Dark Reading

JANUARY 27, 2021

Protect against misinformation and disinformation campaigns by learning how to identify the bot networks spreading falsehoods

89

89

WIRED Threat Level

JANUARY 24, 2021

Zombie versions of Adobe’s troubled software can still cause problems in systems around the world. Security Security / Security News

Security 88

Security 88

Krebs on Security

JANUARY 27, 2021

Authorities across Europe on Tuesday said they’d seized control over Emotet , a prolific malware strain and cybercrime-as-service operation.

Passwords 189

Passwords Communications Encryption Ransomware 189

Data Breach Today

JANUARY 27, 2021

Banning Ransom Payments and Unleashing Offensive Hacking Teams Being Mooted With ransomware continuing to fuel a massive surge in illicit profits, some experts have been calling on governments to launch offensive hacking teams to target cybercrime cartels.

Government 237

Government Ransomware Insurance 237

Speaker: Guy Martin, Executive Director of OASIS Open

The COVID-19 global pandemic has raised the already bright visibility of technology to an even higher level. Join Guy Martin, Executive Director at OASIS Open, as he presents this webinar that will discuss how we can make open source and open standards even more effective by helping them recapture their strong partnership.

IT

The Last Watchdog

JANUARY 25, 2021

SolarWinds and Mimecast are long-established, well-respected B2B suppliers of essential business software embedded far-and-wide in company networks. Related: Digital certificates destined to play key role in securing DX. Thanks to a couple of milestone hacks disclosed at the close of 2020 and start of 2021, they will forever be associated with putting supply-chain vulnerabilities on the map.

B2B 140

B2B Authentication Encryption Cybersecurity 140

Krebs on Security

JANUARY 27, 2021

and Bulgarian authorities this week seized the darkweb site used by the NetWalker ransomware cybercrime group to publish data stolen from its victims.

Ransomware 220

Ransomware Encryption Access Cybersecurity 220

Data Breach Today

JANUARY 25, 2021

Case Spotlights Critical Vendor Security Risk Issues A proposed class action lawsuit has been filed against Rady Children's Hospital-San Diego in the wake of data breach resulting from a ransomware attack on Blackbaud, the hospital's cloud-based fundraising software vendor

Ransomware 236

Ransomware Data breaches Cloud Risk 236

Security Affairs

JANUARY 25, 2021

Indian cryptocurrency exchange Buyucoin suffered a security incident, threat actors leaked sensitive data of 325K users.

Sales 112

Sales Data breaches Encryption Passwords 112

Dark Reading

JANUARY 29, 2021

Payments to ransomware gangs using cryptocurrency more than quadrupled in 2020, with less than 200 cryptocurrency wallets receiving 80% of funds

Ransomware 110

Ransomware 110

Advertisement

Xandr, a division of AT&T, has built an identity graph that connects information on people, households, and more. The company is using this graph to provide advertisers an ability to deliver commercials more successfully than ever before. Learn more.

Analytics

Krebs on Security

JANUARY 29, 2021

The unprecedented volume of unemployment insurance fraud witnessed in 2020 hasn’t abated, although news coverage of the issue has largely been pushed off the front pages by other events.

Insurance 200

Insurance Authentication Personal data IT 200

Data Breach Today

JANUARY 27, 2021

Researchers Say Pandemic Triggered Surge in Activity The number of distributed denial-of-service attacks launched in 2020 surpassed 10 million, up from 8.5 million in 2019, according to NetScout's Atlas Security Engineering and Response Team

Security 230

Security 230

Security Affairs

JANUARY 27, 2021

Apple has addressed three zero-day vulnerabilities in its iOS operating system that have been exploited in the wild. Apple has addressed three zero-day vulnerabilities in iOS that have been exploited in the wild with the release of security updates (iOS 14.4).

Information Security 110

Information Security IT Security 110

Dark Reading

JANUARY 25, 2021

Security experts offer Microsoft 365 security guidance as more attackers target enterprise cloud environments

Cloud 109

Cloud Security 109

Advertisement

In this whitepaper from Onna, we will walk you through data retention best practices and provide you with a downloadable template to help you get organized and gain better visibility into your data’s lifecycle.

WIRED Threat Level

JANUARY 27, 2021

Because the chat app doesn't encrypt conversations by default—or at all for group chats—security professionals often warn against it. Security Security / Privacy

Encryption 108

Encryption Privacy IT Security 108

Data Breach Today

JANUARY 29, 2021

Researchers: 'LogoKit' Found on 700 Domains Researchers at the security firm RiskIQ have discovered a phishing kit they call "LogoKit" that fraudsters can use to easily change lures, logos and text in real time to help trick victims into opening up messages and clicking on malicious links

Phishing 223

Phishing Security 223

Security Affairs

JANUARY 28, 2021

Clearsky researchers linked the Lebanese Cedar APT group to a cyber espionage campaign that targeted companies around the world. Clearsky researchers linked the Lebanese Cedar group (aka Volatile Cedar) to a cyber espionage campaign that targeted companies around the world.

