---

Job hunting? Beware hiring scams using spoofed company websites

Cybercriminals are putting a new twist on an old trick

The post Job hunting? Beware hiring scams using spoofed company websites appeared first on WeLiveSecurity

---

Job hunting? Beware hiring scams using spoofed company websites

Cybercriminals are putting a new twist on an old trick

The post Job hunting? Beware hiring scams using spoofed company websites appeared first on WeLiveSecurity

---

Greater Focus on Privacy Pays Off for Firms

Privacy-mature companies complete sales more quickly, have fewer and less serious breaches, and recover from incidents faster, according to Cisco's annual survey.

---

How to Get the Most Out of Your Security Metrics

There's an art to reporting security metrics so that they speak the language of leadership and connect the data from tools to business objectives.

---

Mandatory IoT Security in the Offing with U.K. Proposal

The new U.K. law mandates that manufacturers apply several security controls to their connected devices.

---

Fortinet removes SSH and database backdoors from its SIEM product

Patches have been released for CVE-2019-17659 and CVE-2019-16153.

---

Cybersecurity: A guide for parents to keep kids safe online

Cybersecurity, cyberbullying, and mobile devices can be a minefield -- so here is a guide to take the stress out of cyberspace for parents.

---

The US Army uses facial recognition to train AI. Now, it needs to protect it

As facial recognition use ramps up despite its controversy, the technology is being applied in the military realm.

---

Magecart gang arrested in Indonesia

First-ever arrest of a Magecart hacker gang.

---

The Chrome Web Store is currently facing a wave of fraudulent transactions

Google temporarily suspends publishing and updating of paid Chrome extensions following a spike in fraudulent transactions.

---

Mozilla has banned nearly 200 malicious Firefox add-ons over the last two weeks

Mozilla's security staff is cracking down on malicious Firefox add-ons.

---

New Social Engineering Event to Train Business Pros on Human Hacking

The DEF CON Social Engineering Capture the Flag contest inspired a new event aimed at teaching both security and non-security professionals on the fine art of hacking human behavior.

---

ThreatList: Ransomware Costs Double in Q4, Sodinokibi Dominates

Ransomware actors are turning their sights on larger enterprises, making both average cost and downtime inflicted from attacks skyrocket.

---

Trend Micro antivirus zero-day used in Mitsubishi Electric hack

Hackers exploited a Trend Micro OfficeScan zero-day to plant malicious files on Mitsubishi Electric servers.

---

Cisco Webex Flaw Lets Unauthenticated Users Join Private Online Meetings

The flaw could allow a remote, unauthenticated attacker to enter a password-protected video conference meeting.

---

7 Steps to IoT Security in 2020

There are important steps security teams should take to be ready for the evolving security threats to the IoT in 2020.

---

New Bill Proposes NSA Surveillance Reforms

The newly-introduced bill targets the Patriot Act's Section 215, previously used by the U.S. government to collect telephone data from millions of Americans.

---

Class-action lawsuit filed against controversial Clearview AI startup

Plaintiffs claim New York startup broke Illinois privacy laws regarding the use of residents' biometrics data.

---

Does Your Domain Have a Registry Lock?

If you're running a business online, few things can be as disruptive or destructive to your brand as someone stealing your company's domain name and doing whatever they wish with it. Even so, most major Web site owners aren't taking full advantage of the security tools available to protect their domains from being hijacked. Here's the story of one recent victim who was doing almost everything possible to avoid such a situation and still had a key domain stolen by scammers.

---

Week in security with Tony Anscombe

Zero-day in Internet Explorer – Microsoft cloud leaked big – Dating apps accused of sharing user data with advertisers

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity