Cybersecurity News


7 IoT Tips for Home Users

7 IoT Tips for Home Users Whether for business or pleasure, you're on your own once you walk into the house with a new Internet of Things device. Here's how to keep every one secure.
02 July 2020

Facebook says 5,000 app developers got user data after cutoff date

A Facebook privacy mechanism blocks apps from receiving user data if users didn't use an app for 90 days. Facebook said 5,000 apps continued to receive user data regardless.
01 July 2020

Connection discovered between Chinese hacker group APT15 and defense contractor

Lookout said it linked APT15 malware to Xi'an Tianhe Defense Technology, a Chinese defense contractor.
01 July 2020

Ransomware Gangs Don’t Need PR Help

We've seen an ugly trend recently of tech news stories and cybersecurity firms trumpeting claims of ransomware attacks on companies large and small, apparently based on little more than the say-so of the ransomware gangs themselves. Such coverage is potentially quite harmful and plays deftly into the hands of organized crime. Often the rationale behind couching these events as newsworthy is that the attacks involve publicly traded companies or recognizable brands, and that investors and the public have a right to know. But absent any additional information from the victim company or their partners who may be affected by the attack, these kinds of stories and blog posts look a great deal like ambulance chasing and sensationalism.
01 July 2020

Attackers Compromised Dozens of News Websites as Part of Ransomware Campaign

Malware used to download WastedLocker on target networks was hosted on legit websites belonging to one parent company, Symantec says.
01 July 2020

Chinese Software Company Aisino Uninstalls GoldenSpy Malware

Follow-up sandbox research confirms Aisino knew about the malware in its tax software, though it's still unclear whether it was culpable.
01 July 2020

Businesses Invest in Cloud Security Tools Despite Concerns

A majority of organizations say the acceleration was driven by a need to support more remote employees.
01 July 2020

DHS Shares Data on Top Cyber Threats to Federal Agencies

Backdoors, cryptominers, and ransomware were the most widely detected threats by the DHS Cybersecurity and Infrastructure Security Agency (CISA)'s intrusion prevention system EINSTEIN.
01 July 2020

DHS Shares Data on Top Cyberthreats to Federal Agencies

Backdoors, cryptominers, and ransomware were the most widely detected threats by the DHS Cybersecurity and Infrastructure Security Agency (CISA)'s intrusion prevention system EINSTEIN.
01 July 2020

Hacker ransoms 23k MongoDB databases and threatens to contact GDPR authorities

The hacker has attempted to ransom nearly 47% of all MongoDB databases left exposed online.
01 July 2020

Cisco Warns of High-Severity Bug in Small Business Switch Lineup

Cisco Warns of High-Severity Bug in Small Business Switch Lineup A high-severity flaw allows remote, unauthenticated attackers to potentially gain administrative privileges for Cisco small business switches.
01 July 2020

Alina Point-of-Sale Malware Spotted in Ongoing Campaign

Alina Point-of-Sale Malware Spotted in Ongoing Campaign The malware is using DNS tunneling to exfiltrate payment-card data.
01 July 2020

New MacOS Ransomware Hides in Pirated Program

A bogus installer for Little Snitch carries a ransomware hitchhiker.
01 July 2020

Microsoft Issues Out-of-Band Patches for RCE Flaws

Vulnerabilities had not been exploited or publicly disclosed before fixes were released, Microsoft reports.
01 July 2020

EvilQuest: Inside A ‘New Class’ of Mac Malware

EvilQuest: Inside A ‘New Class’ of Mac Malware Mac expert Thomas Reed discusses how EvilQuest is ushering in a new class of Mac malware.
01 July 2020

4 Steps to a More Mature Identity Program

Security has evolved to evaluate an identity's attributes, access, and behavior to determine appropriate access.
01 July 2020

One out of every 142 passwords is '123456'

The '123456' password was spotted 7 million times across a data trove of one billion leaked credentials, on one of the biggest password re-use studies of its kind.
01 July 2020

New Android Spyware Tools Emerge in Widespread Surveillance Campaign

New Android Spyware Tools Emerge in Widespread Surveillance Campaign Never-before-seen Android spyware tools have been used in a widespread APT campaign to spy on the Uyghur ethnic minority group - since 2013.
01 July 2020

Another COVID-19 Side Effect: Rising Nation-State Cyber Activity

While financial institutions and government remain popular targets, COVID-19 research organizations are now also in the crosshairs.
01 July 2020

Email Sender Identity is Key to Solving the Phishing Crisis

Email Sender Identity is Key to Solving the Phishing Crisis Almost 90% of email attacks manipulate sender identity to fool recipients and initiate social engineering attacks.
01 July 2020