- What are buffer overflow attacks and how are they thwarted?
Ever since the Morris worm, buffer overflows have become notorious fare in the world of vulnerabilities
The post What are buffer overflow attacks and how are they thwarted? appeared first on WeLiveSecurity
- Week in security with Tony Anscombe
ESET researchers analyze malware frameworks targeting air-gapped networks – ESET Research launches a podcast – INTERPOL cracks down on online fraud
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
- Scammers exploit Omicron fears in new COVID‑19 phishing campaign
Fraudsters take advantage of the emergence of the new variant to dupe unsuspecting victims out of their sensitive data
The post Scammers exploit Omicron fears in new COVID‑19 phishing campaign appeared first on WeLiveSecurity
- Launching ESET Research Podcast: A peek behind the scenes of ESET discoveries
Press play for the first episode as host Aryeh Goretsky is joined by Zuzana Hromcová to discuss native IIS malware
The post Launching ESET Research Podcast: A peek behind the scenes of ESET discoveries appeared first on WeLiveSecurity
- Jumping the air gap: 15 years of nation‑state effort
ESET researchers studied all the malicious frameworks ever reported publicly that have been used to attack air-gapped networks and are releasing a side-by-side comparison of their most important TTPs
The post Jumping the air gap: 15 years of nation‑state effort appeared first on WeLiveSecurity
- More than 1,000 arrested in global crackdown on online fraud
The INTERPOL-led operation involved law enforcement from 20 countries and led to the seizure of millions of dollars in illicit gains
The post More than 1,000 arrested in global crackdown on online fraud appeared first on WeLiveSecurity
- Week in security with Tony Anscombe
How scammers take advantage of supply chain shortages – Tips for safe online shopping this holiday season – Steps to take after receiving a data breach notice
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
- The triangle of holiday shopping: Scams, social media and supply chain woes
‘Tis the season to avoid getting played by scammers hijacking Twitter accounts and promoting fake offers for PlayStation 5 consoles and other red-hot products
The post The triangle of holiday shopping: Scams, social media and supply chain woes appeared first on WeLiveSecurity
- Avoiding the shopping blues: How to shop online safely this holiday season
With the holiday shopping bonanza right around the corner, here's how to make sure your online spending spree is safe
The post Avoiding the shopping blues: How to shop online safely this holiday season appeared first on WeLiveSecurity
- FBI, CISA urge organizations to be on guard for attacks during holidays
Threat actors have previously timed ransomware and other attacks to coincide with holidays and weekends
The post FBI, CISA urge organizations to be on guard for attacks during holidays appeared first on WeLiveSecurity
- What to do if you receive a data breach notice
Receiving a breach notification doesn’t mean you’re doomed – here’s what you should consider doing in the hours and days after learning that your personal data has been exposed
The post What to do if you receive a data breach notice appeared first on WeLiveSecurity
- Week in security with Tony Anscombe
ESET discovers watering hole attacks in the Middle East – Getting your life back on track after identity theft – How foreign influence operations have evolved
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
- CYBERWARCON – Foreign influence operations grow up
Not long ago, disinformation campaigns were rather unsophisticated. These days, however, threat actors put serious time and effort into crafting their attacks.
