Cybersecurity News


Bad Certificate Knocks Teams Off Line

Microsoft allowed a certificate to expire, knocking the Office 365 version of Teams offline for almost an entire day.
03 February 2020

EKANS Ransomware Raises Industrial-Control Worries

Although the ransomware is unsophisticated, the malware does show that some crypto-attackers are targeting certain industrial control products.
03 February 2020

C-Level & Studying for the CISSP

C-Level & Studying for the CISSP One CTO tells us about his belated pursuit of a foundational infosecurity certification -- why he wanted it and what it took.
03 February 2020

Attackers Actively Targeting Flaw in Door-Access Controllers

There's been a sharp increase in scans for vulnerable Nortek Linear Emerge E3 systems, SonicWall says.
03 February 2020

Researchers Find 24 'Dangerous' Android Apps with 382M Installs

Shenzhen Hawk Internet Co. is identified as the parent company behind five app developers seeking excessive permissions in Android apps.
03 February 2020

Twitter says an attacker used its API to match usernames to phone numbers

The attack took place on Christmas Eve and came from IP addresses from Iran, Israel, and Malaysia.
03 February 2020

AZORult Campaign Adopts Novel Triple-Encryption Technique

AZORult Campaign Adopts Novel Triple-Encryption Technique Popular trojan is sneaking its way onto PCs via malspam campaign that uses three levels of encryption to sneak past cyber defenses.
03 February 2020

Tesla Autopilot Duped By ‘Phantom’ Images

Tesla Autopilot Duped By ‘Phantom’ Images Researchers were able to fool popular autopilot systems into perceiving projected images as real - causing the cars to brake or veer into oncoming traffic lanes.
03 February 2020

Coronavirus Phishing Attack Infects US, UK Inboxes

Cybercriminals capitalize on fears of a global health emergency with phishing emails claiming to offer advice for protecting against coronavirus.
03 February 2020

Only three of the Top 100 international airports pass basic security checks

Tests involved scanning public websites, mobile apps, and exposures of sensitive airport data on public code repositories and the dark web.
03 February 2020

Ashley Madison Breach Extortion Scam Targets Hundreds

Ashley Madison Breach Extortion Scam Targets Hundreds A new extortion attack has targeted hundreds of users affected by the Ashley Madison breach over the past week.
03 February 2020

How Device-Aware 2FA Can Defeat Social Engineering Attacks

While device-aware two-factor authentication is no panacea, it is more secure than conventional SMS-based 2FA. Here's why.
03 February 2020

Would you get hooked by a phishing scam? Test yourself

As the tide of phishing attacks rises, improving your scam-spotting skills is never a bad idea

The post Would you get hooked by a phishing scam? Test yourself appeared first on WeLiveSecurity

03 February 2020

Would you get hooked by a phishing scam? Test yourself

As the tide of phishing attacks rises, improving your scam-spotting skills is never a bad idea

The post Would you get hooked by a phishing scam? Test yourself appeared first on WeLiveSecurity

03 February 2020

Charges dropped against Coalfire security team who broke into courthouse during pen test

Miscommunication led to arrests during a midnight physical security test.
03 February 2020

TrickBot Switches to a New Windows 10 UAC Bypass to Evade Detection

TrickBot Switches to a New Windows 10 UAC Bypass to Evade Detection The tricky trojan evolves yet again, remaining one of the most advanced vehicles for delivering malware.
03 February 2020

ZeroHedge banned from Twitter over coronavirus bioweapon claims

The financial news website came under fire for doxxing a Chinese scientist accused of being behind the virus.
03 February 2020

Magecart group jumps from Olympic ticket website to new wave of e-commerce shops

Skimmer references were spotted on domains serving customers worldwide.
03 February 2020

Hackers are hijacking smart building access systems to launch DDoS attacks

More than 2,300 building access systems can be hijacked due to a severe vulnerability left without a fix.
02 February 2020

Raytheon engineer arrested for taking US missile defense data to China

FBI arrests former 10-year-old Raytheon electric engineer for taking classified info about US missile defense systems to China and then lying about it.
02 February 2020