🕴 The State of Hacktivism in 2020 🕴
📖 Read
via "Dark Reading: ".
Activism via hacking might not be as noisy as it once was, but it hasn't been silenced yet.📖 Read
via "Dark Reading: ".
Dark Reading
The State of Hacktivism in 2020
Activism via hacking might not be as noisy as it once was, but it hasn't been silenced yet.
❌ Emotet Returns in Malspam Attacks Dropping TrickBot, QakBot ❌
📖 Read
via "Threatpost".
Emotet has resurfaced after a five-month hiatus, with more than 250,000 malspam messages being sent to email recipients worldwide.📖 Read
via "Threatpost".
Threat Post
Emotet Returns in Malspam Attacks Dropping TrickBot, QakBot
Emotet has resurfaced after a five-month hiatus, with more than 250,000 malspam messages being sent to email recipients worldwide.
🕴 DDoS Botnets Are Entrenched in Asia & Amplification Attacks Set Records 🕴
📖 Read
via "Dark Reading: ".
China, Vietnam, and Taiwan are top sources of DDoS botnet activity, but the top data floods use a variety of amplification attacks, a report finds.📖 Read
via "Dark Reading: ".
Dark Reading
DDoS Botnets Are Entrenched in Asia & Amplification Attacks Set Records
China, Vietnam, and Taiwan are top sources of DDoS botnet activity, but the top data floods use a variety of amplification attacks, a report finds.
🔐 Remote working: We're stressed and distracted and making these security errors 🔐
📖 Read
via "Security on TechRepublic".
Stress, burnout and distractions in the home could result in more cybersecurity breaches as a result of human error, a report from Tessian has found.📖 Read
via "Security on TechRepublic".
TechRepublic
Remote working: We're stressed and distracted and making these security errors
Stress, burnout and distractions in the home could result in more cybersecurity breaches as a result of human error, a report from Tessian has found.
ATENTION‼ New - CVE-2020-12774
📖 Read
via "National Vulnerability Database".
D-Link DSL-7740C does not properly validate user input, which allows an authenticated LAN user to inject arbitrary command.📖 Read
via "National Vulnerability Database".
❌ Leak Exposes Private Data of Genealogy Service Users ❌
📖 Read
via "Threatpost".
An exposed ElasticSearch server belonging to Software MacKiev put 60,000 users of Ancestry.com’s Family Tree Maker software at risk.📖 Read
via "Threatpost".
Threat Post
Leak Exposes Private Data of Genealogy Service Users
An exposed ElasticSearch server belonging to Software MacKiev put 60,000 users of the Family Tree Maker software at risk.
🕴 Cybersecurity Lessons from the Pandemic 🕴
📖 Read
via "Dark Reading: ".
How does cybersecurity support business and society? The pandemic shows us.📖 Read
via "Dark Reading: ".
Dark Reading
Cybersecurity Lessons from the Pandemic
How does cybersecurity support business and society? The pandemic shows us.
🕴 Q&A: How Systemic Racism Weakens Cybersecurity 🕴
📖 Read
via "Dark Reading: ".
Cybersecurity policy expert and attorney Camille Stewart explains how to dismantle systemic racism in the industry - and build a more diverse and representative workforce.📖 Read
via "Dark Reading: ".
Dark Reading
Q&A: How Systemic Racism Weakens Cybersecurity
Cybersecurity policy expert and attorney Camille Stewart explains how to dismantle systemic racism in the industry - and build a more diverse and representative workforce.
🔐 Phishing is the leading type of COVID-19 fraud 🔐
📖 Read
via "Security on TechRepublic".
TransUnion surveyed consumers in six countries and found that phishing was the preferred method of attack 27% of the time.📖 Read
via "Security on TechRepublic".
TechRepublic
Phishing is the leading type of COVID-19 fraud
TransUnion surveyed consumers in six countries and found that phishing was the preferred method of attack 27% of the time.
🔐 Threat actors have evolved during the pandemic 🔐
📖 Read
via "Security on TechRepublic".
McAfee sees a surge of COVID-19-themed malicious apps and other attacks in the first quarter.📖 Read
via "Security on TechRepublic".
TechRepublic
Threat actors have evolved during the pandemic
McAfee sees a surge of COVID-19-themed malicious apps and other attacks in the first quarter.
🔐 How cybercriminals have exploited the coronavirus pandemic 🔐
📖 Read
via "Security on TechRepublic".
Phishing campaigns, deceptive domains, and malicious apps are just some of the tactics that have taken advantage of the virus and its repercussions, says Check Point Research.📖 Read
via "Security on TechRepublic".
