Lohrman on Security

SEPTEMBER 25, 2022

This review covers Mikko Hypponen’s latest book, If It’s Smart, It’s Vulnerable. This is an excellent book that is highly recommended.

165

165

Security Affairs

SEPTEMBER 25, 2022

OpIran: Anonymous launched Operation Iran against Teheran due to the ongoing crackdown on dissent after Mahsa Amini’s death. Anonymous launched OpIran against Iran due to the ongoing crackdown on dissent after Mahsa Amini’s death. The protests began after the death of Mahsa Amini from Saqqez in Kurdistan province after her arrest by Iran’s morality police for allegedly wearing her hijab too loosely.

Internet 125

Internet Internet Hacking Government 125

ZoneAlarm

SEPTEMBER 25, 2022

Online scams have become so common that we are immediately suspicious whenever we see a pop-up on a website, get an email with a link to click, or a file to open. So how is it possible that so many people and organizations continue to fall for whatever cybercriminals throw their way? Throughout the hundreds … The post What Does Social Engineering Have to Do with Ransomware?

Social Engineering 110

Social Engineering Engineering Ransomware Scams 110

Bleeping Computer

SEPTEMBER 25, 2022

Windows 11 22H2 was just released, and with it comes a new security feature called Enhanced Phishing Protection that warns users when they enter their Windows password in insecure applications or on websites. [.].

Passwords 105

Passwords Phishing 105

Advertisement

How many people would you trust with your house keys? Chances are, you have a handful of trusted friends and family members who have an emergency copy, but you definitely wouldn’t hand those out too freely. You have stuff that’s worth protecting—and the more people that have access to your belongings, the higher the odds that something will go missing.

Cybersecurity

Security Affairs

SEPTEMBER 25, 2022

The Internet Systems Consortium (ISC) fixed six remotely exploitable vulnerabilities in the BIND DNS software. The Internet Systems Consortium (ISC) this week released security patches to address six remotely exploitable vulnerabilities in BIND DNS software. Four out of six flaws, all denial-of-service (DoS) issue, have been rated as ‘high’ severity.

DNS 100

DNS Software Internet Internet 100

Bleeping Computer

SEPTEMBER 25, 2022

Security analysts at ASEC have discovered a new wave of attacks targeting vulnerable Microsoft SQL servers, involving the deployment of a ransomware strain named FARGO. [.].

Ransomware 100

Ransomware Hacking 100

Bleeping Computer

SEPTEMBER 25, 2022

A previously unknown threat actor that researchers have named 'Metador' has been breaching telecommunications, internet services providers (ISPs), and universities for about two years. [.].

Telecommunications 99

Telecommunications Hacking Internet Internet 99

Security Affairs

SEPTEMBER 25, 2022

The City of London Police this week announced the arrest of a 17-year-old teenager on suspicion of hacking. Is he the Uber hacker? The City of London Police on Friday announced to have arrested a 17-year-old teenager on suspicion of hacking, however, experts believe the arrest could be linked to the recent security breaches suffered by Uber and Rockstar Games.

Hacking 90

Hacking Data breaches Cybercrime Information Security 90

Bleeping Computer

SEPTEMBER 25, 2022

Data exfiltration malware known as Exmatter and previously linked with the BlackMatter ransomware group is now being upgraded with data corruption functionality that may indicate a new tactic that ransomware affiliates might switch to in the future. [.].

Ransomware 91

Ransomware Malware 91

Security Affairs

SEPTEMBER 25, 2022

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the newsletter with the international press subscribe here. ISC fixed high-severity flaws in the BIND DNS software Ukraine: SSU dismantled cyber gang that stole 30 million accounts London Police arrested a teen suspected to be behind Uber, Rockstar Games breaches Sophos warns of a new actively exploited fla

Cryptocurrency 80

Cryptocurrency Data breaches DNS DDOS 80

Advertiser: Revenera

In a recent study, IDC found that 64% of organizations said they were already using open source in software development with a further 25% planning to in the next year. Most organizations are unaware of just how much open-source code is used and underestimate their dependency on it. As enterprises grow the use of open-source software, they face a new challenge: understanding the scope of open-source software that's being used throughout the organization and the corresponding exposure.

Risk

Bleeping Computer

SEPTEMBER 25, 2022

American Airlines says its Cyber Security Response Team found out about a recently disclosed data breach from the targets of a phishing campaign that was using an employee's hacked Microsoft 365 account. [.].

Phishing 88

Phishing Data breaches Accountability Hacking 88

WIRED Threat Level

SEPTEMBER 25, 2022

Plus: A leaked trove illuminates Russia’s internet regulator, a report finds Facebook and Instagram violated Palestinian rights, and more.

Internet 89

Internet Internet 89

Naked Security

SEPTEMBER 25, 2022

Is this the same suspect as before? Is he part of LAPSUS$? Is this the man who hacked Uber and Rockstar? And, if so, who else?

Hacking 93

Hacking 93

WIRED Threat Level

SEPTEMBER 25, 2022

Many companies have pulled physical servers from the country as a mandate to collect customer data goes into effect.

VPN 94

VPN 94

Advertisement

Within the past few years, ransomware attacks have turned to critical infrastructure, healthcare, and government entities. Attackers have taken advantage of the rapid shift to remote work and new technologies. Add to that hacktivism due to global conflicts and U.S. elections, and an increased focus on AI, and you have the perfect recipe for a knotty and turbulent 2024.

Cybersecurity

eSecurity Planet

SEPTEMBER 25, 2022

For years the tech industry has promised a shift toward a passwordless future. In 2013, for example, the FIDO Alliance was created to solve the world’s password problem by replacing login technology. Google, Paypal, and Lenovo were among the original FIDO founding members. By 2015, Microsoft joined, and in 2020, Apple followed. The road to a passwordless world has been slow, but seems to have accelerated in the past year, helped in part by Microsoft’s move to passwordless sign-on.

Passwords 113

Passwords Password Management Authentication Technology 113