Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
The Iran-linked cyber-espionage group known as Seedworm appears to have added a new downloader to its arsenal and to have started conducting destructive attacks. [Read More]
The FBI and CISA say the Russian state-sponsored hacking group Energetic Bear has successfully compromised government networks and stole data from at least two servers. [Read More]
The European Union on Thursday imposed sanctions on two Russian officials and part of Russia’s GRU military intelligence agency over a cyberattack against the German parliament in 2015. [Read More]
A database with information on virtually the entire US voting population has been circulated on hacker forums, opening up the potential for disinformation and scams. [Read More]
Malwarebytes security researchers have identified a new campaign in which tech support scammers are exploiting an XSS vulnerability and are relying exclusively on links posted on Facebook to reach potential victims. [Read More]
Former NSA contracted turned traitor and fugitive Edward Snowden has been granted permanent residency in Russia, his lawyer said. [Read More]
The German government Wednesday agreed to allow secret services to listen in on conversations via encrypted messaging services such as Messenger or Whatsapp as a means of tackling terrorism. [Read More]
Officials say Russia and Iran have obtained some voter registration data, aiming to interfere in the November election. [Read More]
Most of the servers associated with the TrickBot botnet have been taken down following the technical and legal effort announced last week, Microsoft says. [Read More]
The Kremlin on Tuesday denied US claims that Russian military intelligence was behind cyber attacks targeting Ukraine's power grid, the 2017 French election and the 2018 Winter Olympic Games. [Read More]
FEATURES, INSIGHTS // Cybercrime
The holidays are also a bonanza for cybercriminals whose own sales and purchases of contraband on the dark web mirror the one-day-only specials of their consumer-facing counterparts.
Domain name typo-squatting is an established tactic in the world of cybercrime.
Intent-based segmentation, deception technology, and an integrated security fabric are essential tools in beating malware designed to avoid detection and analysis.
At the end of the day, I encourage businesses and organizations of all sizes to leave the moral judgments regarding ransomware to the government.
Given the likelihood of an uptick in ransomware attacks, let’s consider steps organizations can take to minimize the risk of being victimized.
While global corporations have been targeted by Iran-linked threat actors, the escalating tensions in recent weeks will inevitably bring more repercussions as tools and tactics change with new strategic goals.
In order to make threat intelligence more accessible and effective for more fraud teams, it’s important for vendors and practitioners alike to recognize and debunk some misconceptions.
it’s crucial to remember that accessing and obtaining DDW data safely and effectively in support of an intelligence operation requires highly specific skills and infrastructure that, unfortunately, not all vendors possess.
Organizations may not be able to mitigate BEC scams entirely; however, tightening up processes will ensure data exposure is kept to a minimum.
The 2020 elections will be hotly contested, and the integrity of the election will need to be beyond repute to ensure citizens confidence in a free and fair election.
Get the Daily Briefing
- Microsoft Defender ATP Users Get False Positive Alerts for Mimikatz, Cobalt Strike
- U.S. Shares Information on North Korean Threat Actor 'Kimsuky'
- StackRox Releases Open Source Tool for Finding Kubernetes Misconfigurations
- Payment and Data Security Firm Bluefin Raises $25 Million
- Hackers Can Open Doors by Exploiting Vulnerabilities in Hörmann Device
- Back to Basics: Pandemic Cybersecurity Trends and Solutions
- Application Security Posture Management Firm Enso Security Emerges From Stealth
- EXCLUSIVE: Medical Records of 3.5 Million U.S. Patients Can be Accessed and Manipulated by Anyone
- Compromised CMS Credentials Likely Used to Hack Trump Campaign Website
- 21 Malicious Apps Downloaded 8 Million Times From Google Play
Copyright © 2020 Wired Business Media. All Rights Reserved. Privacy Policy