Krebs on Security

SEPTEMBER 8, 2020

Among the chief concerns for enterprises this month is CVE-2020-16875 , which involves a critical flaw in the email software Microsoft Exchange Server 2016 and 2019. “We have seen the previously patched Exchange bug CVE-2020-0688 used in the wild, and that requires authentication. . We’ll likely see this one in the wild soon.

Software 230

Software Backups Authentication Internet 230

Krebs on Security

APRIL 14, 2020

Near the top of the heap is CVE-2020-1020 , a remotely exploitable bug in the Adobe Font Manager library that was first detailed in late March when Microsoft said it had seen the flaw being used in active attacks. Further reading: Qualys breakdown on April 2020 Patch Tuesday. SANS Internet Storm Center on Patch Tuesday.

Backups 239

Backups Software Internet Internet 239

Security Affairs

FEBRUARY 17, 2024

CISA warns that the Akira Ransomware gang is exploiting the Cisco ASA/FTD vulnerability CVE-2020-3259 (CVSS score: 7.5) Cybersecurity and Infrastructure Security Agency (CISA) added a Cisco ASA and FTD bug, tracked as CVE-2020-3259 (CVSS score: 7.5), to its Known Exploited Vulnerabilities catalog. in attacks in the wild.

Ransomware 120

Ransomware VPN Education Hacking 120

Krebs on Security

MARCH 10, 2020

Recorded Future warns exploit code is now available for one of the critical bugs Redmond patched last month in Microsoft Exchange ( CVE-2020-0688 ), and that nation state actors have been observed abusing the exploit for targeted attacks. CVE-2020-0852 is one just four remote execution flaws Microsoft patched this month in versions of Word.

Backups 243

Backups Software Hacking Malware 243

Schneier on Security

NOVEMBER 23, 2020

Last week I signed on to two joint letters about the security of the 2020 election. To our collective knowledge, no credible evidence has been put forth that supports a conclusion that the 2020 election outcome in any state has been altered through technical compromise.

Government 271

Government Risk Hacking Cybersecurity 271

Tech Republic Security

JUNE 15, 2023

The post CISA advisory on LockBit: $91 million extorted from 1,700 attacks since 2020 appeared first on TechRepublic. FBI, CISA and international organizations released an advisory detailing breadth and depth of LockBit, and how to defend against the most prevalent ransomware of 2022 and (so far) 2023.

Ransomware 169

Ransomware Cybersecurity Network Security 169

Schneier on Security

FEBRUARY 7, 2020

Ten years ago, I wrote an essay : "Security in 2020." Well, it's finally 2020. That's IT in 2020 -- it's not under your control, it's doing things without your knowledge and consent, and it's not necessarily acting in your best interests. I think I did pretty well. Security can only be defined in relation to something else.

Advertising 335

Advertising Internet Internet Artificial Intelligence 335

Tech Republic Security

OCTOBER 11, 2022

The post The 2020-2022 ATM/PoS malware landscape appeared first on TechRepublic. Attacks using ATM or PoS malware are on the rise again in 2022 after the COVID-19 lockdowns.

Malware 126

Malware 126

Krebs on Security

DECEMBER 8, 2020

Microsoft today issued its final batch of security updates for Windows PCs in 2020, ending the year with a relatively light patch load.

DNS 261

DNS Backups Malware Software 261

We Live Security

FEBRUARY 8, 2021

A view of the Q4 2020 threat landscape as seen by ESET telemetry and from the perspective of ESET threat detection and research experts. The post ESET Threat Report Q4 2020 appeared first on WeLiveSecurity.

Threat Reports 144

Threat Reports Threat Detection 144

Tech Republic Security

NOVEMBER 18, 2020

See what Jack Wallen considers to be the biggest issue for Linux in 2020. This year was rough for all involved--even Linux and open source didn't come through unscathed.

200

200

SecureList

MARCH 1, 2021

In 2020, Kaspersky mobile products and technologies detected: 5,683,694 malicious installation packages, 156,710 new mobile banking Trojans, 20,708 new mobile ransomware Trojans. It just so happened that the year 2020 gave hackers a large number of powerful news topics, with the COVID-19 pandemic as the biggest of these.

Mobile 134

Mobile Malware Adware Banking 134

SecureList

MARCH 31, 2021

2020 was challenging for everyone: companies, regulators, individuals. As a result, 2020 was extremely eventful in terms of digital threats, in particular those faced by financial institutions. In 2020, the group tried its hand at the big extortion game with the VHD ransomware family. Key findings. to 13.21%.

Banking 119

Banking Phishing Malware Mobile 119

SecureList

SEPTEMBER 13, 2021

The Incident response analyst report provides insights into incident investigation services conducted by Kaspersky in 2020. In 2020, the pandemic forced companies to restructure their information security practices, accommodating a work-from-home (WFH) approach. Geography of incident responses by region, 2020.

Social Engineering 111

Social Engineering Healthcare Ransomware Government 111

SecureBlitz

FEBRUARY 21, 2024

Here is an infographic on the Cybersecurity trends to know in the year 2020 to 2030. With the number of cyber incidents on the rise, there is a pressing need to be on top of IT security more than ever.

Cybersecurity 76

Cybersecurity Technology 76

Digital Shadows

JANUARY 26, 2021

The post Ransomware: Analyzing the data from 2020 first appeared on Digital Shadows. Note: This blog is a roundup of our quarterly ransomware series. You can also see our Q2 Ransomware Trends, Q3.

Ransomware 144

Ransomware Cybercrime 144

Tech Republic Security

JANUARY 29, 2020

Learn more about what's on the landscape for 2020. Data privacy is an increasing concern for companies and individuals.

