News

Well, here we have great news for Facebook users, which is otherwise terrible for marketers and publishers whose businesses rely on Facebook advertisement for re-targeted conversations. Following the Cambridge Analytica scandal, Facebook has taken several privacy measures in the past one year with an aim to give its users more control over their data and transparency about how the social

A fully functional jailbreak has been released for the latest iOS 12.4 on the Internet, making it the first public jailbreak in a long time—thanks to Apple. Dubbed "unc0ver 3.5.0," the jailbreak works with the updated iPhones, iPads and iPod Touches by leveraging a vulnerability that Apple previously patched in iOS 12.3 but accidentally reintroduced in the latest iOS version 12.4.

Managing a WordPress website can sap a lot of your time and energy, which otherwise you'd spend on managing your business. If you're looking to cut down on the hours, you spend troubleshooting WordPress technical and security problems, better managing and monitoring your website and users, or your customers, you need a WordPress activity log plugin. This post explains how to use the WP Security

Following the public disclosure of a critical zero-day vulnerability in Webmin last week, the project's maintainers today revealed that the flaw was not actually the result of a coding mistake made by the programmers. Instead, it was secretly planted by an unknown hacker who successfully managed to inject a backdoor at some point in its build infrastructure—that surprisingly persisted into

The European Central Bank (ECB) confirmed Thursday that it had been hit by a cyberattack that involved attackers injecting malware into one of its websites and potentially stealing contact information of its newsletter subscribers. Headquartered in Germany, the European Central Bank (ECB) is the central bank of the 19 European Union countries which have adopted the euro and is itself

If you are using LibreOffice, you need to update it once again. LibreOffice has released the latest version 6.2.6/6.3.0 of its open-source office software to address three new vulnerabilities that could allow attackers to bypass patches for two previously addressed vulnerabilities. LibreOffice is one of the most popular and open source alternatives to Microsoft Office suite and is available

In recent years, gas stations have become one of the favorite targets for thieves who are stealing customers' credit and debit card information by installing a Bluetooth-enabled payment card skimmers at gas stations across the nation. The media has also reported several recent crimes surrounding credit card skimmers, including: Gas pump skimmer found at a 7-Eleven in Pinellas County Credit

In this digital era, the success of almost every marketing, advertising, and analytics company drives through tracking users across the Internet to identify them and learn their interests to provide targeted ads. Most of these solutions rely on 3rd-party cookies, a cookie set on a domain other than the one you are browsing, which allows companies including Google and Facebook to fingerprint

Over a billion Bluetooth-enabled devices, including smartphones, laptops, smart IoT devices, and industrial devices, have been found vulnerable to a high severity vulnerability that could allow attackers to spy on data transmitted between the two devices. The vulnerability, assigned as CVE-2019-9506, resides in the way 'encryption key negotiation protocol' lets two Bluetooth BR/EDR devices

Various implementations of HTTP/2, the latest version of the HTTP network protocol, have been found vulnerable to multiple security vulnerabilities affecting the most popular web server software, including Apache, Microsoft's IIS, and NGINX. Launched in May 2015, HTTP/2 has been designed for better security and improved online experience by speeding up page loads. Today, over hundreds of

If you are using any supported version of the Windows operating system, stop everything and install the latest security updates from Microsoft immediately. Windows operating system contains four new critical wormable, remote code execution vulnerabilities in Remote Desktop Services, similar to the recently patched 'BlueKeep' RDP vulnerability. Discovered by Microsoft's security team itself, all

Update — With this month's patch Tuesday updates, Microsoft has finally addressed this vulnerability, tracked as CVE-2019-1162, by correcting how the Windows operating system handles calls to Advanced Local Procedure Call (ALPC). A Google security researcher has just disclosed details of a 20-year-old unpatched high-severity vulnerability affecting all versions of Microsoft Windows, back

After a few popular Android Trojans like Anubis, Red Alert 2.0, GM bot, and Exobot, quit their malware-as-a-service businesses, a new player has emerged on the Internet with similar capabilities to fill the gap, offering Android bot rental service to the masses. Dubbed "Cerberus," the new remote access Trojan allows remote attackers to take total control over the infected Android devices and

