Cybersecurity News
Breach Data Shows Attackers Switched Gears in 2020
Attackers focused more on ransomware, while the consolidation of data into large databases led to fewer reported breaches but more records leaked.21 January 2021
Attackers Leave Stolen Credentials Searchable on Google
Operators behind a global phishing campaign inadvertently left thousands of stolen credentials accessible via Google Search.21 January 2021
Einstein Healthcare Network Announces August Breach

21 January 2021
SQL Server Malware Tied to Iranian Software Firm, Researchers Allege

21 January 2021
Cloud Jacking: The Bold New World of Enterprise Cybersecurity
Increased reliance on cloud computing puts more weight on robust authentication systems to protect data against hijackers.21 January 2021
QNAP warns users of a new crypto-miner named Dovecat infecting their devices
QNAP says the malware is targeting NAS devices with weak passwords.21 January 2021
7 Steps to Secure a WordPress Site

21 January 2021
Hacker leaks data of millions of Teespring users
Teespring account passwords were not released.21 January 2021
Hacker Pig Latin: A Base64 Primer for Security Analysts

21 January 2021
Malware reportedly found on laptops given to children in England

Investigation launched after teachers warn of worm on devices handed out for home schooling
An investigation has been launched into reports that some of the laptops handed out to vulnerable children for homeschooling in England are infected with malware.
According to an online forum, teachers from a school in Bradford noticed the issue and believe it contacts Russian servers.
Continue reading...21 January 2021
DDoS-Guard To Forfeit Internet Space Occupied by Parler
Parler, the beleaguered social network advertised as a "free speech" alternative to Facebook and Twitter, has had a tough month. Apple and Google removed the Parler app from its stores, and Amazon blocked the platform from using its hosting services. Parler has since found a home in DDoS-Guard, a Russian digital infrastructure company. But now it appears DDoS-Guard is about to be relieved of more than two-thirds of the Internet address space the company leases to clients -- including the Internet addresses currently occupied by Parler.21 January 2021
Google Forms Set Baseline For Widespread BEC Attacks

21 January 2021
Rethinking IoT Security: It's Not About the Devices
Keeping IoT safe in the future will require securing the networks themselves. Focusing on the devices is a never-ending battle that will only become more burdensome.21 January 2021
Google Searches Expose Stolen Corporate Credentials

21 January 2021
MrbMiner crypto-mining operation linked to Iranian software firm
Despite the Sophos report ousting the MrbMiner group today, the botnet is expected to continue to operate with impunity.21 January 2021
Automated exploit of critical SAP SolMan vulnerability detected in the wild
Proof-of-concept exploit code was published last week.21 January 2021
This phishing scam left thousands of stolen passwords exposed through Google search
A mistake on the part of the cyberattackers led to their discovery -- and that of the data they pillaged.21 January 2021
Vadokrist: A wolf in sheep’s clothing
Another in our occasional series demystifying Latin American banking trojans
The post Vadokrist: A wolf in sheep’s clothing appeared first on WeLiveSecurity
21 January 2021
Microsoft Releases New Info on SolarWinds Attack Chain
Threat actors went to elaborate lengths to maintain operational security around second-stage payload activation, company says.20 January 2021
SolarWinds Attack, Cyber Supply Chain Among Priorities for Biden Administration
During Senate confirmation hearings, the nominees for Secretary of Homeland Security and Director of National Intelligence pledged to focus on cybersecurity.20 January 2021