Schneier on Security

DECEMBER 20, 2021

Citizen Lab published another report on the spyware used against two Egyptian nationals. One was hacked by NSO Group’s Pegasus spyware. The other was hacked both by Pegasus and by the spyware from another cyberweapons arms manufacturer: Cytrox. We haven’t heard a lot about Cytrox and its Predator spyware. According to Citzen Lab: We conducted Internet scanning for Predator spyware servers and found likely Predator customers in Armenia, Egypt, Greece, Indonesia, Madagascar, Oman, Saud

Manufacturing 315

Manufacturing Spyware Hacking Internet 315

The Last Watchdog

DECEMBER 20, 2021

Within the past year, we have seen a glut of ransomware attacks that made global news as they stymied the operations of many. In May, the infamous Colonial Pipeline ransomware attack disrupted nationwide fuel supply to most of the U.S. East Coast for six days. Related: Using mobile apps to radicalize youth. But the danger has moved up a notch with a new, grave threat: killware.

Malware 225

Malware Phishing Technology Ransomware 225

Tech Republic Security

DECEMBER 20, 2021

Online consumers can do everything right and still become cyber victims. Learn about synthetic identity fraud and why "buyer beware" is not enough.

196

196

Bleeping Computer

DECEMBER 20, 2021

Microsoft warned customers today to patch two Active Directory domain service privilege escalation security flaws that, when combined, allow attackers to easily takeover Windows domains. [.].

145

145

Advertisement

How many people would you trust with your house keys? Chances are, you have a handful of trusted friends and family members who have an emergency copy, but you definitely wouldn’t hand those out too freely. You have stuff that’s worth protecting—and the more people that have access to your belongings, the higher the odds that something will go missing.

Cybersecurity

Tech Republic Security

DECEMBER 20, 2021

Meta has exposed and acted against entities that have been spying on people and organizations around the globe. Find out how the threat actors operate and learn what you can do to protect yourself.

Surveillance 142

Surveillance 142

Dark Reading

DECEMBER 20, 2021

Security experts in Germany discover similar attacks that lock building engineering management firms out of the BASes they built and manage — by turning a security feature against them.

Engineering 144

Engineering 144

Bleeping Computer

DECEMBER 20, 2021

Threat actors now exploit the critical Apache Log4j vulnerability named Log4Shell to infect vulnerable devices with the notorious Dridex banking trojan or Meterpreter. [.].

Banking 145

Banking Malware 145

CyberSecurity Insiders

DECEMBER 20, 2021

Supply chain challenges have always been present, but they’re growing increasingly common and severe. COVID-related shortages have compounded typical disruptions like holiday season demand, creating unprecedented logistics obstacles. Some experts warn that these challenges may last up to two years , and even then, disruptions could still be likely as supply chains grow more complex.

Data breaches 143

Data breaches Social Engineering Education Password Management 143

We Live Security

DECEMBER 20, 2021

As you down tools for the holiday season, be sure to also switch off the standby lights – it’s both cost effective and better for the environment. The post Don’t forget to unplug your devices before you leave for the holidays! appeared first on WeLiveSecurity.

Cybersecurity 139

Cybersecurity 139

CyberSecurity Insiders

DECEMBER 20, 2021

Clop Ransomware Group, a Russian based hacking gang, has published some data belonging to British Police on the dark web and stated that the act was a retaliation for not paying the demanded ransom. Sources say that the CLOP gang infiltrated the servers of IT firm Dacoll and siphoned data belonging to Police National Computer (PNC). The criminal gang demanded a ransom in millions to delete the data from their servers.

Ransomware 141

Ransomware Retail Manufacturing Education 141

Advertiser: Revenera

In a recent study, IDC found that 64% of organizations said they were already using open source in software development with a further 25% planning to in the next year. Most organizations are unaware of just how much open-source code is used and underestimate their dependency on it. As enterprises grow the use of open-source software, they face a new challenge: understanding the scope of open-source software that's being used throughout the organization and the corresponding exposure.

Risk

Security Boulevard

DECEMBER 20, 2021

Police all over the nation are using the infamous Stingray device to surveil suspects. For example, Boston police (despite Stingray use being effectively illegal in Massachusetts). The post Boston Cops buy Stingray Spy Stuff—Spending Secret Budget appeared first on Security Boulevard.

