messages to hook and reel in their marks
The post Why do we fall for SMS phishing scams so easily? appeared first on WeLiveSecurity
22 January 2021
Windows RDP servers are being abused to amplify DDoS attacks
Windows RDP servers running on UDP port 3389 can be ensnared in DDoS botnets and abused to bounce and amplify junk traffic towards victim networks.22 January 2021
DreamBus, FreakOut Botnets Pose New Threat to Linux Systems
Researchers from Zscaler and Check Point describe botnets as designed for DDoS attacks, cryptocurrency mining, and other malicious purposes.21 January 2021