Cybersecurity News


Payment Security Experts Emphasize Working Together

 

The PCI SSC Latin American Forum, an online event took place this week with more than 1,100 payment security practitioners from Latin America discussing the latest in payment security and standards. Here we talk with Carlos Caetano, PCI Security Standards Council Associate Director, Latin American Region for Brazil, Elder Vinicius Telles de Arruda, Information Security Manager, Getnet; Enildo Barros, IT Services Head, C6 Bank and Ricardo Nilsen Moreno, Information Security Superintendent, Banco Safra about cloud security trends, highlights from the Latin American Forum (LAF) and industry involvement opportunities for the region.

12 August 2021

AdLoad Malware 2021 Samples Skate Past Apple XProtect

AdLoad Malware 2021 Samples Skate Past Apple XProtect A crush of new attacks using the well-known adware involves at least 150 updated samples, many of which aren't recognized by Apple's built-in security controls.
12 August 2021

Ransomware Payments Explode Amid ‘Quadruple Extortion’

Ransomware Payments Explode Amid ‘Quadruple Extortion’ Unit 42 puts the average payout at over half a million, while Barracuda has tracked a 64 percent year over year spike in the number of attacks.
12 August 2021

QR Code Scammers Get Creative with Bitcoin ATMs

QR Code Scammers Get Creative with Bitcoin ATMs Threat actors are targeting everyone from job hunters to Bitcoin traders to college students wanting a break on their student loans, by exploiting the popular technology's trust relationship with users.
12 August 2021

Microsoft Warns: Another Unpatched PrintNightmare Zero-Day

Microsoft Warns: Another Unpatched PrintNightmare Zero-Day The out-of-band warning pairs with a working proof-of-concept exploit for the issue, circulating since mid-July.
12 August 2021

Examining threats to device security in the hybrid workplace

As employees split their time between office and off-site work, there’s a greater potential for company devices and data to fall into the wrong hands

The post Examining threats to device security in the hybrid workplace appeared first on WeLiveSecurity

12 August 2021

Accenture Confirms LockBit Ransomware Attack

Accenture Confirms LockBit Ransomware Attack LockBit offered Accenture's purported databases and made a requisite jab at its purportedly sad security. Accenture says it recovered just fine from backups.
11 August 2021

NSA Watchdog Will Review Tucker Carlson Spying Claims

NSA Watchdog Will Review Tucker Carlson Spying Claims Despite a lack of evidence, the National Security Agency will investigate whether the Fox host was illegally targeted.
11 August 2021

‘Friends’ Reunion Anchors Video Swindle

‘Friends’ Reunion Anchors Video Swindle Spam was on the rise in Q2, with video fraud and COVID-19-related efforts in the mix.
11 August 2021

Kaseya’s ‘Master Key’ to REvil Attack Leaked Online

Kaseya’s ‘Master Key’ to REvil Attack Leaked Online The decryptor is of little use to other companies hit in the spate of attacks unleashed before the notorious ransomware group went dark, researchers said.
11 August 2021

SAP Patches Nine Critical & High-Severity Bugs

SAP Patches Nine Critical & High-Severity Bugs Experts urged enterprises to patch fast: SAP vulnerabilities are being weaponized in a matter of hours.
11 August 2021

Crypto Hack Earned Crooks $600 Million

Crypto Hack Earned Crooks $600 Million In one of the largest cryptocurrency hacks to date, cyberattackers reportedly stole millions from the decentralized finance (DeFi) platform Poly Network.
11 August 2021

Paving the Way: Inspiring Women in Payments - A Podcast Featuring Candice Pressinger

 

As the first girl in her family who was encouraged to go to university, Candice Pressinger is inspired by how far the world has come in terms of education, female role models, and new societal norms. These advancements are now reflected in her own daughter who is exposed to technology at a young age through STEM programs in school. In this edition of our podcast, Candice reflects on her career journey through a changing tech world but acknowledges that there is still a long way to go to achieve a workforce representative of equal opportunity and diversity in all its forms.

11 August 2021

IISerpent: Malware‑driven SEO fraud as a service

The last in our series on IIS threats introduces a malicious IIS extension used to manipulate page rankings for third-party websites

The post IISerpent: Malware‑driven SEO fraud as a service appeared first on WeLiveSecurity

11 August 2021

Connected Farms Easy Pickings for Global Food Supply-Chain Hack

Connected Farms Easy Pickings for Global Food Supply-Chain Hack John Deere security bugs could allow cyberattackers to damage crops, surrounding property or even people; impact harvests; or destroy farmland for years.
10 August 2021

Actively Exploited Windows Zero-Day Gets a Patch

Actively Exploited Windows Zero-Day Gets a Patch Microsoft's August 2021 Patch Tuesday addressed a smaller set of bugs than usual, including more Print Spooler problems, a zero-day and seven critical vulnerabilities.
10 August 2021

Microsoft Patch Tuesday, August 2021 Edition

Microsoft today released software updates to plug at least 44 security vulnerabilities in its Windows operating systems and related products. The software giant warned that attackers already are pouncing on one of the flaws, which ironically enough involves an easy-to-exploit bug in the software component responsible for patching Windows 10 PCs and Windows Server 2019 machines.
10 August 2021

Microsoft's August 2021 Patch Tuesday: 44 flaws fixed, seven critical including Print Spooler vulnerability

The latest Patch Tuesday sees Microsoft release fixes for 44 different vulnerabilities, including the much-discussed Print Spooler flaw.
10 August 2021

eCh0raix Ransomware Variant Targets QNAP, Synology NAS Devices

eCh0raix Ransomware Variant Targets QNAP, Synology NAS Devices Some bad actors are honing tools to go after small fry: This variant was refined to target not one, but two vendors’ devices that are common in SOHO setups.
10 August 2021

Deepfakes – the bot made me do it

As fraud involving highly believable synthetic media soars, what can you do to avoid getting scammed?

The post Deepfakes – the bot made me do it appeared first on WeLiveSecurity

10 August 2021