Surveillance 136

Surveillance Social Engineering Security Awareness Engineering 136

CyberSecurity Insiders

DECEMBER 20, 2021

Microsoft Windows 11 Passwordless Authentication will fail, say, experts from WatchGuard Threat Lab. The analysis was done when the American tech giant announced it is going to remove the password based logins entirely from its platform in the next couple of years. It is a fact that the Satya Nadella led company is planning to implement bio-metrics based authentication along with hardware tokens through security keys and OTPs via email soon.

Authentication 139

Authentication Passwords Mobile Software 139

CSO Magazine

DECEMBER 20, 2021

Enterprise spending on cybersecurity is expected to hold steady in 2022, as studies show that nearly all CISOs are getting a budget increase or level funding in the new year—only a small fraction of security chiefs will see their budgets fall. CSO’s 2021 Security Priorities Study found that 44% of security leaders expect their budgets to increase in the upcoming 12 months; that’s a slight bump-up from the 41% who saw their budgets increase in 2021 over 2020.

Cybersecurity 135

Cybersecurity CISO 135

Security Boulevard

DECEMBER 20, 2021

WhiteSource has made available an open source tool to detect vulnerable instances of Log4j logging software. The recently disclosed flaw allows cybercriminals to launch a remote code execution (RCE) attack via Java applications. Rami Sass, WhiteSource CEO, said WhiteSource is also testing an extension to that command-line interface (CLI) tool that will enable IT teams.

Software 134

Software Malware Cybersecurity 134

Advertisement

Within the past few years, ransomware attacks have turned to critical infrastructure, healthcare, and government entities. Attackers have taken advantage of the rapid shift to remote work and new technologies. Add to that hacktivism due to global conflicts and U.S. elections, and an increased focus on AI, and you have the perfect recipe for a knotty and turbulent 2024.

Cybersecurity

Security Affairs

DECEMBER 20, 2021

DarkWatchman is a new lightweight javascript-based Remote Access Trojan (RAT) that uses novel methods for fileless persistence. Recently Prevailion experts detected a malicious javascript-based Remote Access Trojan (RAT) dubbed DarkWatchman that uses a robust Domain Generation Algorithm (DGA) to contact the C2 infrastructure and novel methods for fileless persistence, on-system activity, and dynamic run-time capabilities like self-updating and recompilation. .

Malware 121

Malware Ransomware Phishing Hacking 121

CSO Magazine

DECEMBER 20, 2021

Penetration testing, sometimes called ethical hacking or red team hacking, is an exciting career path in which you simulate cyberattacks on target systems in order to test (and, ultimately, improve) their security. It's a job that lots of people currently working in infosec would like to have, and one that can be tricky to get as competition heats up.

Penetration Testing 120

Penetration Testing InfoSec Hacking 120

The Hacker News

DECEMBER 20, 2021

Facebook's parent company Meta Platforms on Monday said it has filed a federal lawsuit in the U.S. state of California against bad actors who operated more than 39,000 phishing websites that impersonated its digital properties to mislead unsuspecting users into divulging their login credentials.

Phishing 120

Phishing Social Engineering Engineering 120

Tech Republic Security

DECEMBER 20, 2021

Jack Wallen shows you how to restrict server users to a specific directory in Linux.

151

151

Advertisement

The healthcare industry has massively adopted web tracking tools, including pixels and trackers. Tracking tools on user-authenticated and unauthenticated web pages can access personal health information (PHI) such as IP addresses, medical record numbers, home and email addresses, appointment dates, or other info provided by users on pages and thus can violate HIPAA Rules that govern the Use of Online Tracking Technologies by HIPAA Covered Entities and Business Associates.

Healthcare

The Hacker News

DECEMBER 20, 2021

Researchers have disclosed security vulnerabilities in handover, a fundamental mechanism that undergirds modern cellular networks, which could be exploited by adversaries to launch denial-of-service (DoS) and man-in-the-middle (MitM) attacks using low-cost equipment.

Mobile 118

Mobile 118

Security Boulevard

DECEMBER 20, 2021

From sleeper accounts to phishing evolutions, we’ve summarized the major trends from 2021. Read on for our predictions for 2022. The post Risk management got a little messy in 2021, here’s what you can do in 2022 appeared first on NuData Security. The post Risk management got a little messy in 2021, here’s what you can do in 2022 appeared first on Security Boulevard.

Risk 115

Risk Phishing Accountability CISO 115

Malwarebytes

DECEMBER 20, 2021

Last week on Malwarebytes Labs: Spear phish, whale phish, regular phish: What’s the difference? Kronos crippled by ransomware, service may be out for weeks 5 security lessons from 18 months of working from home What SMBs can do to protect against Log4Shell attacks After Log4j, December’s Patch Tuesday has snuck up on us Grindr fined for selling user data to advertisers.

