🛡 Cybersecurity & Privacy 🛡 - News

Defense Takeaways from Three Adversary Playbooks

An analysis of threat techniques used by Silence Group, Goblin Panda and Zegost, which can help construct effective defenses.

27 views14:52

Emergency iOS patch fixes jailbreaking flaw for second time

⚠ Emergency iOS patch fixes jailbreaking flaw for second time ⚠

With iOS 13 nearing release, Apple users perhaps thought they were done with iOS 12 updates for good. If so, they were wrong.

📖 Read

via "Naked Security".

Naked Security

With iOS 13 nearing release, Apple users perhaps thought they were done with iOS 12 updates for good. If so, they were wrong.

25 views15:04

❌ Google Squashes High-Severity Blink Browser Engine Flaw ❌

The bug could enable remote code-execution, information-siphoning or denial-of-service attacks.

📖 Read

via "Threatpost".

Google Squashes High-Severity Blink Browser Engine Flaw

The bug could enable remote code-execution, information-siphoning or denial-of-service attacks.

26 views15:17

🔐 Budget constraints pose the highest threat to SMB IT security 🔐

SMBs may recognize the importance of cybersecurity, but they fail to prioritize it, according to Untangle.

📖 Read

via "Security on TechRepublic".

Budget constraints pose the highest threat to SMB IT security

SMBs may recognize the importance of cybersecurity, but they fail to prioritize it, according to Untangle.

28 views15:59

🔐 State and local governments increasingly targeted by ransomware attacks 🔐

More than 70 state and local governments were infected with ransomware in 2019, as targeted ransomware makes a comeback.

📖 Read

via "Security on TechRepublic".

State and local governments increasingly targeted by ransomware attacks

More than 70 state and local governments were infected with ransomware in 2019, as targeted ransomware makes a comeback.

35 views16:24

🕴 Malware Found in Android App with 100M Users 🕴

CamScanner, a legitimate app used to scan and manage documents, was found executing payloads on Android devices.

📖 Read

via "Dark Reading: ".

Malware Found in Android App with 100M Users

CamScanner, a legitimate app used to scan and manage documents, was found executing payloads on Android devices.

35 views16:34

❌ Apple Updates Privacy Policies After Siri Audio Recording Backlash ❌

Apple's "grading" process, which listens to Siri voice recordings, will now be in-house and has an option for users to opt out.

📖 Read

via "Threatpost".

Apple Updates Privacy Policies After Siri Audio Recording Backlash

Apple's "grading" process, which listens to Siri voice recordings, will now be in-house and has an option for users to opt out.

37 views16:52

🔐 The biggest cybersecurity risks in the financial services industry 🔐

Ransomware, SQL injection attacks, and cross-site scripting are also serious cybersecurity risks for banks and brokerage firms, according to a new study.

📖 Read

via "Security on TechRepublic".

The biggest cybersecurity risks in the financial services industry

Ransomware, SQL injection attacks, and cross-site scripting are also serious cybersecurity risks for banks and brokerage firms, according to a new study.

31 views17:34

🕴 Fuzzing 101: Why Bug-Finders Still Love It After All These Years 🕴

Fuzzing is one of the basic tools in a researcher's arsenal. Here are the things you should know about this security research foundational tool.

📖 Read

via "Dark Reading: ".

Fuzzing 101: Why Bug Hunters Still Love It After All These Years

Fuzzing is one of the basic tools in a researcher's arsenal. Here are the things you should know about this security research foundational tool.

35 views18:24

Fancy Bear Dons Plain Clothes to Try to Defeat Machine Learning

🕴 Fancy Bear Dons Plain Clothes to Try to Defeat Machine Learning 🕴

An analysis of a sample published by the US government shows Russian espionage group APT28, also known as Fancy Bear, has stripped down its initial infector in an attempt to defeat ML-based defenses.

📖 Read

via "Dark Reading: ".