WAF (Web Application Firewall) has been the first line of defence when it comes to application security for a while now. Many organizations have adopted WAF in one form or the other and most cases, compliance has been the driver for adoption. But unfortunately, when it comes to the efficacy of WAF in thwarting attacks, it has not lived up to the expectations. In most organizations, WAF has

Epic Games, the creator of the popular 'Fortnite' video game, is facing a class-action lawsuit from gamers over hacked Fortnite accounts, accusing the company of failing to maintain adequate security measures and notify users of the security breach in a timely manner. The lawsuit, filed by 'Franklin D. Azar and Associates' in the United States District Court in North Carolina on behalf of

If you're using Chrome on Android, you can now sign-in to your Google account and some of the other Google services by simply using your fingerprint, instead of typing in your password every time. Google is rolling out a new feature, called "local user verification," that allows you to log in to both native applications and web services by registering your fingerprint or any other method

With the migration of governments and enterprises towards controller-based architectures, the role of a core network engineer has become more important than ever. Today, majority of interconnected wide area networks (WANs) and local area networks (LANs) in the world run on Cisco routers and other Cisco networking equipment, and therefore most organizations need network engineers to maintain

The threat of ransomware is becoming more prevalent and severe as attackers' focus has now moved beyond computers to smartphones and other Internet-connected smart devices. In its latest research, security researchers at cybersecurity firm CheckPoint demonstrated how easy it is for hackers to remotely infect a digital DSLR camera with ransomware and hold private photos and videos hostage

If you own a device, or a hardware component, manufactured by ASUS, Toshiba, Intel, NVIDIA, Huawei, or other 15 other vendors listed below, you're probably screwed. A team of security researchers has discovered high-risk security vulnerabilities in more than 40 drivers from at least 20 different vendors that could allow attackers to gain most privileged permission on the system and hide malware

Apple has just updated the rules of its bug bounty program by announcing a few major changes during a briefing at the annual Black Hat security conference yesterday. One of the most attractive updates is… Apple has enormously increased the maximum reward for its bug bounty program from $200,000 to $1 million—that's by far the biggest bug bounty offered by any major tech company for reporting

Facebook has filed a lawsuit against two shady Android app developers accused of making illegal money by hijacking users' smartphones to fraudulently click on Facebook ads. According to Facebook, Hong Kong-based 'LionMobi' and Singapore-based 'JediMobi' app developers were distributing malicious Android apps via the official Google Play Store that exploit a technique known as "click injection

Remember the Reverse RDP Attack? Earlier this year, researchers disclosed clipboard hijacking and path-traversal issues in Microsoft's Windows built-in RDP client that could allow a malicious RDP server to compromise a client computer, reversely. (You can find details and a video demonstration for this security vulnerability, along with dozens of critical flaws in other third-party RDP

Malta-based cryptocurrency exchange Binance has become a victim of a ransom demand from a scammer who claimed to have hacked the KYC (Know Your Customer) data of thousands of its customers. The unknown attacker threatened the world's largest cryptocurrency exchange by volume to release KYC information of 10,000 users if the company did not pay 300 Bitcoins—that's equivalent to almost $3.5

If you are running a KDE desktop environment on your Linux operating system, you need to be extra careful and avoid downloading any ".desktop" or ".directory" file for a while. A cybersecurity researcher has disclosed an unpatched zero-day vulnerability in the KDE software framework that could allow maliciously crafted .desktop and .directory files to silently run arbitrary code on a user's

A new variant of the Spectre (Variant 1) side-channel vulnerability has been discovered that affects all modern Intel CPUs, and probably some AMD processors as well, which leverage speculative execution for high performance, Microsoft and Red Hat warned. Identified as CVE-2019-1125, the vulnerability could allow unprivileged local attackers to access sensitive information stored in the

Quick Heal Security Lab spotted 27 malicious apps of dropper category on official “Google Play Store”. These apps have been removed from Play Store after Quick Heal Security Lab reported it to Google last week. These apps continuously show installation prompt for fake “Google Play Store”. If any user falls…

Scammers are literally on their toes all year round, but for all the wrong reasons, devising ways and means to trick innocent people. In their latest attempt at fraud, cyber criminals are using fake SMS pretending to be from Income Tax Department to trick innocent victims into sharing bank account…

