Cybersecurity News
Vacationing? How to avoid the cybersecurity blues
From securing your devices to avoiding public Wi-Fi hotspots for logging into apps we look at measures you can take to remain safe while this holiday season.
The post Vacationing? How to avoid the cybersecurity blues appeared first on WeLiveSecurity
Microsoft points the finger at Israeli spyware seller for DevilsTongue attacks
Updates released this week protect against two key zero-day vulnerabilities weaponized by customers.Attackers Exploited 4 Zero-Day Flaws in Chrome, Safari & IE
At least two government-backed actors -- including one Russian group -- used the now-patched flaws in separate campaigns, Google says.State Dept. to Pay Up to $10M for Information on Foreign Cyberattacks
The Rewards for Justice program, a counterterrorism tool, is now aimed at collecting information on nation-states that use hackers to disrupt critical infrastructure.Zero-Day Attacks on Critical WooCommerce Bug Threaten Databases
The popular e-commerce platform for WordPress has started deploying emergency patches.
CISA Launches New Website to Aid Ransomware Defenders
StopRansomware.gov provides information to help organizations protect against, and respond to, ransomware attacks.Microsoft: Israeli Firm's Tools Used to Target Activists, Dissidents
Candiru sold spyware that exploited Windows vulnerabilities and had been used in attacks against dissidents, activists, and journalists.IoT-Specific Malware Infections Jumped 700% Amid Pandemic
Gafgyt and Mirai malware represented majority of IoT malware, new data from Zscaler shows.How to Bridge On-Premises and Cloud Identity
Identity fabric, a cloud-native framework, removes the need for multiple, siloed, proprietary identity systems.Fake Zoom App Dropped by New APT ‘LuminousMoth’
First comes spear-phishing, next download of malicious DLLs that spread to removable USBs, dropping Cobalt Strike Beacon, and then, sometimes, a fake Zoom app.
SonicWall Warns Secure VPN Hardware Bugs Under Attack
SonicWall issued an urgent security alert warning customers that some of its current and legacy secure VPN appliances were under active attack.
SonicWall Warns Firewall Hardware Bugs Under Attack
SonicWall issued an urgent security alert warning customers that some of its current and legacy firewall appliances were under active attack.
What to Look for in an Effective Threat Hunter
The most important personality traits, skills, and certifications to look for when hiring a threat hunting team.Data officers raid two properties over Matt Hancock CCTV footage leak
Computer equipment and electronic devices seized in connection with images of minister kissing aide
Two residential properties in the south of England have been raided by data protection officers, as part of their investigation into who leaked CCTV footage of Matt Hancock kissing an aide in his office.
The Information Commissioner’s Office (ICO) said they had seized computer equipment and electronic devices as part of the operation on Thursday morning, amid an ongoing investigation into alleged breaches of the Data Protection Act.
Continue reading...Safari Zero-Day Used in Malicious LinkedIn Campaign
Researchers shed light on how attackers exploited Apple web browser vulnerabilities to target government officials in Western Europe.
Sports events and online streaming: prepare your cybersecurity
If you'll be watching Sports Streaming events on your SmartTV, laptop, tablet or cell phone, learn the tips to keep you and your personal data safe.
The post Sports events and online streaming: prepare your cybersecurity appeared first on WeLiveSecurity
SonicWall: 'Imminent' Ransomware Attack Targets Older Products
The attack exploits a known vulnerability that was fixed in new versions of firmware released this year.Google to Bring HTTPS-First Mode to Chrome Browser
Beginning in M94, Chrome will offer HTTPS-First Mode, which will attempt to upgrade all page loads to HTTPS.Targeted Attack Activity Heightens Need for Orgs. to Patch New SolarWinds Flaw
A China-based threat actor -- previously observed targeting US defense industrial base organizations and software companies -- is exploiting the bug in SolarWinds' Serv-U software, Microsoft says.Cryptominer Farm Rigged with 3,800 PS4s Busted in Ukraine
Ukrainian cops seize PlayStation 4 consoles, graphics cards, processors and more in cryptomining sting involving alleged electricity theft.