β Lazarus Group Brings APT Tactics to Ransomware β
π Read
via "Threatpost".
A new ransomware, VHD, was seen being delivered by the nation-state group's multiplatform malware platform, MATA.π Read
via "Threatpost".
Threat Post
Lazarus Group Brings APT Tactics to Ransomware
A new ransomware, VHD, was seen being delivered by the nation-state group's multiplatform malware platform, MATA.
π΄ Lazarus Group Shifts Gears with Custom Ransomware π΄
π Read
via "Dark Reading: ".
The North Korea-linked APT group has developed its own ransomware strain to better conduct financial theft, researchers report.π Read
via "Dark Reading: ".
Dark Reading
Lazarus Group Shifts Gears with Custom Ransomware
The North Korea-linked APT group has developed its own ransomware strain to better conduct financial theft, researchers report.
ATENTIONβΌ New - CVE-2020-10985
π Read
via "National Vulnerability Database".
Gambio GX before 4.0.1.0 allows XSS in admin/coupon_admin.php.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2020-10984
π Read
via "National Vulnerability Database".
Gambio GX before 4.0.1.0 allows admin/admin.php CSRF.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2020-10983
π Read
via "National Vulnerability Database".
Gambio GX before 4.0.1.0 allows SQL Injection in admin/mobile.php.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2020-10982
π Read
via "National Vulnerability Database".
Gambio GX before 4.0.1.0 allows SQL Injection in admin/gv_mail.php.π Read
via "National Vulnerability Database".
π IBM finds cyberattacks costing companies nearly $4 million per breach π
π Read
via "Security on TechRepublic".
The study showed concrete financial benefits to having security systems and teams in place.π Read
via "Security on TechRepublic".
TechRepublic
IBM finds cyberattacks costing companies nearly $4 million per breach
The study showed concrete financial benefits to having security systems and teams in place.
π The future of encryption: Getting ready for the quantum computer attack π
π Read
via "Security on TechRepublic".
PQShield, a spin-out from the UK's Oxford University, is developing advanced cryptographic solutions for hardware, software and communications to protect businesses' data from the quantum threat.π Read
via "Security on TechRepublic".
TechRepublic
The future of encryption: Getting ready for the quantum computer attack
PQShield, a spin-out from the UK's Oxford University, is developing advanced cryptographic solutions for hardware, software and communications to protect businesses' data from the quantum threat.
β OkCupid Security Flaw Threatens Intimate Dater Details β
π Read
via "Threatpost".
Attackers could exploit various flaws in OkCupid's mobile app and webpage to steal victims' sensitive data and even send messages out from their profiles.π Read
via "Threatpost".
Threat Post
OkCupid Security Flaw Threatens Intimate Dater Details
Attackers could have exploited various flaws in OkCupid's mobile app and webpage to steal victims' sensitive data and even send messages out from their profiles.
β Facial-Recognition Flop: Face Masks Thwart Virus, Stump Security Systems β
π Read
via "Threatpost".
Algorithms clocked error rates of between 5% to 50% when comparing photos of people wearing digitally created masks with unmasked faces.π Read
via "Threatpost".
Threat Post
Facial-Recognition Flop: Face Masks Thwart Virus, Stump Security Systems
Algorithms clocked error rates of between 5% to 50% when comparing photos of people wearing digitally created masks with unmasked faces.
π 87% of Americans view data privacy as a human right, but most still use risky security practices π
π Read
via "Security on TechRepublic".
While 56% of Americans want more control over personal data, more than 40% said they reuse passwords, use public Wi-Fi, or save a credit card to an online store, KPMG found.π Read
via "Security on TechRepublic".
π΄ The Future's Biggest Cybercrime Threat May Already Be Here π΄
π Read
via "Dark Reading: ".
Current attacks will continue to be refined, and what may seem a weakness now could turn out to be a disaster.π Read
via "Dark Reading: ".