Data privacy 211

Data privacy 211

SecureList

FEBRUARY 15, 2021

In 2020: The share of spam in email traffic amounted to 50.37%, down by 6.14 In 2020, Bitcoin blackmailers stuck to their old scheme, demanding that their victims transfer money to a certain account and threatening adversity for failure to meet their demands. The share of spam in global email traffic in 2020 was down by 6.14

Phishing 137

Phishing Malware Scams Accountability 137

SC Magazine

MARCH 17, 2021

Fortinet Lab’s Global Threat Landscape Report for the second half of 2020 reads more like a decade of attacks, not just a six-month period. The post 2020: The Year of Living Dangerously appeared first on SC Media.

Threat Reports 124

Threat Reports Media Engineering 124

CyberSecurity Insiders

NOVEMBER 8, 2022

US Security and Exchange Commission (SEC) has launched a serious probe on SolarWinds’s massive data breach of 2020. The post SolarWinds 2020 data breach to be deeply proved by SEC appeared first on Cybersecurity Insiders. Thus, pretty soon, the software developer might face legal action that could land it up in paying a huge penalty.

Data breaches 114

Data breaches Government Cybersecurity Software 114

Security Affairs

JANUARY 3, 2021

Data from major cyber security firms revealed that tens of billion records have been exposed in data breaches exposed in 2020. Below a list of top incidents: There were a number of major data breaches that took place in 2020, in many cases stolen records flooded the cybercrime underground and were used credential stuffing attacks.

Data breaches 126

Data breaches Cybercrime Hacking Passwords 126

We Live Security

FEBRUARY 15, 2021

High-severity and critical bugs disclosed in 2020 outnumber the sum total of vulnerabilities reported 10 years prior. The post Record‑breaking number of vulnerabilities reported in 2020 appeared first on WeLiveSecurity.

141

141

Tech Republic Security

APRIL 18, 2024

Nearly 10 million devices were infected with data-stealing malware in 2023, with criminals stealing an average of 50.9 credentials per device.

Malware 157

Malware Big data Data breaches Ransomware 157

Tech Republic Security

JULY 14, 2020

The Identity Theft Resource Center projects 2020 is on pace to see the lowest number of breaches and exposures since 2015.

Identity Theft 212

Identity Theft Data breaches 212

We Live Security

JULY 21, 2021

The post Cybercriminals may target 2020 Tokyo Olympics, FBI warns appeared first on WeLiveSecurity. Cybercriminals may target the popular event with ransomware, phishing, or DDoS attacks in a bid to increase their notoriety or make money.

DDOS 145

DDOS Phishing Ransomware Cybersecurity 145

Dark Reading

MAY 30, 2023

Targeted attacks against Saudi Arabia and other Middle East nations have been detected with a tool that's been in the wild since 2020.

101

101

Security Boulevard

JULY 13, 2021

In an attempt to provide better insights to our readers about what DMARC is and how its implementation can help in securing an organization’s outbound email channels, KDMARC has released its 2020-2021 DMARC Industry Report. The post DMARC Industry Report 2020-2021 appeared first on Kratikal Blogs.

Security Awareness 92

Security Awareness 92

Security Affairs

SEPTEMBER 23, 2020

Samba team has released a security patch to address the Zerologon (CVE-2020-1472) issue in the Microsoft Windows Netlogon Remote Protocol (MS-NRPC). The CVE-2020-1472 flaw is an elevation of privilege that resides in the Netlogon. The post Samba addresses the CVE-2020-1472 Zerologon Vulnerability appeared first on Security Affairs.

Authentication 142

Authentication Advertising Architecture Passwords 142

Tech Republic Security

JANUARY 20, 2021

2020 was a security struggle in the world of web applications, and it isn't going to get any better in 2021, research from cybersecurity provider Radware said.

Cybersecurity 217

Cybersecurity 217

Digital Shadows

MARCH 18, 2021

On March 17th, the Federal Bureau of Investigation (FBI) published its 2020 Internet Crimes Complaint Center (IC3) report. The post FBI IC3 2020: Cybercrime Causes $4.1 This report. Billion in Losses first appeared on Digital Shadows.

Cybercrime 135

Cybercrime Internet Internet 135

Tech Republic Security

JUNE 9, 2020

Here are the email security risks, and what you can do about them, in 2020. Phishing is on the rise, ransomware continues to be a threat, and email exploits are more popular than ever.

Phishing 151

Phishing Ransomware Risk 151

McAfee

DECEMBER 10, 2020

Everyone deserves a break after surviving this past year and I cannot think of better way to celebrate than to share some of our greatest accomplishments from 2020. January 2020 Gartner Peer Insights VOC Customers’ Choice for CASB. 2020 Gartner Peer Insights Customers’ Choice VOC for Secure Web Gateways.

Policy Compliance 98

Policy Compliance Technology Information Security Media 98

Security Affairs

MARCH 20, 2021

A hacking group has employed at least 11 zero-day flaws as part of an operation that took place in 2020 and targeted Android, iOS, and Windows users. Google researchers observed two separate waves of attacks that took place in February and October 2020, respectively. ” wrote the popular Project Zero researcher Maddie Stone.

Hacking 129

Hacking Software Information Security Malware 129

We Live Security

MARCH 23, 2021

Nearly half of reported cybercrime losses in 2020 were the result of BEC fraud, according to an FBI report. The post Almost $2 billion lost to BEC scams in 2020 appeared first on WeLiveSecurity.

Scams 138

Scams Cybercrime 138