Cybersecurity News


Critical CODESYS Bug Allows Remote Code Execution

Critical CODESYS Bug Allows Remote Code Execution CVE-2020-10245, a heap-based buffer overflow that rates 10 out of 10 in severity, exists in the CODESYS web server and takes little skill to exploit.
26 March 2020

6 tips for safe and secure remote working

Getting cybersecurity right in the work-from-home world can feel daunting. ESET Chief Security Evangelist Tony Anscombe shares 6 best practices that will steer you in the right direction.

The post 6 tips for safe and secure remote working appeared first on WeLiveSecurity

26 March 2020

10 Security Services Options for SMBs

10 Security Services Options for SMBs Outsourcing security remains one of the best ways for small to midsize businesses to protect themselves from cyberthreats.
26 March 2020

Google says no APP users have been phished to date

Google lauds its Advanced Protection Program (APP) that provides enhanced security features.
26 March 2020

Tupperware Cyberattack Stores Away Customer Payment Cards

Tupperware Cyberattack Stores Away Customer Payment Cards The food container company's main website had a card skimmer that scooped up online customers' payment card data.
26 March 2020

Security Not a Priority for SAP Projects, Users Report

Nearly 70% of SAP users surveyed believe organizations lacked focus on IT security during previous SAP implementations.
26 March 2020

3 Mobile Security Problems That Most Security Teams Haven't Fixed Yet

Mobility must be included in the security operations workflow so that company data is protected regardless of where remote workers are located.
26 March 2020

Emerging APT Mounts Mass iPhone Surveillance Campaign

Emerging APT Mounts Mass iPhone Surveillance Campaign The malware, the work of a new APT called TwoSail Junk, allows deep surveillance and total control over iOS devices.
26 March 2020

Russians Shut Down Huge Card Fraud Ring

Federal investigators in Russia have charged at least 25 people accused of operating a sprawling international credit card theft ring. Cybersecurity experts say the raid included the charging of a major carding kingpin thought to be tied to dozens of carding shops and to some of the bigger data breaches targeting western retailers over the past decade. In a statement released this week, the Russian Federal Security Service (FSB) said 25 individuals were charged with circulating illegal means of payment in connection with some 90 websites that sold stolen credit card data.
26 March 2020

Google to resume Chrome updates it paused last week due to COVID-19

Google Chrome 81 to be released next month, on April 7.
26 March 2020

How the PCI DSS Can Help Remote Workers


PCI SSC shares guidance for protecting payment data and how to work securely when connecting and working remotely.

26 March 2020

As Zoom Booms Incidents of ‘ZoomBombing’ Become a Growing Nuisance

As Zoom Booms Incidents of ‘ZoomBombing’ Become a Growing Nuisance Numerous instances of online conferences being disrupted by pornographic images, hate speech or even threats can be mitigated using some platform tools.
26 March 2020

Technology Empowers Pandemic Response, But Privacy Worries Remain

As technology companies and the medical community work to find ways to track and test for the virus, privacy might fall by the wayside.
26 March 2020

Hackers Hijack Routers to Spread Malware Via Coronavirus Apps

Hackers Hijack Routers to Spread Malware Via Coronavirus Apps The router DNS hijacking attacks have targeted more than a thousand victims with the Oski info-stealing malware.
26 March 2020

Introducing Zero-Trust Access

It's too early to tell whether ZTA will be a VPN killer or not, but major players are ramping up products in this new class of security technology that focuses on the cloud.
26 March 2020

Responding to the New Normal: How to Prevent Added Risk in Your Business

Responding to the New Normal: How to Prevent Added Risk in Your Business With more employees than ever working remotely, there are numerous potential threats that organizations must be aware of.
26 March 2020

Rare BadUSB attack detected in the wild against US hospitality provider

Hackers use snail-mail to send target company an envelope with a malware-laced USB thumb drive.
26 March 2020

4G networks vulnerable to denial of service attacks, subscriber tracking

Don’t think you’re protected on upcoming 5G networks, either.
26 March 2020

HPE issues fix to stop some SSDs from self‑destructing

If left unpatched, a firmware flaw in some enterprise-class solid-state drives could make data on them unrecoverable as early as this fall

The post HPE issues fix to stop some SSDs from self‑destructing appeared first on WeLiveSecurity

26 March 2020

China-Based Threat Group Launches Widespread Malicious Campaign

The motives behind the attacks remain unclear, but likely triggers include the ongoing trade war between the US and China and the unfolding COVID-19 pandemic.
26 March 2020