Cybersecurity News
Crypto Hack Earned Crooks $600 Million
In one of the largest cryptocurrency hacks to date, cyberattackers reportedly stole millions from the decentralized finance (DeFi) platform Poly Network.
Paving the Way: Inspiring Women in Payments - A Podcast Featuring Candice Pressinger
As the first girl in her family who was encouraged to go to university, Candice Pressinger is inspired by how far the world has come in terms of education, female role models, and new societal norms. These advancements are now reflected in her own daughter who is exposed to technology at a young age through STEM programs in school. In this edition of our podcast, Candice reflects on her career journey through a changing tech world but acknowledges that there is still a long way to go to achieve a workforce representative of equal opportunity and diversity in all its forms.
IISerpent: Malware‑driven SEO fraud as a service
The last in our series on IIS threats introduces a malicious IIS extension used to manipulate page rankings for third-party websites
The post IISerpent: Malware‑driven SEO fraud as a service appeared first on WeLiveSecurity
Connected Farms Easy Pickings for Global Food Supply-Chain Hack
John Deere security bugs could allow cyberattackers to damage crops, surrounding property or even people; impact harvests; or destroy farmland for years.
Actively Exploited Windows Zero-Day Gets a Patch
Microsoft's August 2021 Patch Tuesday addressed a smaller set of bugs than usual, including more Print Spooler problems, a zero-day and seven critical vulnerabilities.
Microsoft Patch Tuesday, August 2021 Edition
Microsoft today released software updates to plug at least 44 security vulnerabilities in its Windows operating systems and related products. The software giant warned that attackers already are pouncing on one of the flaws, which ironically enough involves an easy-to-exploit bug in the software component responsible for patching Windows 10 PCs and Windows Server 2019 machines.Microsoft's August 2021 Patch Tuesday: 44 flaws fixed, seven critical including Print Spooler vulnerability
The latest Patch Tuesday sees Microsoft release fixes for 44 different vulnerabilities, including the much-discussed Print Spooler flaw.eCh0raix Ransomware Variant Targets QNAP, Synology NAS Devices
Some bad actors are honing tools to go after small fry: This variant was refined to target not one, but two vendors’ devices that are common in SOHO setups.
Deepfakes – the bot made me do it
As fraud involving highly believable synthetic media soars, what can you do to avoid getting scammed?
The post Deepfakes – the bot made me do it appeared first on WeLiveSecurity
Back-to-Basics: Use Strong Encryption
As small and medium businesses begin to re-open following the pandemic, it’s important to do so securely in order to protect customer’s payment card data. Too often, data breaches happen as a result of vulnerabilities that are entirely preventable. The PCI Security Standards Council (PCI SSC) has developed a set of payment protection resources for small businesses. In this 8-part back-to-basics series, we highlight payment security basics for protecting against payment data theft. Today’s blog focuses on using encryption to make payment data unreadable.
Chaos Malware Walks Line Between Ransomware and Wiper
The dangerous malware has been rapidly developed since June and could be released into the wild soon.
Fuzz Off: How to Shake Up Code to Get It Right – Podcast
Is fuzzing for the cybersec elite, or should it be accessible to all software developers? FuzzCon panelists say join the party as they share fuzzing wins & fails.
1M Stolen Credit Cards Hit Dark Web for Free
A dump of hundreds of thousands of active accounts is aimed at promoting AllWorld.Cards, a recently launched cybercriminal site for selling payment credentials online.
Ransomware runs rampant, so how can you combat this threat?
A new paper explains how ransomware has become one of the top cyberthreats of the day and how your organization can avoid becoming the next victim
The post Ransomware runs rampant, so how can you combat this threat? appeared first on WeLiveSecurity
‘Glowworm’ Attack Turns Power Light Flickers into Audio
Researchers have found an entirely new attack vector for eavesdropping on Zoom and other virtual meetings.
Black Hat: Scaling Automated Disinformation for Misery and Profit
Researchers demonstrated the power deep neural networks enlisted to create a bot army with the firepower to shape public opinion and spark QAnon 2.0.
Auth Bypass Bug Exploited, Affecting Millions of Routers
A mere three days after disclosure, cyberattackers are hijacking home routers from 20 vendors & ISPs to add them to a Mirai-variant botnet used for carrying out DDoS attacks.
How to find and remove spyware from your phone
Surveillance isn't just the purview of nation-states and government agencies -- sometimes, it's closer to home.DEF CON 29: Satellite hacking 101
How peering into the innards of a future satellite can make cybersecurity in space more palatable
The post DEF CON 29: Satellite hacking 101 appeared first on WeLiveSecurity
Android Malware ‘FlyTrap’ Hijacks Facebook Accounts
Coupon codes for Netlifx or Google AdWords? Voting for the best football team? Beware: Malicious apps offering such come-ons could inflict a new trojan.