Phishing 112

Phishing Advertising Ransomware 112

Security Boulevard

DECEMBER 20, 2021

Ready for DevSecOps. GrammaTech’s CodeSonar static application security testing (SAST) solution already has great integrations with the tools our customers rely on to develop software today. This release of CodeSonar adds new features and functionality making it easier for you to achieve DevSecOps, while helping you accelerate the delivery of quality, safe and secure code more efficiently.

Software 115

Software 115

Advertisement

The losses companies suffered in 2023 ransomware attacks increased by 74% compared to those of the previous year, according to new data from the Federal Bureau of Investigation (FBI). The true figure is likely to be even higher, though, as many identity theft and phishing attacks go unreported. Ransomware attackers can potentially paralyze not just private sector organizations but also healthcare facilities, schools, and entire police departments.

Identity Theft

Security Affairs

DECEMBER 20, 2021

The Belgian defense ministry was hit by a cyber attack, it seems that threat actors exploited the Log4Shell vulnerability. The Belgian defense ministry confirmed it was hit by a cyberattack, it seems that threat actors exploited the Log4Shell vulnerability. The attack was uncovered on Thursday and today the government disclosed it, but according to local media , the security breach blocked the ministry’s activities for several days. “Hackers exploited a vulnerability in software call

Media 112

Media Government Cyber Attacks Hacking 112

Bleeping Computer

DECEMBER 20, 2021

The United Kingdom's National Crime Agency has contributed more than 585 million passwords to the Have I Been Pwned service that lets users check if their login information has leaked online. [.].

Passwords 113

Passwords 113

The Hacker News

DECEMBER 20, 2021

A U.S. federal government commission associated with international rights has been targeted by a backdoor that reportedly compromised its internal network in what the researchers described as a "classic APT-type operation.

Government 111

Government 111

CSO Magazine

DECEMBER 20, 2021

From the oil rig to the gas pump, most large fuel distribution companies are involved in just about every aspect of fuel exploration, extraction, production, and distribution. In particular, one leading fuel distribution company has over 400 sites that include gas stations, corporate offices, remote offices, oil rigs, and fuel trucks. It also has 9,000 employees that handle thousands of customers across 60 markets.

Marketing 110

Marketing 110

Speaker: Blackberry, OSS Consultants, & Revenera

Software is complex, which makes threats to the software supply chain more real every day. 64% of organizations have been impacted by a software supply chain attack and 60% of data breaches are due to unpatched software vulnerabilities. In the U.S. alone, cyber losses totaled $10.3 billion in 2022. All of these stats beg the question, “Do you know what’s in your software?

Cybersecurity

Dark Reading

DECEMBER 20, 2021

Some think zero trust means you cannot or should not trust employees, an approach that misses the mark and sets up everyone for failure.

125

125

CSO Magazine

DECEMBER 20, 2021

Many organizations that have begun the effort to implement DevSecOps often quickly realize that they’re still in early stages of fully integrating security and compliance into the software development life cycle (SDLC). Today, users typically download packages and use simple checksum digests and commonly depend on security scanners on the final products (e.g., container, binary) before they're deployed into production.

Software 105

Software 105

Dark Reading

DECEMBER 20, 2021

Meanwhile, Apache Foundation releases third update to logging tool in 10 days to address yet another flaw.

136

136

CyberSecurity Insiders

DECEMBER 20, 2021

According to a media update released by the Department of Justice at the end of last week, tech giants Google and Facebook Meta have agreed to protect data traveling to the Pacific Light Cable Network (PLCN) system. The agreement was made to protect the under sea fiber cable connecting the United States with Taiwan and Philippines. So, as per the details available to our Cybersecurity Insiders, Edge Cable Holdings, a business unit of Meta Platform along with GU Holdings, a subsidiary of Google L

Telecommunications 103

Telecommunications Media Risk Cybersecurity 103

Speaker: Erika R. Bales, Esq.

When we talk about “compliance and security," most companies want to ensure that steps are being taken to protect what they value most – people, data, real or personal property, intellectual property, digital assets, or any other number of other things - and it’s more important than ever that safeguards are in place. Let’s step back and focus on the idea that no matter how complicated the compliance and security regime, it should be able to be distilled down to a checklist.