TechRepublic
How cybercriminals have exploited the coronavirus pandemic
Phishing campaigns, deceptive domains, and malicious apps are just some of the tactics that have taken advantage of the virus and its repercussions, says Check Point Research.
ATENTION‼ New - CVE-2019-18619
📖 Read
via "National Vulnerability Database".
Incorrect parameter validation in the synaTee component of Synaptics WBF drivers using an SGX enclave (all versions prior to 2019-11-15) allows a local user to execute arbitrary code in the enclave (that can compromise confidentiality of enclave data) via APIs that accept invalid pointers.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2019-18618
📖 Read
via "National Vulnerability Database".
Incorrect access control in the firmware of Synaptics VFS75xx family fingerprint sensors that include external flash (all versions prior to 2019-11-15) allows a local administrator or physical attacker to compromise the confidentiality of sensor data via injection of an unverified partition table.📖 Read
via "National Vulnerability Database".
❌ Going Down the Spyware Rabbit Hole with SilkBean Mobile Malware ❌
📖 Read
via "Threatpost".
An Android spyware attack was recently discovered that targeted the Uyghur ethnic minority group - since 2013.📖 Read
via "Threatpost".
Threat Post
Going Down the Spyware Rabbit Hole with SilkBean Mobile Malware
An Android spyware attack was recently discovered that targeted the Uyghur ethnic minority group - since 2013.
❌ Lazarus Group Surfaces with Advanced Malware Framework ❌
📖 Read
via "Threatpost".
The North Korean APT has been using the framework, called MATA, for a number of purposes, from spying to financial gain.📖 Read
via "Threatpost".
Threat Post
Lazarus Group Surfaces with Advanced Malware Framework
The North Korean APT has been using the framework, called MATA, for a number of purposes, from spying to financial gain.
🛠 Logwatch 7.5.4 🛠
📖 Go!
via "Security Tool Files ≈ Packet Storm".
Logwatch analyzes and reports on unix system logs. It is a customizable and pluggable log monitoring system which will go through the logs for a given period of time and make a customizable report. It should work right out of the package on most systems.📖 Go!
via "Security Tool Files ≈ Packet Storm".
Packetstormsecurity
Logwatch 7.5.4 ≈ Packet Storm
Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers
🕴 The InfoSec Barrier to AI 🕴
📖 Read
via "Dark Reading: ".
Information security challenges are proving to be a huge barrier for the artificial intelligence ecosystem. Conversely, AI is causing headaches for CISOs. Here's why.📖 Read
via "Dark Reading: ".
Dark Reading
The InfoSec Barrier to AI
Information security challenges are proving to be a huge barrier for the artificial intelligence ecosystem. Conversely, AI is causing headaches for CISOs. Here's why.
ATENTION‼ New - CVE-2019-16244
📖 Read
via "National Vulnerability Database".
OMERO.server before 5.6.1 allows attackers to bypass the security filters and access hidden objects via a crafted query.📖 Read
via "National Vulnerability Database".
🕴 COVID-19-Related Attacks Exploded in the First Half of 2020 🕴
📖 Read
via "Dark Reading: ".
COVID-19 as part of a cyberattack increased by more than 3,900% between February and June.📖 Read
via "Dark Reading: ".
Dark Reading
COVID-19-Related Attacks Exploded in the First Half of 2020
COVID-19 as part of a cyberattack increased by more than 3,900% between February and June.
🕴 Ripple20's Effects Will Impact IoT Cybersecurity for Years to Come 🕴
📖 Read
via "Dark Reading: ".
A series of newly discovered TCP/IP software vulnerabilities pose a threat to millions of IoT devices. Undiscovered since the early 1990s, they highlight the need to improve security in an increasingly precarious IoT supply chain.📖 Read
via "Dark Reading: ".
Dark Reading
Ripple20's Effects Will Impact IoT Cybersecurity for Years to Come
A series of newly discovered TCP/IP software vulnerabilities pose a threat to millions of IoT devices. Undiscovered since the early 1990s, they highlight the need to improve security in an increasingly precarious IoT supply chain.
🔐 Phishing attacks and ransomware are the most challenging threats for many organizations 🔐
📖 Read
via "Security on TechRepublic".
Unpatched systems and misconfigurations are also major concerns for security professionals, Balbix says.📖 Read
via "Security on TechRepublic".
TechRepublic
Phishing attacks and ransomware are the most challenging threats for many organizations
Unpatched systems and misconfigurations are also major concerns for security professionals, Balbix says.