Cybersecurity News


Critical Cisco SD-WAN Bugs Allow RCE Attacks

Critical Cisco SD-WAN Bugs Allow RCE Attacks Cisco is stoppering critical holes in its SD-WAN solutions and its smart software manager satellite.
20 January 2021

DNSpooq bugs expose millions of devices to DNS cache poisoning

Security flaws in a widely used DNS software package could allow attackers to send users to malicious websites or to remotely hijack their devices

The post DNSpooq bugs expose millions of devices to DNS cache poisoning appeared first on WeLiveSecurity

20 January 2021

NVIDIA Gamers Face DoS, Data Loss from Shield TV Bugs

NVIDIA Gamers Face DoS, Data Loss from Shield TV Bugs The company also issued patches for Tesla-based GPUs as part of an updated, separate security advisory.
20 January 2021

Name That Toon: Insider Threat

Name That Toon: Insider Threat Ready for some fun? Come up with a clever cartoon caption for Dark Reading's January contest, and our panel of experts will reward the winner with a $25 Amazon gift card.
20 January 2021

Malwarebytes Hit by SolarWinds Attackers

Malwarebytes Hit by SolarWinds Attackers The attack vector was not the Orion platform but rather an email-protection application for Microsoft 365.
20 January 2021

NSA urges system administrators to replace obsolete TLS protocols

NSA: Obsolete encryption provides a false sense of security.
20 January 2021

Investment Scammers Prey on Dating App Users, Interpol Warns

Investment Scammers Prey on Dating App Users, Interpol Warns Users of dating apps - like Tinder, Match and Bumble - should be on the lookout for investment-fraud scammers.
20 January 2021

Paving the way: Inspiring Women in Payments - A podcast featuring Nicole Braun

 

At times, Nicole Braun was the only female Qualified Security Assessor (QSA) in the entire country of New Zealand. In our 2021 podcast series debut, Nicole explains how she found success in the payments industry, against all odds, and why she thinks there are encouraging signs that a gender shift is coming.

20 January 2021

Google Research Pinpoints Security Soft Spot in Multiple Chat Platforms

Google Research Pinpoints Security Soft Spot in Multiple Chat Platforms Mystery of spying using popular chat apps uncovered by Google Project Zero researcher.
20 January 2021

Tips for a Bulletproof War Room Strategy

The techniques used in real-world combat apply in cybersecurity operations, except that instead of bullets flying downrange, it's packets.
20 January 2021

Interpol warns of romance scam artists using dating apps to promote fake investments

Matches lead victims not to love, but to fake money-making apps, instead.
20 January 2021

A Chinese hacking group is stealing airline passenger details

Chinese hackers are gathering passenger details from airlines across the world to track high-value targets' movements.
20 January 2021

Vulnerabilities in Popular DNS Software Allow Poisoning

Seven flaws in DNSMasq have limited impact, but in combination they could be chained to create a multistaged attack.
19 January 2021

Microsoft to Launch 'Enforcement Mode' for Zerologon Flaw

Enforcement mode for the Netlogon Domain Controller will be enabled by default with the Feb. 9 security update.
19 January 2021

SolarWinds Attack Underscores 'New Dimension' in Cyber-Espionage Tactics

Meanwhile, Malwarebytes is the latest victim, Symantec discovers a fourth piece of malware used in the massive attack campaign, and FireEye Mandiant releases a free tool to help spot signs of the attack.
19 January 2021

DNSpooq Flaws Allow DNS Hijacking of Millions of Devices

DNSpooq Flaws Allow DNS Hijacking of Millions of Devices Seven flaws in open-source software Dnsmasq could allow DNS cache poisoning attacks and remote code execution.
19 January 2021

4 Intriguing Email Attacks Detected by AI in 2020

4 Intriguing Email Attacks Detected by AI in 2020 Here's to the sneakiest of the sneaky. These clever phishing messages -- that standard validation measures often missed -- deserve proper dishonor. (Sponsored)
19 January 2021

4 Intriguing Email Attacks Detected by AI in 2020

4 Intriguing Email Attacks Detected by AI in 2020 Here's to the sneakiest of the sneaky. These clever phishing messages -- that standard validation measures often missed -- deserve proper dishonor.
19 January 2021

Rob Joyce to Take Over as NSA Cybersecurity Director

Rob Joyce to Take Over as NSA Cybersecurity Director Joyce will replace Anne Neuberger, who is now deputy national security advisor for the incoming Biden administration.
19 January 2021

FBI warns of voice phishing attacks stealing corporate credentials

Criminals coax employees into handing over their access credentials and use the login data to burrow deep into corporate networks

The post FBI warns of voice phishing attacks stealing corporate credentials appeared first on WeLiveSecurity

19 January 2021