Adam Levin

DECEMBER 30, 2020

Hackers are using internet-connected home devices to livestream “swatting” attacks, according to the FBI. Swatting is a dangerous prank where emergency services are called to respond to a life threatening situation that requires immediate intervention by police and/or S.W.A.T. teams. In a public service announcement issued December 29, the FBI warned that “offenders have been using stolen e-mail passwords to access smart devices with cameras and voice capabilities and carry out swatting attacks.

IoT 300

IoT Hacking Internet Internet 300

Schneier on Security

DECEMBER 30, 2020

Good article on the evolution of ransomware : Though some researchers say that the scale and severity of ransomware attacks crossed a bright line in 2020, others describe this year as simply the next step in a gradual and, unfortunately, predictable devolution. After years spent honing their techniques, attackers are growing bolder. They’ve begun to incorporate other types of extortion like blackmail into their arsenals, by exfiltrating an organization’s data and then threatening to

Ransomware 257

Ransomware Antivirus 257

Tech Republic Security

DECEMBER 30, 2020

Collaboration between organizations and even countries might be the only way to have a positive impact on cybercrime, according to one expert.

Cybercrime 217

Cybercrime Cybersecurity 217

WIRED Threat Level

DECEMBER 30, 2020

This year saw plenty of destructive hacking and disinformation campaigns—but amid a pandemic and a historic election, the consequences have never been graver.

Internet 145

Internet Internet Hacking 145

Advertisement

How many people would you trust with your house keys? Chances are, you have a handful of trusted friends and family members who have an emergency copy, but you definitely wouldn’t hand those out too freely. You have stuff that’s worth protecting—and the more people that have access to your belongings, the higher the odds that something will go missing.

Cybersecurity

Security Affairs

DECEMBER 30, 2020

T-Mobile has disclosed a data breach that exposed customers’ network information (CPNI), including phone numbers and calls records. T-Mobile has disclosed a data breach exposing customers’ account’s information. The T-Mobile security staff discovered “malicious, unauthorized access” to their systems. “We are reaching out to let you know about a security incident we recently identified and quickly shut down that may have impacted some of your T-Mobile account i

Data breaches 134

Data breaches Mobile Telecommunications Wireless 134

Threatpost

DECEMBER 30, 2020

Stolen email credentials are being used to hijack home surveillance devices, such as Ring, to call police with a fake emergency, then watch the chaos unfold.

Surveillance 140

Surveillance Authentication IoT Government 140

Threatpost

DECEMBER 30, 2020

A look back at what was hot with readers -- offering a snapshot of the security stories that were most top-of-mind for security professionals and consumers throughout the year.

Phishing 102

Phishing IoT Mobile Ransomware 102

Tech Republic Security

DECEMBER 30, 2020

You should always lock your computer when you walk away. But sometimes, that becomes a hassle. Here's one way to make it easier.

VPN 130

VPN 130

Security Affairs

DECEMBER 30, 2020

US Cybersecurity and Infrastructure Security Agency (CISA) urges US federal agencies to update the SolarWinds Orion software by the end of the year. The US Cybersecurity and Infrastructure Security Agency (CISA) has updated its official guidance to order US federal agencies to update the SolarWinds Orion platforms by the end of the year. According to the CISA’s Supplemental Guidance to Emergency Directive 21-01, all US government agencies running the SolarWinds Orion app must update to the

Software 99

Software Authentication Hacking Cybersecurity 99

We Live Security

DECEMBER 30, 2020

Cybercriminals look to cash in on the vaccine rollout, including by falsely offering to help people jump the line. The post New warning issued over COVID‑19 vaccine fraud, cyberattacks appeared first on WeLiveSecurity.

88

88

Advertiser: Revenera

In a recent study, IDC found that 64% of organizations said they were already using open source in software development with a further 25% planning to in the next year. Most organizations are unaware of just how much open-source code is used and underestimate their dependency on it. As enterprises grow the use of open-source software, they face a new challenge: understanding the scope of open-source software that's being used throughout the organization and the corresponding exposure.

Risk

Security Affairs

DECEMBER 30, 2020

Google has addressed a bug in its feedback tool incorporated across its services that could have allowed attackers to view users’ private docs. Google has addressed a flaw in its feedback tool that is part of multiple of its services that could be exploited by attackers to take screenshots of sensitive Google Docs documents by embedding them in a malicious website.

Hacking 91

Hacking Information Security Malware 91

Dark Reading

DECEMBER 30, 2020

Global pandemic and the easy availability of for-hire services and inexpensive tool sets gave adversaries more opportunities to attack.

DDOS 127

DDOS 127

Threatpost

DECEMBER 30, 2020

Bugcrowd CTO Casey Ellis covers new cybersecurity challenges for online retailers.

Retail 108

Retail Cybersecurity InfoSec Mobile 108

Dark Reading

DECEMBER 30, 2020

A combination of best practices and best-in-class technology will help keep your enterprise from falling victim to ever-growing threats.

Mobile 118

Mobile Technology 118

Advertisement

Within the past few years, ransomware attacks have turned to critical infrastructure, healthcare, and government entities. Attackers have taken advantage of the rapid shift to remote work and new technologies. Add to that hacktivism due to global conflicts and U.S. elections, and an increased focus on AI, and you have the perfect recipe for a knotty and turbulent 2024.

Cybersecurity

SiteLock

DECEMBER 30, 2020

Malware is a type of malicious software designed to gain unauthorized access to your website—and attacks are more common than you might think. Malware attacks stem from bots scanning websites for exploitable vulnerabilities. Websites endure an estimated 94 attacks per day averaging out to one attack per 15 minutes. About 12.8 million sites worldwide are […].

Malware 75

Malware Software 75

Thales Cloud Protection & Licensing

DECEMBER 30, 2020

Top 10 of 2020: Our Favorite Pieces from a Weird Year. sparsh. Thu, 12/31/2020 - 05:26. 2020 has certainly been an unusual year. We never imagined a year of working from home at this level, and I’m sure I’m not the only one eager for casual social interaction once again. Even in the midst of all the uncertainty, everyone loves a good end of year list.

Digital transformation 62

Digital transformation Healthcare Technology Manufacturing 62

The State of Security

DECEMBER 30, 2020

Con la llegada de COVID-19 las organizaciones de todo el mundo fueron obligadas a hacer la transición de sus empleados a trabajar desde casa, en un momento en que la infraestructura de red de las organizaciones es más compleja que nunca. Esta complejidad no es única de los entornos de IT. De hecho, las máquinas […]… Read More. The post Acceso Remoto Seguro: Por que es importante y por que hay que hacerlo bien appeared first on The State of Security.

Technology 53

Technology 53

eSecurity Planet

DECEMBER 30, 2020

Irrespective of your organization’s size or complexity, a robust cybersecurity infrastructure is the key to protecting your network and data. But common problems prevail for IT staff monitoring or managing potential threats: a constant triage of alerts, dispersed information challenging to gather, and lack of time, tools, or resources to effectively protect your organization.

Penetration Testing 89

Penetration Testing Cybersecurity Antivirus Network Security 89

Advertisement

The healthcare industry has massively adopted web tracking tools, including pixels and trackers. Tracking tools on user-authenticated and unauthenticated web pages can access personal health information (PHI) such as IP addresses, medical record numbers, home and email addresses, appointment dates, or other info provided by users on pages and thus can violate HIPAA Rules that govern the Use of Online Tracking Technologies by HIPAA Covered Entities and Business Associates.

Healthcare