β Celebrity personal data taken in ransomware attack β
π Read
via "Naked Security".
Ransomware crooks are apparently threatening to dump personal data for a long of celebs including Lady Gaga, Madonna, Nicki Minaj and more.π Read
via "Naked Security".
Naked Security
Celebrity personal data taken in ransomware attack
Ransomware crooks are apparently threatening to dump personal data for a long list of celebs including Lady Gaga, Madonna, Nicki Minaj and more.
β Sphinx Malware Returns to Riddle U.S. Targets β
π Read
via "Threatpost".
The banking trojan has upgraded and is seeing a resurgence on the back of coronavirus stimulus payment themes.π Read
via "Threatpost".
Threat Post
Sphinx Malware Returns to Riddle U.S. Targets
The banking trojan has upgraded and is seeing a resurgence on the back of coronavirus stimulus payment themes.
β Millions of Thunderbolt-Equipped Devices Open to βThunderSpyβ Attack β
π Read
via "Threatpost".
If an attacker can get his hands on a Thunderbolt-equipped device for five minutes, he can launch a new data-stealing attack called "Thunderspy."π Read
via "Threatpost".
Threat Post
Millions of Thunderbolt-Equipped Devices Open to βThunderSpyβ Attack
If an attacker can get his hands on a Thunderbolt-equipped device for five minutes, he can launch a new data-stealing attack called "Thunderspy."
π CISOs forced to adapt to pandemic and other geopolitical risks π
π Read
via "Security on TechRepublic".
A new report finds cyber resilience, security culture, and cloud security are hot topics for chief information security officers.π Read
via "Security on TechRepublic".
TechRepublic
CISOs forced to adapt to pandemic and other geopolitical risks
A new report finds cyber resilience, security culture, and cloud security are hot topics for chief information security officers.
π Phishing campaign caught spoofing Zoom π
π Read
via "Security on TechRepublic".
The campaign impersonates Zoom emails, but steals the Microsoft account credentials of its victims, says security firm Abnormal Security.π Read
via "Security on TechRepublic".
TechRepublic
Phishing campaign caught spoofing Zoom
The campaign impersonates Zoom emails, but steals the Microsoft account credentials of its victims, says security firm Abnormal Security.
π Survey: Teams supported by mature DevOps practices more likely to integrate automated security π
π Read
via "Security on TechRepublic".
Adding security into DevOps hasn't been as easy as automating all the things. Sonatype's survey shows the state of the industryβand what you might want to work on next.π Read
via "Security on TechRepublic".
TechRepublic
Survey: Teams supported by mature DevOps practices more likely to integrate automated security
Adding security into DevOps hasn't been as easy as automating all the things. Sonatype's survey shows the state of the industryβand what you might want to work on next.
π Time for a new job? Check out 16 cybersecurity courses on the basics, SOC skills, and new privacy rules π
π Read
via "Security on TechRepublic".
Online training classes for newbies, managers, and privacy officers are on sale this week.π Read
via "Security on TechRepublic".
TechRepublic
Time for a new job? Check out 16 cybersecurity courses on the basics, SOC skills, and new privacy rules
Online training classes for newbies, managers, and privacy officers are on sale this week.
π Kaspersky: 73% of workers have received no cybersecurity guidance π
π Read
via "Security on TechRepublic".
Millions of employees working remotely have gotten no information about how to keep their devices and home networks safe.π Read
via "Security on TechRepublic".
TechRepublic
Kaspersky: 73% of workers have received no cybersecurity guidance
Millions of employees working remotely have gotten no information about how to keep their devices and home networks safe.
ATENTIONβΌ New - CVE-2018-1285
π Read
via "National Vulnerability Database".
Apache log4net before 2.0.8 does not disable XML external entities when parsing log4net configuration files. This could allow for XXE-based attacks in applications that accept arbitrary configuration files from users.π Read
via "National Vulnerability Database".
π FTC To Review Healthcare Data Breach Notification Rule π
π Read
via "Subscriber Blog RSS Feed ".
The FTC is seeking comment on whether or not it should make changes to its Health Breach Notification Rule, a rule that compels orgs to disclose when health records are breached.π Read
via "Subscriber Blog RSS Feed ".
Digital Guardian
FTC To Review Healthcare Data Breach Notification Rule
The FTC is seeking comment on whether or not it should make changes to its Health Breach Notification Rule, a rule that compels orgs to disclose when health records are breached.
