Cybersecurity News


COVID-19 ‘Breach Bubble’ Waiting to Pop?

The COVID-19 pandemic has made it harder for banks to trace the source of payment card data stolen from smaller, hacked online merchants. On the plus side, months of quarantine have massively decreased demand for account information that thieves buy and use to create physical counterfeit credit cards. But fraud experts say recent developments suggest both trends are about to change -- and likely for the worse.
30 June 2020

3 Ways to Flatten the Health Data Hacking Curve

With more people working from home, health data security is more challenging but vitally important. These tips can help safeguard healthcare data.
30 June 2020

3 Years After NotPetya, Many Organizations Still in Danger of Similar Attacks

The same gaps that enabled ransomware to spread remain in patching, network segmentation, backup practices, security experts say.
30 June 2020

CISA: Nation-State Attackers Likely to Exploit Palo Alto Networks Bug

CISA: Nation-State Attackers Likely to Exploit Palo Alto Networks Bug An authentication-bypass vulnerability allows attackers to access network assets without credentials when SAML is enabled on certain firewalls and enterprise VPNs.
30 June 2020

How to Safeguard Data When the Majority of Your Workforce is Remote

How to Safeguard Data When the Majority of Your Workforce is Remote More employees working remotely most likely means an increased reliance on cloud services and applications.
30 June 2020

Promethium APT attacks surge, new Trojanized installers uncovered

The hacking group behind StrongPity is ignoring constant exposure by researchers in its quest for global intelligence and surveillance.
30 June 2020

University of California SF pays ransomware hackers $1.14 million to salvage research

The malware infected crucial research stored in the UCSF medical school’s network.
30 June 2020

The more cybersecurity tools an enterprise deploys, the less effective their defense is

New research highlights how throwing money indiscriminately at security doesn’t guarantee results.
30 June 2020

Google removes 25 Android apps caught stealing Facebook credentials

The malicious apps were downloaded more than 2.34 million times.
30 June 2020

COVID‑19 contact tracing – technology panacea or privacy nightmare?

Can a technological intervention stem the pandemic while avoiding the privacy pitfalls of location tracking?

The post COVID‑19 contact tracing – technology panacea or privacy nightmare? appeared first on WeLiveSecurity

30 June 2020

US Cyber Command says foreign hackers will most likely exploit new PAN-OS security bug

Palo Alto Networks disclosed today a major bug that lets hackers bypass authentication on its firewall and corporate VPN products.
29 June 2020

US Cyber Command says foreign hackers will attempt to exploit new PAN-OS security bug

Palo Alto Networks disclosed today a major bug that lets hackers bypass authentication on its firewall and corporate VPN products.
29 June 2020

University of California SF Pays Ransom After Medical Servers Hit

As one of at least three universities hit in June, the school paid $1.14 million to cybercriminals following an attack on "several IT systems" in the UCSF School of Medicine.
29 June 2020

Russian Cybercriminal Behind CardPlanet Sentenced to 9 Years

Aleksei Burkov will go to federal prison for operating two websites built to facilitate payment card fraud, hacking, and other crimes.
29 June 2020

HackerOne Reveals Top 10 Bug-Bounty Programs

Rankings based on total bounties paid, top single bounty paid, time to respond, and more.
29 June 2020

REvil Ransomware Gang Adds Auction Feature for Stolen Data

REvil Ransomware Gang Adds Auction Feature for Stolen Data An anonymous bidding mechanism enhances the REvil group's double-extortion game.
29 June 2020

A hacker gang is wiping Lenovo NAS devices and asking for ransoms

Ransom notes signed by 'Cl0ud SecuritY' hacker group are being found on old LenovoEMC NAS devices.
29 June 2020

Tuesday’s Magento 1 EOL Leaves Clock Ticking on 100K Online Stores

Tuesday’s Magento 1 EOL Leaves Clock Ticking on 100K Online Stores Adobe and payment-card companies are making last-minute pleas for e-commerce sites to update to Magento 2, to avoid Magecart attacks and more.
29 June 2020

Files Stolen from 945 Websites Discovered on Dark Web

Researchers who found the archived SQL files estimate up to 14 million people could be affected.
29 June 2020

AWS Facial Recognition Platform Misidentified Over 100 Politicians As Criminals

AWS Facial Recognition Platform Misidentified Over 100 Politicians As Criminals Comparitech’s Paul Bischoff found that Amazon’s facial recognition platform misidentified an alarming number of people, and was racially biased.
29 June 2020