Cybersecurity News


Rogue CCTV technician spied on hundreds of customers during intimate moments

Prosecutors said the technician accessed more than 200 customer CCTV systems on more than 9,600 occasions to spy on them getting naked and engaging in sexual activity.
23 January 2021

SonicWall says it was hacked using zero-days in its own products

The networking device vendor has published a series of mitigations as it's investigating the incident and preparing patches.
23 January 2021

Intel Confirms Unauthorized Access of Earnings-Related Data

News likely contributed to slide of over 9% in chipmaker's stock at one point Friday.
22 January 2021

Microsoft Edge, Google Chrome Roll Out Password Protection Tools

Microsoft Edge, Google Chrome Roll Out Password Protection Tools The new tools on Chrome and Edge will make it easier for browser users to discover - and change - compromised passwords.
22 January 2021

Amazon Kindle RCE Attack Starts with an Email

Amazon Kindle RCE Attack Starts with an Email The "KindleDrip" attack would have allowed attackers to siphon money from unsuspecting victims.
22 January 2021

Speed of Digital Transformation May Lead to Greater App Vulnerabilities

The fastest-moving industries are struggling to produce secure code, according to AppSec experts.
22 January 2021

How Cybersecurity Newbs Can Start Out on the Right Foot

How Cybersecurity Newbs Can Start Out on the Right Foot Cybersecurity experts share their savvy tips and useful resources for infosec hopefuls.
22 January 2021

ADT Tech Hacks Home-Security Cameras to Spy on Women

ADT Tech Hacks Home-Security Cameras to Spy on Women A former ADT employee pleads guilty of accessing customers’ cameras so he could spy on them.
22 January 2021

Discord-Stealing Malware Invades npm Packages

Discord-Stealing Malware Invades npm Packages The CursedGrabber malware has infiltrated the open-source software code repository.
22 January 2021

Ransomware Attackers Publish 4K Private Scottish Gov Agency Files

Ransomware Attackers Publish 4K Private Scottish Gov Agency Files Up to 4,000 stolen files have been released by hackers who launched a ransomware attack against the Scottish Environmental Protection Agency on Christmas Eve.
22 January 2021

FSB warns of US cyberattacks after Biden administration comments

Unclear if political trolling or actual fear.
22 January 2021

Week in security with Tony Anscombe

ESET research analyzes the Vadokrist banking trojan – Beware smishing scams – WhatsApp postpones privacy policy changes

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

22 January 2021

As Bitcoin price surges, DDoS extortion gangs return in force

Companies are receiving emails from cyber-criminals threatening large DDoS attacks unless a ransom is paid. Some groups are delivering on their threats.
22 January 2021

Why North Korea Excels in Cybercrime

North Korea is laser-focused on boosting its cyber capabilities, and it's doing a remarkable job of it.
22 January 2021

New website launched to document vulnerabilities in malware strains

Launched by security researcher John Page, the new MalVuln website lists bugs in malware code.
22 January 2021

Threat Actors Can Exploit Windows RDP Servers to Amplify DDoS Attacks

Threat Actors Can Exploit Windows RDP Servers to Amplify DDoS Attacks Netscout researchers identify more than 14,000 existing servers that can be abused by ‘the general attack population’ to flood organizations’ networks with traffic.
22 January 2021

SEC calls out dubious cryptocurrency traders, miners soliciting customers worldwide

The companies mentioned are considered “misleading” or impersonators of genuine businesses.
22 January 2021

Why do we fall for SMS phishing scams so easily?

Here’s how to spot scams where criminals use deceptive text messages to hook and reel in their marks

The post Why do we fall for SMS phishing scams so easily? appeared first on WeLiveSecurity

22 January 2021

Windows RDP servers are being abused to amplify DDoS attacks

Windows RDP servers running on UDP port 3389 can be ensnared in DDoS botnets and abused to bounce and amplify junk traffic towards victim networks.
22 January 2021

DreamBus, FreakOut Botnets Pose New Threat to Linux Systems

Researchers from Zscaler and Check Point describe botnets as designed for DDoS attacks, cryptocurrency mining, and other malicious purposes.
21 January 2021