π’ Apple sues NSO Group over Pegasus attacks on its customers π’
π Read
via "ITPro".
The lawsuit claims 'flagrant' violations of US federal and state law from the Israeli firm behind the infamous spywareπ Read
via "ITPro".
IT PRO
Apple sues NSO Group over Pegasus attacks on its customers | IT PRO
The lawsuit claims 'flagrant' violations of US federal and state law from the Israeli firm behind the infamous spyware
π’ Thousands of printers at risk of denial of service attacks π’
π Read
via "ITPro".
Attackers can easily manipulate the 9100 port to hijack hardware and steal data, researchers claimπ Read
via "ITPro".
IT PRO
Thousands of printers at risk of denial of service attacks | IT PRO
Attackers can easily manipulate the 9100 port to hijack hardware and steal data, researchers claim
π’ Wind turbine maker Vestas hit by cyber attack π’
π Read
via "ITPro".
Danish firm says hackers managed to obtain company data and knock out parts of its IT networkπ Read
via "ITPro".
IT PRO
Wind turbine maker Vestas hit by cyber attack | IT PRO
Danish firm says hackers managed to obtain company data and knock out parts of its IT network
π’ Hackers use Linux backdoor on compromised e-commerce sites with software skimmer π’
π Read
via "ITPro".
Cyber criminals in China control the malwareπ Read
via "ITPro".
IT PRO
Hackers use Linux backdoor on compromised e-commerce sites with software skimmer | IT PRO
Cyber criminals in China control the malware
π’ CronRat Magecart malware uses 31st February date to remain undetected π’
π Read
via "ITPro".
The malware allows for server-side payment skimming that bypasses browser securityπ Read
via "ITPro".
IT PRO
CronRat Magecart malware uses 31st February date to remain undetected | IT PRO
The malware allows for server-side payment skimming that bypasses browser security
π’ Iranian hackers ramp up attacks against IT services sector π’
π Read
via "ITPro".
Microsoft security researchers warn hacking is part of broader cyber espionage effortπ Read
via "ITPro".
ITPro
Iranian hackers ramp up attacks against IT services sector
Microsoft security researchers warn hacking is part of broader cyber espionage effort
π’ Fifth of UK security pros discriminated against in 2021 π’
π Read
via "ITPro".
The NCSCβs and KPMGβs Diversity and inclusion in cyber security report studied the obstacles faced by cyber security professionalsπ Read
via "ITPro".
IT PRO
Fifth of UK security pros discriminated against in 2021 | IT PRO
The NCSCβs and KPMGβs Diversity and inclusion in cyber security report studied the obstacles faced by cyber security professionals
π’ Meta delays product-wide end-to-end encryption rollout until 2023 π’
π Read
via "ITPro".
The company wants to 'take its time' to implement the technology in a way that both protects privacy and prevents exposure to online harmsπ Read
via "ITPro".
IT PRO
Meta delays product-wide end-to-end encryption rollout until 2023 | IT PRO
The company wants to 'take its time' to implement the technology in a way that both protects privacy and prevents exposure to online harms
π’ Microsoft patch fails to fix Installer zero-day affecting every version of Windows π’
π Read
via "ITPro".
The exploit allows hackers to elevate privileges and create admin accountsπ Read
via "ITPro".
ITPro
Microsoft patch fails to fix Installer zero-day affecting every version of Windows
The exploit allows hackers to elevate privileges and create admin accounts
π’ ID.me and Sterling Check partner on in-person identity verification π’
π Read
via "ITPro".
The joint solution improves equity and access to government benefitsπ Read
via "ITPro".
IT PRO
ID.me and Sterling Check partner on in-person identity verification | IT PRO
The joint solution improves equity and access to government benefits
π’ Investors warned to be vigilant of fake SEC alerts π’
π Read
via "ITPro".
Hackers are targeting victims using phone calls and voice mails about cryptocurrency transactionsπ Read
via "ITPro".