The post CYBERWARCON – Foreign influence operations grow up appeared first on WeLiveSecurity
- US Government declassifies data to foster would‑be defenders
US Government declassifies cybersecurity subjects they want you to learn about, and is hoping to pay you to learn them
The post US Government declassifies data to foster would‑be defenders appeared first on WeLiveSecurity
- ‘My bank account was in a shambles’: The ordeal of an identity theft victim
A victim of identity theft tells us how criminals used his identity to commit fraud and what it took to put his life back in order
The post ‘My bank account was in a shambles’: The ordeal of an identity theft victim appeared first on WeLiveSecurity
- Strategic web compromises in the Middle East with a pinch of Candiru
ESET researchers have discovered strategic web compromise (aka watering hole) attacks against high‑profile websites in the Middle East
The post Strategic web compromises in the Middle East with a pinch of Candiru appeared first on WeLiveSecurity
- FBI systems compromised to send out fake attack alerts
Hackers break into the Bureau’s email systems to send out at least 100,000 emails warning recipients of imminent cyberattacks
The post FBI systems compromised to send out fake attack alerts appeared first on WeLiveSecurity
- Week in security with Tony Anscombe
Steps to take right after a data breach – What to consider before going passwordless – 7 million people hit by Robinhood data breach
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
- When the alarms go off: 10 key steps to take after a data breach
It’s often said that data breaches are no longer a matter of ‘if’, but ‘when’ – here’s what your organization should do, and avoid doing, in the case of a breach
The post When the alarms go off: 10 key steps to take after a data breach appeared first on WeLiveSecurity
- Google scores big win as court blocks iPhone tracking lawsuit
The tech giant wins an appeal against a claim that it unlawfully collected personal data of millions of iPhone users
The post Google scores big win as court blocks iPhone tracking lawsuit appeared first on WeLiveSecurity
- Robinhood data breach affects 7 million people
An attacker gained access to some of Robinhood's customer support systems and stole the personal data of a third of the app's userbase
The post Robinhood data breach affects 7 million people appeared first on WeLiveSecurity
- Passwordless authentication: Is your company ready to move beyond passwords?
Are the days numbered for ‘123456’? As Microsoft further nudges the world away from passwords, here’s what your organization should consider before going password-free.
The post Passwordless authentication: Is your company ready to move beyond passwords? appeared first on WeLiveSecurity
- Week in security with Tony Anscombe
What's it like working as a malware researcher? – ProtonMail and the battle for email privacy – Man charged with hacking, trying to extort US sports leagues
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
- Google squashes Android zero‑day bug exploited in targeted attacks
Beyond the vulnerability in the Android kernel, the monthly round of security patches plugs another 38 security loopholes
The post Google squashes Android zero‑day bug exploited in targeted attacks appeared first on WeLiveSecurity
- Win one for privacy – Swiss providers don’t have to talk
Security and privacy get a leg up in Proton’s legal challenge against data retention and disclosure obligations
The post Win one for privacy – Swiss providers don’t have to talk appeared first on WeLiveSecurity
- What’s it like to work as a malware researcher? 10 questions answered
Three ESET malware researchers describe what their job involves and what it takes to embark on a successful career in this field
The post What’s it like to work as a malware researcher? 10 questions answered appeared first on WeLiveSecurity
- Man charged with hacking major US sports leagues to illegally stream games
On top of illegally streaming sports games for profit, the man is also believed to have attempted to extort MLB for $150,000
The post Man charged with hacking major US sports leagues to illegally stream games appeared first on WeLiveSecurity
- Week in security with Tony Anscombe
ESET discovers Wslink – Why secure-by-design is a must – Staying cybersecure this Halloween and beyond – Operation Dark HunTOR
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
- 5 tips for parents for a cybersecure Halloween
What are some of the key dangers faced by children online and how can you help protect them from the ghosts, ghouls and goblins creeping on the internet?
The post 5 tips for parents for a cybersecure Halloween appeared first on WeLiveSecurity
- Dark HunTOR: 150 arrested, $31 million seized in major dark web bust
The police sting spanned three continents and involved crackdowns in nine countries
The post Dark HunTOR: 150 arrested, $31 million seized in major dark web bust appeared first on WeLiveSecurity
- Wslink: Unique and undocumented malicious loader that runs as a server
There are no code, functionality or operational similarities to suggest that this is a tool from a known threat actor
The post Wslink: Unique and undocumented malicious loader that runs as a server appeared first on WeLiveSecurity
- Putting cybersecurity first: Why secure‑by‑design must be the norm
Organizations that aim to pull ahead of the competition need to develop a strong security culture from top to bottom
The post Putting cybersecurity first: Why secure‑by‑design must be the norm appeared first on WeLiveSecurity
- Week in security with Tony Anscombe
How to break into cybersecurity – Is your password easy to guess? – Shining a spotlight on the security risks of shadow IT
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
- What’s lurking in the shadows? How to manage the security risks of shadow IT
Employee use of unsanctioned hardware and software is an increasingly acute problem in the remote and hybrid work era
The post What’s lurking in the shadows? How to manage the security risks of shadow IT appeared first on WeLiveSecurity
- Cybersecurity careers: What to know and how to get started
Want to help make technology safer for everyone? Love solving puzzles? Looking for a rewarding career? Break into cybersecurity! Insights from ESET researchers Aryeh Goretsky and Cameron Camp will put you on the right track.
