Cybersecurity News
Insurance Giant CNA Hit with Novel Ransomware Attack
The incident, which forced the company to disconnect its systems, caused significant business disruption.
26 March 2021
Week in security with Tony Anscombe
Security and your right to repair – Scams offer fake COVID-19 vaccines and ask for Bitcoin – Jail time for a disgruntled IT contractor
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
26 March 2021
Moving from DevOps to CloudOps: The Four-Box Problem
With SOC teams running services on multiple cloud platforms, their big concern is how to roll up configuration of 200+ servers in a comprehensive way.26 March 2021
Hades ransomware operators are hunting big game in the US
Companies with annual revenues of over $1 billion are being targeted.26 March 2021
Exec Order Could Force Software Vendors to Disclose Breaches to Federal Gov't Customers
A decision on the order, which contains several recommendations, is still forthcoming.25 March 2021
CISA Adds Two Web Shells to Exchange Server Guidance
Officials update mitigation steps to include two new Malware Analysis Reports identifying Web shells seen in Exchange Server attacks.25 March 2021
Fleeceware Apps Bank $400M in Revenue
The cache of apps, found in Apple and Google's official marketplaces is largely targeted towards children, including several "slime simulators."
25 March 2021
Microsoft Offers Up To $30K For Teams Bugs
A bug-bounty program launched for the Teams desktop videoconferencing and collaboration application has big payouts for finding security holes.
25 March 2021
In Secure Silicon We Trust
Building upon a hardware root of trust is becoming a more achievable goal for the masses and the roots are digging deeper. Here's what you need to know.
25 March 2021
Nearly Half of Popular Android Apps Built With High-Risk Components
Information leakage and applications asking for too many permissions were also major issues, according to a survey of more than 3,300 popular mobile applications.25 March 2021
Security Operations in the World We Live in Now
Despite the challenges of remote work, security operations teams can position themselves well for the future.25 March 2021
Facebook Disrupts Spy Effort Aimed at Uyghurs
The social-media giant took down legions of fake profiles aimed at spreading espionage malware.
25 March 2021
Manufacturing’s Cloud Migration Opens Door to Major Cyber-Risk
New research shows that while all sectors are at risk, 70 percent of manufacturing apps have vulnerabilities.
25 March 2021
The CIO's Shifting Role: Improving Security With Shared Responsibility
CIOs must create a culture centered around cybersecurity that is easily visible and manageable.25 March 2021
Warning issued over scams touting fake COVID‑19 vaccines, asking for Bitcoin
Money doesn’t buy you happiness – cryptocurrency doesn’t buy you a genuine COVID-19 vaccine
The post Warning issued over scams touting fake COVID‑19 vaccines, asking for Bitcoin appeared first on WeLiveSecurity
25 March 2021
Severe vulnerabilities patched in Facebook for WordPress Plugin
The worst bug leads to remote code execution, if exploited.25 March 2021
How Personally Identifiable Information Can Put Your Company at Risk
By being more mindful of how and where they share PII, employees will deprive cybercriminals of their most useful tool.25 March 2021
6 Tips for Limiting Damage from Third-Party Attacks
The ability to protect your organization from third-party attacks will become increasingly critical as attackers try to maximize the effectiveness of their malicious campaigns.
25 March 2021
6 Tips for Limiting Damage from Third-Party Attacks
The ability to protect your organization from third-party attacks will become increasingly critical as attackers try to maximize the effectiveness of their malicious campaigns.
25 March 2021
Cloudflare launches Page Shield to thwart Magecart card skimming attacks
Magecart attacks remain a prolific threat to the security of our financial data.25 March 2021