IT PRO
Investors warned to be vigilant of fake SEC alerts | IT PRO
Hackers are targeting victims using phone calls and voice mails about cryptocurrency transactions
π΄ Government-Industry Cooperation May Be the Most Potent Ransomware Antidote π΄
π Read
via "Dark Reading".
The side that's better at collaborating with allies will have the upper hand, and until now, that distinction has gone to the cybercriminals.π Read
via "Dark Reading".
Dark Reading
Government-Industry Cooperation May Be the Most Potent Ransomware Antidote
The side that's better at collaborating with allies will have the upper hand, and until now, that distinction has gone to the cybercriminals.
β Panasonicβs Data Breach Leaves Open Questions β
π Read
via "Threat Post".
Cyberattackers had unfettered access to the technology giant's file server for four months.π Read
via "Threat Post".
Threat Post
Panasonicβs Data Breach Leaves Open Questions
Cyberattackers had unfettered access to the technology giant's file server for four months.
β Finland Faces Blizzard of FluBot-Spreading Text Messages β
π Read
via "Threat Post".
Millions of texts leading to the Flubot spyware/banking trojan are targeting everyone who uses Androids in the country, in an "exceptional" attack.π Read
via "Threat Post".
Threat Post
Finland Faces Blizzard of Flubot-Spreading Text Messages
Millions of texts leading to the Flubot spyware/banking trojan are targeting everyone who uses Androids in the country, in an βexceptionalβ attack.
βΌ CVE-2021-38967 βΌ
π Read
via "National Vulnerability Database".
IBM MQ Appliance 9.2 CD and 9.2 LTS could allow a local privileged user to inject and execute malicious code. IBM X-Force ID: 212441.π Read
via "National Vulnerability Database".
βΌ CVE-2021-39000 βΌ
π Read
via "National Vulnerability Database".
IBM MQ Appliance 9.2 CD and 9.2 LTS could allow a local attacker to obtain sensitive information by inclusion of sensitive data within diagnostics. IBM X-Force ID: 213215.π Read
via "National Vulnerability Database".
βΌ CVE-2021-38958 βΌ
π Read
via "National Vulnerability Database".
IBM MQ Appliance 9.2 CD and 9.2 LTS is affected by a denial of service attack caused by a concurrency issue. IBM X-Force ID: 212042π Read
via "National Vulnerability Database".
βΌ CVE-2021-38999 βΌ
π Read
via "National Vulnerability Database".
IBM MQ Appliance could allow a local attacker to obtain sensitive information by inclusion of sensitive data within trace.π Read
via "National Vulnerability Database".
β Lloydβs Carves Out Cyber-Insurance Exclusions for State-Sponsored Attacks β
π Read
via "Threat Post".
The insurer wonβt pay for 'acts of cyber-war' or nation-state retaliation attacks. π Read
via "Threat Post".
Threat Post
Lloydβs Carves Out Cyber-Insurance Exclusions for State-Sponsored Attacks
The insurer wonβt pay for 'acts of cyber-war' or nation-state retaliation attacks.
π΄ Attacker Sentenced in Multimillion-Dollar SIM Hijacking Scheme π΄
π Read
via "Dark Reading".
A sixth member of international hacking group The Community was sentenced to 10 months in prison and ordered to pay $121,549.37 in restitution.π Read
via "Dark Reading".
Dark Reading
Attacker Sentenced in Multimillion-Dollar SIM Hijacking Scheme
A sixth member of international hacking group The Community was sentenced to 10 months in prison and ordered to pay $121,549.37 in restitution.
β How Decryption of Network Traffic Can Improve Security β
π Read
via "Threat Post".
Most industry analyst firms conclude that between 80-90 percent of network traffic is encrypted today. Jeff Costlow, CISO at ExtraHop, explains why this might not be a good thing.π Read
via "Threat Post".
Threat Post
How Decryption of Network Traffic Can Improve Security
Most industry analyst firms conclude that between 80-90 percent of network traffic is encrypted today. Jeff Costlow, CISO at ExtraHop, explains why this might not be a good thing.