Cybersecurity News


A hacker is selling details of 142 million MGM hotel guests on the dark web

EXCLUSIVE: The MGM Resorts 2019 data breach is much larger than initially reported.
13 July 2020

Breached Data Indexer ‘Data Viper’ Hacked

Data Viper, a security startup that provides access to some 15 billion usernames, passwords and other information exposed in more than 8,000 website breaches, has itself been hacked and its user database posted online. The hackers also claim they are selling on the dark web roughly 2 billion records Data Viper collated from numerous breaches and data leaks, including data from several companies that likely either do not know they have been hacked or have not yet publicly disclosed an intrusion. The apparent breach at St. Louis, Mo. based Data Viper offers a cautionary and twisted tale of what can happen when security researchers seeking to gather intelligence about illegal activity online get too close to their prey or lose sight of their purported mission. The incident also highlights the often murky area between what's legal and ethical in combating cybercrime.
13 July 2020

Zero-Trust Efforts Rise with the Tide of Remote Working

With employees likely to continue to spend much, if not all, of their time working from home, companies are focusing more on technologies to boost the security of their now-distributed workplace.
13 July 2020

A Paramedic's Lessons for Cybersecurity Pros

A paramedic turned cybersecurity expert shares his experiences in both fields, highlights their similarities, and explains how they can learn from each other.
13 July 2020

Lost in Translation: Serious Flaws Found in ICS Protocol Gateways

These oft-forgotten devices contain serious vulnerabilities that allow attackers to hack OT systems remotely, researchers will reveal at Black Hat USA next month.
13 July 2020

Russian Hacker Convicted for Social Network Hacks

The Russian national was convicted of hacking into accounts at LinkedIn, Dropbox, and Formspring.
13 July 2020

Google Meet adds zoombombing protection for education customers

Google will block anonymous users from joining Google Meet video conferences organized by G Suite for Education customers.
13 July 2020

Zoom patches zero‑day flaw in Windows client

The vulnerability exposed Zoom users running Windows 7 or earlier OS versions to remote attacks

The post Zoom patches zero‑day flaw in Windows client appeared first on WeLiveSecurity

13 July 2020

Experts Predict Rise of Data Theft in Ransomware Attacks

The most attractive targets for data theft are businesses perceived as most likely to pay to prevent exposure of their information.
13 July 2020

TrickBot Sample Accidentally Warns Victims They’re Infected

TrickBot Sample Accidentally Warns Victims They’re Infected A data-stealing module in a recent sandboxed sample triggers browser-based fraud alerts for Trickbot victims -- and shows something of the inner working of the malware's operators.
13 July 2020

Secret Service Creates Cyber Fraud Task Forces

Secret Service Creates Cyber Fraud Task Forces Traditional financial crime and cyberattacks are converging, requiring new skills and approaches to the problem, officials said.
13 July 2020

Decoding the Verizon DBIR Report: An Insider's Look Beyond the Headlines

To truly understand cybersecurity trends, we must look beyond the headlines and ask more of the data. What you learn might surprise you.
13 July 2020

A ‘New Age’ of Sophisticated Business Email Compromise is Coming

A ‘New Age’ of Sophisticated Business Email Compromise is Coming A new BEC threat group is heralding more sophisticated email scams that target organizations without DMARC and squeeze as much money out of victims as possible.
13 July 2020

The Enemy Within: How Insider Threats Are Changing

The Enemy Within: How Insider Threats Are Changing Insider-threat security experts unravel the new normal during this time of remote working, and explain how to protect sensitive data from this escalating risk.
13 July 2020

How CARTA Strategies for Web Applications are Met with Indusface AppTrana Solution

How CARTA Strategies for Web Applications are Met with Indusface AppTrana Solution From an operational standpoint, the foundation of CARTA starts with an assessment and then building the zero-trust principles on top of that with an adaptive security model.
13 July 2020

Learn About the Latest Election Security Threats and Defenses at Black Hat USA

Christopher Krebs, director of the CISA, will explain how the organization is leading the federal effort to support state and local officials in their mission to secure US elections this year.
13 July 2020

MGySgt Scott Stalker’s 2020 Reading List

MGySgt Scott H. Stalker’s 2020 Reading List By William Knowles @c4i Senior Editor InfoSec News July 8, 2020 One of the interesting parts of the COVID-19 pandemic with the number […]
13 July 2020

Hacker breaches security firm in act of revenge

Hacker claims to have stolen more than 8,200 databases from a security firm's data leak monitoring service.
12 July 2020

Russian hacker found guilty for Dropbox, LinkedIn, and Formspring breaches

Sentencing scheduled for September 2020.
11 July 2020

Researchers create magstripe versions from EMV and contactless cards

Banking industry loophole reported more than a decade ago still remains open and ripe for exploitation today.
10 July 2020