Cybersecurity News


More Malware Found Preinstalled on Government Smartphones

Researchers report the American Network Solutions UL40 smartphone comes with compromised apps.
08 July 2020

Advertising Plugin for WordPress Threatens Full Site Takeovers

Advertising Plugin for WordPress Threatens Full Site Takeovers Thousands of vulnerable websites need to apply the patch to avoid RCE.
08 July 2020

US Charges Kazakhstani Citizen With Hacking Into More Than 300 Orgs

The accused man, and members of his cybercriminal group, allegedly made at least $1.5 million hacking into companies and selling access to systems over the past three years.
08 July 2020

How Advanced Attackers Take Aim at Office 365

Researchers discuss how adversaries use components of Office 365 that are poorly understood and not closely monitored.
08 July 2020

Fresh Options for Fighting Fraud in Financial Services

Fraud prevention requires a consumer-centric, data sharing approach.
08 July 2020

Google open-sources Tsunami vulnerability scanner

Google says Tsunami is an extensible network scanner for detecting high-severity vulnerabilities with as little false-positives as possible.
08 July 2020

Notorious Hacker ‘Fxmsp’ Outed After Widespread Access-Dealing

Notorious Hacker ‘Fxmsp’ Outed After Widespread Access-Dealing The Kazakh native made headlines last year for hacking McAfee, Symantec and Trend Micro; but the Feds say he's also behind a widespread backdoor operation spanning six continents.
08 July 2020

Microsoft Seizes Malicious Domains Used in Mass Office 365 Attacks

Microsoft Seizes Malicious Domains Used in Mass Office 365 Attacks The phishing campaign targeted Office 365 accounts in 62 countries, using business-related reports and the coronavirus pandemic as lures.
08 July 2020

Why Cybersecurity's Silence Matters to Black Lives

The industry is missing an opportunity to educate the public about bad actors who capitalize off of protest, voting rights education and police brutality petitions through social engineering and phishing attacks.
08 July 2020

A Most Personal Threat: Implantable Devices in Secure Spaces

Do implantable medical devices pose a threat to secure communication facilities? A Virginia Tech researcher says they do, and the problem is growing.
08 July 2020

15 Billion Credentials Currently Up for Grabs on Hacker Forums

15 Billion Credentials Currently Up for Grabs on Hacker Forums Unprecedented amounts of data for accessing bank accounts and streaming services are being flogged on the dark web.
08 July 2020

Civil rights auditors slam Facebook stance on Trump, voter suppression

Facebook has admitted there is still a “long way to go” to quell recent criticism of civil rights issue handling.
08 July 2020

Fxmsp hacker indicted by feds for selling backdoor access to hundreds of companies

Backdoors into government networks and corporations were allegedly sold to other criminal enterprises.
08 July 2020

Citrix patches 11 critical bugs

Citrix patches 11 critical bugs By William Knowles @c4i Senior Editor InfoSec News July 8, 2020 In a breath of fresh air for this week, software vendor Citrix released patches for 11 […]
08 July 2020

Mozilla suspends Firefox Send service while it addresses malware abuse

Mozilla has temporarily suspended the Firefox Send file-sharing service while it adds a Report Abuse mechanism.
07 July 2020

EDP Renewables Confirms Ransomware Attack

Its North American branch was notified of the attack because intruders reportedly gained access to 'at least some information' stored in its systems.
07 July 2020

BEC Hotshot with Opulent Social Media Presence to Face U.S. Charges

BEC Hotshot with Opulent Social Media Presence to Face U.S. Charges The Nigerian native has been extradited from Dubai after a string of over-the-top Instagram posts.
07 July 2020

Keeper Threat Group Rakes in $7M from Hundreds of Compromised E-Commerce Sites

Keeper Threat Group Rakes in $7M from Hundreds of Compromised E-Commerce Sites Researchers warn that Keeper, using Magecart code, will launch increasingly sophisticated attacks against online merchants worldwide in the coming months.
07 July 2020

Treasury Releases Fraud and Money Mule ID Tips

A new advisory from FinCEN helps financial institutions spot illicit activities and actors.
07 July 2020

Free decryptor available for ThiefQuest ransomware victims

ThiefQuest (EvilQuest) ransomware victims can now recover their encrypted files for free, without needing to pay the ransom demand.
07 July 2020