Access 109

Access Information Security IT Security 109

Dark Reading

JANUARY 29, 2021

Most insider incidents don't get reported to the FBI due to fear of debilitating business disruptions, public embarrassment, and screeching vans skidding into the parking lot to confiscate servers. But is that reality

Security 104

Security 104

Speaker: Shannon Lietz, Director of DevSecOps Team, Intuit

The new DevSecOps team is up and running, and you feel ready to take on rising security threats while delivering quality software updates. But that leaves just one question: how do you monitor your new program as effectively and efficiently as possible? Join Shannon Lietz, Director of DevsecOps at Intuit, and award-winning innovator, to learn the answers to these questions so you can lead your DevSecOps team to the top!

Security

Schneier on Security

JANUARY 26, 2021

I think this is the largest data breach of all time: 220 million people. Lots more stories are in Portuguese

Data breaches 105

Data breaches 105

Data Breach Today

JANUARY 25, 2021

Unknown Attack Has Disrupted the Company's Global IT Infrastructure The Austrian construction equipment manufacturing firm Palfinger AG reports being hit with a cyberattack that has knocked the majority of its worldwide IT infrastructure offline, eliminating its ability to use email and conduct business.

Manufacturing 224

Manufacturing IT 224

Security Affairs

JANUARY 25, 2021

Zscaler’s research team recently spotted a Linux-based malware family, tracked as DreamBus botnet, targeting Linux servers. Researchers at Zscaler’s ThreatLabZ research team recently analyzed a Linux-based malware family, tracked as DreamBus Botnet, which is a variant of SystemdMiner.

Mining 110

Mining Ransomware Passwords Communications 110

Dark Reading

JANUARY 25, 2021

Get to know the difference between "supervised" and "unsupervised" machine learning

Security 106

Security 106

Advertiser: Amplitude

As part of our goal to continue helping our community during these times, we wanted to share with you this critical data on the state of digital products across industries and provide context on how businesses are responding to the changing winds.

B2B

Schneier on Security

JANUARY 25, 2021

No one who reads this blog regularly will be surprised : A former employee of prominent home security company ADT has admitted that he hacked into the surveillance feeds of dozens of customer homes, doing so primarily to spy on naked women or to leer at unsuspecting couples while they had sex. […].

Access 101

Access Security IT Privacy 101

Data Breach Today

JANUARY 29, 2021

Researchers: Lebanese Cedar's Campaigns Expand Beyond Middle East An APT group known as Lebanese Cedar has launched a cyberespionage campaign targeting telecommunication companies and ISPs, according to the Israeli security firm ClearSky, which says the attacks have spread beyond the Middle East to the U.S. and Europe.

Security 218

Security 218

Security Affairs

JANUARY 28, 2021

Researchers from RiskIQ have discovered a new phishing kit dubbed LogoKit that dynamically compose phishing content. Researchers from RiskIQ discovered a new phishing kit that outstands for its ability to dynamically create phishing messages to target specific users.

Phishing 107

Phishing Cloud Passwords Information Security 107

Dark Reading

JANUARY 27, 2021

With demand for skilled cybersecurity workers so high, is it really surprising that most companies are seeing fewer qualified applicants

Cybersecurity 101

Cybersecurity IT 101

Advertiser: UserTesting

Up to 80% of new products fail. The reality is harsh and the reasons why are endless. Perhaps the new product couldn’t oust a customer favorite. Maybe it looked great but was too hard to use. Or, despite being a superior product, the go-to-market strategy failed. There’s always a risk when building a new product, but you can hedge your bets by understanding exactly what your customers' expectations truly are at every step of the development process.

Risk

WIRED Threat Level

JANUARY 29, 2021

A new California law prohibits efforts to trick consumers into handing over data or money. A bill in Washington state copies the language. Business Business / Policy and Net Neutrality Security

Security 92

Security 92

Data Breach Today

JANUARY 23, 2021

Incident Forced Intel to Release Results Earlier Than Planned Intel is investigating an incident in which an unauthorized person accessed a portion of the company's latest quarterly financial report, forcing the chipmaker to release its earnings slightly earlier than planned

Access 216

Access IT 216

Security Affairs

JANUARY 23, 2021

The Hacker News reported in exclusive that the security firm SonicWall was hacked as a result of a coordinated attack on its internal systems. TheHackerNews revealed in an exclusive that the security provider SonicWall was hacked on Friday.

Access 107

Access Security Authentication Information Security 107