Cybersecurity News
Winning the Cyber-Defense Race: Understand the Finish Line
Kerry Matre, Mandiant senior director, clears up misconceptions about the value to business for enterprise cyber-defense. Hint: It's not achieving visibility.
FIN8 Targets US Bank With New ‘Sardonic’ Backdoor
The latest refinement of the APT's BadHatch backdoor can leverage new malware on the fly without redeployment, making it potent and nimble.
Critical Azure Cosmos DB Bug Allows Full Cloud Account Takeover
It's unclear if Microsoft customers were breached during the months-long period where the #ChaosDB bug in Jupyter Notebooks was exploitable.
Week in security with Tony Anscombe
ESET research discovers SideWalk backdoor – Why data breach costs have never been higher – 620,000 personal pictures stolen from iCloud accounts
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
Ragnarok Ransomware Gang Bites the Dust, Releases Decryptor
The cybercriminal group, active since late 2019, has closed its doors and released the key to unlocking victims’ files on its dark web portal.
Top Strategies That Define the Success of a Modern Vulnerability Management Program
Modern vulnerability management programs require a strategy that defines what success means for your organization’s cybersecurity goals. By incorporating a few simple cyber hygiene routines to your daily security routine, you’ll set up your IT teams to be better equipped to steer off cyberattacks.
‘Pay Ransom’ Screen? Too Late, Humpty Dumpty – Podcast
Splunk’s Ryan Kovar discusses the rise in supply-chain attacks a la Kaseya & how to get ahead of encryption leaving your business a pile of broken shells.
Parents of teens who stole $1 million in Bitcoin sued by alleged victim
Clipboard malware was developed with the sole purpose of stealing cryptocurrency.US charges HeadSpin ex-CEO over fake $1bn valuation scheme
The SEC claims the startup's metrics were inflated.Beyond the pandemic: Why are data breach costs at an all‑time high?
It might be tempting to blame the record-high costs of data breaches on the COVID-19 pandemic alone. But dig deeper and a more nuanced picture emerges.
The post Beyond the pandemic: Why are data breach costs at an all‑time high? appeared first on WeLiveSecurity
Man Sues Parents of Teens Who Hijacked Nearly $1M in Bitcoin
Now adults, the then-teens apparently used clipboard hijacking malware to steal Bitcoin.
F5 Bug Could Lead to Complete System Takeover
The worst of 13 bugs fixed by the August updates could lead to complete system compromise for users in sensitive sectors running products in Appliance mode.
Chinese developers expose data belonging to Android gamers
In the end, Hong Kong CERT was contacted in an attempt to resolve the security issue.Man impersonates Apple support, steals 620,000 photos from iCloud accounts
The man was after sexually explicit photos and videos that he would then share online or store in his own collection
The post Man impersonates Apple support, steals 620,000 photos from iCloud accounts appeared first on WeLiveSecurity
Podcast: Ransomware Up x10: Disrupting Cybercrime Suppy Chains an Opportunity
Derek Manky, Chief, Security Insights & Global Threat Alliances at Fortinet’s FortiGuard Labs, discusses the top threats and lessons learned from the first half of 2021.
What is GDPR and why does the UK want to reshape its data laws?
The government says an overhaul will boost growth and increase trade – but it must be careful not to go too far
The government has announced plans to reshape the UK’s data laws such as GDPR requirements in an effort, it claims, to boost growth and increase trade post-Brexit. The digital, media and culture secretary, Oliver Dowden, says the UK wants to shape data laws based on “common sense, not box-ticking”.
Continue reading...Microsoft Breaks Silence on Barrage of ProxyShell Attacks
versions of the software are affected by a spate of bugs under active exploitations.
UK to overhaul privacy rules in post-Brexit departure from GDPR
Culture secretary says move could lead to an end to irritating cookie popups and consent requests online
Britain will attempt to move away from European data protection regulations as it overhauls its privacy rules after Brexit, the government has announced.
The freedom to chart its own course could lead to an end to irritating cookie popups and consent requests online, said the culture secretary, Oliver Dowden, as he called for rules based on “common sense, not box-ticking”.
Continue reading...Cisco Issues Critical Fixes for High-End Nexus Gear
Networking giant issues two critical patches and six high-severity patches.