Dark Reading
The Future's Biggest Cybercrime Threat May Already Be Here
Current attacks will continue to be refined, and what may seem a weakness now could turn out to be a disaster.
π How to protect your website's database from hackers π
π Read
via "Security on TechRepublic".
A recent investigation by NordPass and a white hat hacker discovered more than 9,000 unsecured databases online with more than 10 billion individual entries.π Read
via "Security on TechRepublic".
TechRepublic
How to protect your website's database from hackers
A recent investigation by NordPass and a white hat hacker discovered more than 9,000 unsecured databases online with more than 10 billion individual entries.
π΄ How to Decipher InfoSec Job Titles' Mysteries π΄
π Read
via "Dark Reading: ".
Figuring out which cybersecurity job you want -- or are qualified for -- can be difficult when words have no consistent meaning in the industry.π Read
via "Dark Reading: ".
Dark Reading
How to Decipher InfoSec Job Titles' Mysteries
Figuring out which cybersecurity job you want -- or are qualified for -- can be difficult when words have no consistent meaning in the industry.
π How IT leaders were unprepared for the security challenges posed by COVID-19 π
π Read
via "Security on TechRepublic".
The top three challenges cited in a Tanium survey were identifying new computing devices, overwhelmed IT capacity due to VPN requirements, and increased risks from video conferencing.π Read
via "Security on TechRepublic".
TechRepublic
How IT leaders were unprepared for the security challenges posed by COVID-19
The top three challenges cited in a Tanium survey were identifying new computing devices, overwhelmed IT capacity due to VPN requirements, and increased risks from video conferencing.
π Most consumers do not trust big tech with their privacy π
π Read
via "Security on TechRepublic".
Social media and online shopping sites top the list of services consumers feel do not adequately protect their personal information.π Read
via "Security on TechRepublic".
TechRepublic
Most consumers do not trust big tech with their privacy
Social media and online shopping sites top the list of services consumers feel do not adequately protect their personal information.
π It's not OK, Cupid: Security flaws could expose user data and more π
π Read
via "Security on TechRepublic".
Researchers found a number of vulnerabilities that could give attackers access to a treasure trove of personally identifying information about members.π Read
via "Security on TechRepublic".
TechRepublic
It's not OK, Cupid: Security flaws could expose user data and more
Researchers found a number of vulnerabilities that could give attackers access to a treasure trove of personally identifying information about members.
β US tax service says, β2FA is a must!β β
π Read
via "Naked Security".
We know it's an old drum, but we're not tired of beating it yet: 2FA is your friend.π Read
via "Naked Security".
Naked Security
US tax service says, β2FA is a must!β
We know itβs an old drum, but weβre not tired of beating it yet: 2FA is your friend.
β Critical Security Flaw in WordPress Plugin Allows RCE β
π Read
via "Threatpost".
WordPress plugin Comments β wpDiscuz, which is installed on over 70,000 sites, has issued a patch.π Read
via "Threatpost".
Threat Post
Critical Security Flaw in WordPress Plugin Allows RCE
WordPress plugin Comments β wpDiscuz, which is installed on over 70,000 sites, has issued a patch.
β Critical Bugs in Utilities VPNs Could Cause Physical Damage β
π Read
via "Threatpost".
Gear from Secomea, Moxa and HMS Networks are affected by remote code-execution flaws, researchers warn.π Read
via "Threatpost".
Threat Post
Critical Bugs in Utilities VPNs Could Cause Physical Damage
Gear from Secomea, Moxa and HMS Networks are affected by remote code-execution flaws, researchers warn.
π΄ Technical Challenges of IoT Cybersecurity in a Post-COVID-19 World π΄
π Read
via "Dark Reading: ".
Effective management of vulnerabilities can be done only when information about supply chain dependencies is accurate and recent.π Read
via "Dark Reading: ".
Dark Reading
Technical Challenges of IoT Cybersecurity in a Post-COVID-19 World
Effective management of vulnerabilities can be done only when information about supply chain dependencies is accurate and recent.