π΄ Researchers Analyze Oracle WebLogic Flaw Under Attack π΄
π Read
via "Dark Reading: ".
Trend Micro researchers explain how attackers bypassed the patch for a deserialization vulnerability in the Oracle WebLogic Server.π Read
via "Dark Reading: ".
Dark Reading
Researchers Analyze Oracle WebLogic Flaw Under Attack
Trend Micro researchers explain how attackers bypassed the patch for a deserialization vulnerability in the Oracle WebLogic Server.
π At UPS, big data is redefining the supply chain π
π Read
via "Security on TechRepublic".
Billions of data points are gathered throughout the UPS network every week. Find out how the information collected is revolutionizing the logistics giant.π Read
via "Security on TechRepublic".
TechRepublic
At UPS, big data is redefining the supply chain
Billions of data points are gathered throughout the UPS network every week. Find out how the information collected is revolutionizing the logistics giant.
β Unpatched Bugs in Oracle iPlanet Open Door to Info-Disclosure, Injection β
π Read
via "Threatpost".
CVE-2020-9315 and CVE-2020-9314 in iPlanet version 7 will not receive patches.π Read
via "Threatpost".
Threat Post
Unpatched Bugs in Oracle iPlanet Open Door to Info-Disclosure, Injection
CVE-2020-9315 and CVE-2020-9314 in iPlanet version 7 will not receive patches.
β Astarothβs New Evasion Tactics Make It βPainful to Analyzeβ β
π Read
via "Threatpost".
The infostealer has gone above and beyond in its new anti-analysis and obfuscation tactics.π Read
via "Threatpost".
Threat Post
Astarothβs New Evasion Tactics Make It βPainful to Analyzeβ
The infostealer has gone above and beyond in its new anti-analysis and obfuscation tactics.
π΄ Thunderbolt Vulnerabilities Could Threaten Millions of PCs π΄
π Read
via "Dark Reading: ".
Attackers with physical access to targeted machines could exploit these flaws to access and copy data within minutes, researchers say.π Read
via "Dark Reading: ".
Dark Reading
Thunderbolt Vulnerabilities Could Threaten Millions of PCs
Attackers with physical access to targeted machines could exploit these flaws to access and copy data within minutes, researchers say.
ATENTIONβΌ New - CVE-2017-14200
π Read
via "National Vulnerability Database".
** REJECT ** Unused CVE for 2017.π Read
via "National Vulnerability Database".
π΄ 6 Free Cybersecurity Training and Awareness Courses π΄
π Read
via "Dark Reading: ".
Most are designed to help organizations address teleworking risks related to COVID-19 scams.π Read
via "Dark Reading: ".
Dark Reading
6 Free Cybersecurity Training and Awareness Courses
Most are designed to help organizations address teleworking risks related to COVID-19 scams.
β Maze ransomware one year on β a SophosLabs report β
π Read
via "Naked Security".
The latest SophosLabs report tells the story of how the infamous "Maze" ransomware has evolved over the past 12 months...π Read
via "Naked Security".
Naked Security
Maze ransomware one year on β a SophosLabs report
The latest SophosLabs report tells the story of how the infamous βMazeβ ransomware has evolved over the past 12 monthsβ¦
β Anubis Malware Upgrade Logs When Victims Look at Their Screens β
π Read
via "Threatpost".
Threat actors are cooking up new features for the sophisticated banking trojan that targets Google Android apps and devices.π Read
via "Threatpost".
Threat Post
Anubis Malware Upgrade Logs When Victims Look at Their Screens
Threat actors are cooking up new features for the sophisticated banking trojan that targets Google Android apps and devices.
β Dating app user logins found on hacking forum β
π Read
via "Naked Security".
3.5 million user logins for the MobiFriends dating app are being offered for free on a popular dark web hackers forum.π Read
via "Naked Security".
Naked Security
Dating app user logins found on hacking forum
3.5 million user logins for the MobiFriends dating app are being offered for free on a popular dark web hackers forum.
π΄ Data Breaches Declined in Q1 2020 Over Q1 2019 -- Or Did They? π΄
π Read
via "Dark Reading: ".
Numbers are down, but that may only be because organizations have been too busy fighting COVID-19-related cyberthreats to notice compromises, Risk Based Security says.π Read
via "Dark Reading: ".
Dark Reading
Data Breaches Declined in Q1 2020 Over Q1 2019 -- Or Did They?
Numbers are down, but that may only be because organizations have been too busy fighting COVID-19-related cyberthreats to notice compromises, Risk Based Security says.