Darkreading

An analysis of a sample published by the US government shows Russian espionage group APT28, also known as Fancy Bear, has stripped down its initial infector in an attempt to defeat ML-based defenses.

37 views18:44

🔏 Former Google, Uber Engineer Hit With Trade Secret Theft Charges 🔏

“All of us are free to move from job to job,” David L. Anderson, a United States attorney said of the case, “What we cannot do is stuff our pockets on the way out the door.”

📖 Read

via "Subscriber Blog RSS Feed ".

41 views20:24

TrickBot Comes to Cellular Carriers

🕴 TrickBot Comes to Cellular Carriers 🕴

A new malicious campaign seeks cell account PINs from victims.

📖 Read

via "Dark Reading: ".

Darkreading

A new malicious campaign seeks cell account PINs from victims.

36 views20:25

❌ TrickBot Targets Verizon, T-Mobile, Sprint Users to Siphon PINs ❌

TrickBot malware targets users of U.S. mobile carrier Verizon, T-Mobile and Sprint via web injects to steal their PIN codes; enabling SIM swapping attacks.

📖 Read

via "Threatpost".

TrickBot Targets Verizon, T-Mobile, Sprint Users to Siphon PINs

TrickBot malware targets users of U.S. mobile carriers Verizon, T-Mobile and Sprint via web injects to steal their PIN codes; enabling SIM swapping attacks.

33 views20:37

🔐 The biggest cybersecurity risks in the financial services industry 🔐

Ransomware, SQL injection attacks, and cross-site scripting are also serious cybersecurity risks for banks and brokerage firms, according to a new study.

📖 Read

via "Security on TechRepublic".

The biggest cybersecurity risks in the financial services industry

Ransomware, SQL injection attacks, and cross-site scripting are also serious cybersecurity risks for banks and brokerage firms, according to a new study.

34 views20:49

🔐 TechRepublic Premium editorial calendar: IT policies, checklists, toolkits, and research for download 🔐

TechRepublic Premium content helps you solve your toughest IT issues and jumpstart your career or next project.

📖 Read

via "Security on TechRepublic".

TechRepublic Premium Editorial Calendar: Policies, Hiring Kits, and Glossaries for Download

TechRepublic Premium content helps you solve your toughest IT issues and jump-start your career or next project.

35 views20:49

🕴 Magecart Shops for Victims as E-Commerce Market Grows 🕴

In 2.5 hours of research, one security expert uncovered more than 80 actively compromised ecommerce websites.

📖 Read

via "Dark Reading: ".

Cyber Risk recent news | Dark Reading

Explore the latest news and expert commentary on Cyber Risk, brought to you by the editors of Dark Reading

37 views21:10

🕴 Facebook Patches Second Account-Takeover Flaw in Instagram 🕴

The password-recovery mechanism once again puts users of the photo- and video-sharing platform at risk.

📖 Read

via "Dark Reading: ".

Facebook Patches Second Account-Takeover Flaw in Instagram

The password-recovery mechanism once again puts users of the photo- and video-sharing platform at risk.

36 views21:51

❌ Elderly China Chopper Tool Still Going Strong in Multiple Campaigns ❌

Multiple actors in multiple campaigns are using the web shell for remote access, even though it's almost a decade old and hasn't been updated.

📖 Read

via "Threatpost".

Elderly China Chopper Tool Still Going Strong in Multiple Campaigns

Multiple actors in multiple campaigns are using the web shell for remote access, even though it's almost a decade old and hasn't been updated.

33 views22:17

🔐 How to use Harbor to scan Docker images for vulnerabilities 🔐

Make sure you're not deploying containers based on vulnerable images by scanning those images with Harbor.

📖 Read

via "Security on TechRepublic".

How to use Harbor to scan Docker images for vulnerabilities

Make sure you're not deploying containers based on vulnerable images by scanning those images with Harbor.

33 views22:49

How to use Harbor to scan Docker images for vulnerabilities

Make sure you're not deploying containers based on vulnerable images by scanning those images with Harbor.

41 views22:49