The post Cybersecurity careers: What to know and how to get started appeared first on WeLiveSecurity
- Brave browser replaces Google with its own search engine
Brave Search will become the default search option for new users in the US, UK, Canada, Germany and France, with more countries to follow soon
The post Brave browser replaces Google with its own search engine appeared first on WeLiveSecurity
- $5.2 billion worth of Bitcoin transactions possibly tied to ransomware
Threat actors are increasingly using advanced tactics to obfuscate and launder their illicit gains, a report by the US Government finds
The post $5.2 billion worth of Bitcoin transactions possibly tied to ransomware appeared first on WeLiveSecurity
- A recipe for failure: Predictably poor passwords
Security professionals advise to never use ‘beef stew’ as a password. It just isn’t stroganoff.
The post A recipe for failure: Predictably poor passwords appeared first on WeLiveSecurity
- Week in security with Tony Anscombe
Phishing and how to avoid taking the bait – Offboarding employees securely – Why old malware refuses to die
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
- Virus Bulletin: Old malware never dies – it just gets more targeted
Putting a precision payload on top of more generic malware makes perfect sense for malware operators
The post Virus Bulletin: Old malware never dies – it just gets more targeted appeared first on WeLiveSecurity
- Employee offboarding: Why companies must close a crucial gap in their security strategy
There are various ways a departing employee could put your organization at risk of a data breach. How do you offboard employees the right way and ensure your data remains safe?
The post Employee offboarding: Why companies must close a crucial gap in their security strategy appeared first on WeLiveSecurity
- Don’t get phished! How to be the one that got away
If it looks like a duck, swims like a duck, and quacks like a duck, then it's probably a duck. Now, how do you apply the duck test to defend against phishing?
The post Don’t get phished! How to be the one that got away appeared first on WeLiveSecurity
- Microsoft thwarts record‑breaking DDoS attack
The attack, which clocked in at 2.4 Tbps, targeted an Azure customer based in Europe
The post Microsoft thwarts record‑breaking DDoS attack appeared first on WeLiveSecurity
- Ransomware cost US companies almost $21 billion in downtime in 2020
The victims lost an average of nine days to downtime and two-and-a-half months to investigations, an analysis of disclosed attacks shows
The post Ransomware cost US companies almost $21 billion in downtime in 2020 appeared first on WeLiveSecurity
- Week in security with Tony Anscombe
ESET research discovers ESPecter bootkit – FontOnLake targeting Linux – Fake SafeMoon app update
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity
- FontOnLake: Previously unknown malware family targeting Linux
ESET researchers discover a malware family with tools that show signs they’re used in targeted attacks
The post FontOnLake: Previously unknown malware family targeting Linux appeared first on WeLiveSecurity
- Google to turn on 2FA by default for 150 million users, 2 million YouTubers
Two-factor authentication is a simple way to greatly enhance the security of your account
The post Google to turn on 2FA by default for 150 million users, 2 million YouTubers appeared first on WeLiveSecurity
- To the moon and hack: Fake SafeMoon app drops malware to spy on you
Cryptocurrencies rise and fall, but one thing stays the same – cybercriminals attempt to cash in on the craze
The post To the moon and hack: Fake SafeMoon app drops malware to spy on you appeared first on WeLiveSecurity
- UEFI threats moving to the ESP: Introducing ESPecter bootkit
ESET research discovers a previously undocumented UEFI bootkit with roots going back all the way to at least 2012
The post UEFI threats moving to the ESP: Introducing ESPecter bootkit appeared first on WeLiveSecurity
- Week in security with Tony Anscombe
New ESET Threat Report is out – Cybersecurity Awareness Month begins today – What organizations should do to secure their VPNs
The post Week in security with Tony Anscombe appeared first on WeLiveSecurity