Cybersecurity News


Who’s Behind Wednesday’s Epic Twitter Hack?

Twitter was thrown into chaos on Wednesday after accounts for some of the world's most recognizable public figures, executives and celebrities starting tweeting out links to bitcoin scams. Twitter says the attack happened because someone tricked or coerced an employee into providing access to internal Twitter administrative tools. This post is an attempt to lay out some of the timeline of this attack, and point to clues about who may have been behind it.
16 July 2020

DHS CISA tells government agencies to patch Windows Server DNS bug within 24h

CISA cites "likelihood of the vulnerability being exploited" and widespread use of Windows Server as primary reason for today's rare measure.
16 July 2020

Major Flaws Open the Edge to Attack

Attackers are using critical exploits for flaws in VPN appliances, app-delivery services, and other network-edge hardware and software to punch through corporate perimeters. What can companies do?
16 July 2020

Enterprise Data Security: It’s Time to Flip the Established Approach

Enterprise Data Security: It’s Time to Flip the Established Approach Companies should forget about auditing where data resides and who has access to it.
16 July 2020

Twitter: No evidence hackers accessed user passwords

Social network has no plans to reset user passwords after yesterday's massive hack that spread a Bitcoin scam on the platform.
16 July 2020

EU Court Ruling Means New Global Protections for EU Customer Data

The ruling in a case involving Facebook means that international companies must provide EU-level privacy controls for EU-generated data no matter where it's stored or transferred.
16 July 2020

Twitter Attack Raises Concerns Over its Internal Controls

Attackers temporarily gained control of the accounts of Joe Biden, Barack Obama, Bill Gates, and others, to tweet a bitcoin scam.
16 July 2020

Hackers Look to Steal COVID-19 Vaccine Research

Hackers Look to Steal COVID-19 Vaccine Research The Russia-linked APT29 has set its sights on pharma research in Western nations in a likely attempt to get ahead on a cure for coronavirus.
16 July 2020

Cybersecurity Leaders: Invest In Your People

Training, especially cross-training, is insanely powerful when team members are able to experience, train, and work together. It also builds trust.
16 July 2020

Russian Cyberattacks Target COVID-19 Research, Vaccine Development

Government agencies in the US, UK, and Canada report Russian group Cozy Bear is targeting organizations developing coronavirus vaccines.
16 July 2020

Diebold Nixdorf warns of a new class of ATM 'black box' attacks across Europe

New ATM black box (jackpotting) attacks have been spotted in Belgium.
16 July 2020

Zoom Addresses Vanity URL Zero-Day

Zoom Addresses Vanity URL Zero-Day An attacker could pose as a company employee, invite customers or partners to meetings, then use socially engineered conversation to extract sensitive information.
16 July 2020

Spanish deputy PM urges investigation into Catalan spyware claims

Spanish deputy PM urges investigation into Catalan spyware claims

Exclusive: Pablo Iglesias calls alleged targeting of independence movement figures unacceptable

The Spanish deputy prime minister Pablo Iglesias has become the most senior political figure to call for a parliamentary investigation into the use of spyware to target prominent members of the Catalan independence movement, saying such practices are “unacceptable in a democracy”.

A joint investigation this week by the Guardian and El País has revealed that Roger Torrent, the speaker of the Catalan parliament, and former regional foreign minister Ernest Maragall are among at least four pro-independence activists who have been targeted using Israeli spyware that its makers said is sold only to governments.

Continue reading...
16 July 2020

High‑profile Twitter accounts hacked to promote Bitcoin scam

Tech titans and prominent politicians among victims of a sprawling hack that Twitter says leveraged its internal tools

The post High‑profile Twitter accounts hacked to promote Bitcoin scam appeared first on WeLiveSecurity

16 July 2020

US actor casting company leaked private data of over 260,000 individuals

Exclusive: The site has been used to cast members in Pitch Perfect and Terminator Genisys, among other shows.
16 July 2020

Third-Party IoT Vulnerabilities: We Need a Cybersecurity Paradigm Shift

The only entities equipped to safeguard Internet of Things devices against risks are the IoT device manufacturers themselves.
16 July 2020

Amazon-Themed Phishing Campaigns Swim Past Security Checks

Amazon-Themed Phishing Campaigns Swim Past Security Checks A pair of recent campaigns aim to lift credentials and other personal information under the guise of Amazon package-delivery notices.
16 July 2020

Level Up Your Kubernetes Security Skills at Black Hat USA

Gain access to a broad spectrum of in-depth cybersecurity Briefings and Trainings.
16 July 2020

European court strikes down EU-US Privacy Shield user data exchange agreement as invalid

The decision could have immediate ramifications for the transfer of user data between the US and Europe.
16 July 2020

Threat Actors Introduce Unique ‘Newbie’ Hacker Forum

Threat Actors Introduce Unique ‘Newbie’ Hacker Forum CryptBB becomes more inclusive by inviting less experienced hackers to learn from expert cybercriminals and one another.
16 July 2020