The rapid pace at which connected smart home devices are increasing, have opened the gates for a new era of cyber-attacks on IoT devices including smart phones, TVs, IP cameras, etc. These attacks are mostly in the form of crypto mining attacks wherein cryptocurrency-mining botnet enters the targeted device via…

MegaCortex, a ransomware which was first spotted in January this year, has become active again and has changed the way it previously attacked/targeted the corporate world. In order to simplify its execution and increase its scale of operation, it uses ‘Command Prompt’ instead of ‘PowerShell’ in current targeted campaign. Key…

In the 21st century, life is becoming smart and evolving at a fast pace. Even day to day gadgets are becoming smarter. All these IoT devices are powered by ARM-based processor and run on android and unix operating system. These IoT devices include mobiles, smart T.V., routers, IP cameras and…

Imagine a day when you open your inbox and there’s this one mail containing obscene pics of you flashing on the screen. Right below is a message asking you to pay a hefty ransom to prevent your pics from getting shared with all your accounts. The thought itself is enough…

Ransomware authors keep experimenting with the development of payload in various dimensions. In the timeline of ransomware implementations, we have seen its evolution from a simple screen locker to multi-component model for file encryption, from novice approach to a sophisticated one. The Ransomware as a Tool has evolved in wild…

In the last few months, we’ve seen a sudden increase in Spear Phishing attacks. Spear phishing is a variation of a phishing scam wherein hackers send a targeted email to an individual which appears to be from a trusted source. In this type of attack, the attacker uses social engineering tricks and some…

After a busy day at office or business, you settle down on the sofa at home with coffee and you want to catch your favourite show on your phone or TV. While streaming you want to make a payment for your bills that are due. You connect to your Wi-Fi…

The evolving cyber threat landscape has taken a new leap. The recent past shows a startling rise in the number of incidences of phishing attacks, where visitors have been lured into clicking fraudulent links, under the cover of security marks like padlock icon and ‘HTTPS’. Considering the rising number of…

Presently sponsored by: strongDM-see why Splunk's CISO says "strongDM enables you to see what happens, replay & analyze incidents. You can't get that anywhere else"

I made it out of Vegas! That was a rather intense 8 days and if I'm honest, returning to the relative tranquillity of Oslo has been lovely (not to mention the massive uptick in coffee quality). But just as the US to Europe jet lag passes, it's time to head

Presently sponsored by: strongDM-see why Splunk's CISO says "strongDM enables you to see what happens, replay & analyze incidents. You can't get that anywhere else"

Almost one year ago now, I declared extended validation certificates dead. The entity name had just been removed from Safari on iOS, it was about to be removed from Safari on Mojave and there were indications that Chrome would remove it from the desktop in the future (they already weren't

Presently sponsored by: strongDM-see why Splunk's CISO says "strongDM enables you to see what happens, replay & analyze incidents. You can't get that anywhere else"

Well that's Vegas done. 8 days of absolutely non-stop events that's now pretty much robbed me of my voice but hey, I got a flying cow! Scott and I both spent BSides, Black Hat and DEF CON doing "hallway con" or in other words, wandering around just meeting people. The

Presently sponsored by: strongDM-see why Splunk's CISO says "strongDM enables you to see what happens, replay & analyze incidents. You can't get that anywhere else"

Vegas! I'm a bit late with this week's update but I thought I'd catch up with Scott Helme and do the video together. We're talking about the events in Vegas, the ongoing Project Svalbard process, some very screwy messaging about certificates from Sectigo and the Irish government coming on board

Presently sponsored by: strongDM-see why Splunk's CISO says "strongDM enables you to see what happens, replay & analyze incidents. You can't get that anywhere else"

Over the last year and a bit I've been working to make more data in HIBP freely available to governments around the world that want to monitor their own exposure in data breaches. Like the rest of us, governments regularly rely on services that fall victim to attacks resulting in

Presently sponsored by: strongDM-see why Splunk's CISO says "strongDM enables you to see what happens, replay & analyze incidents. You can't get that anywhere else"

What. A. Week.

I've been in San Fran meeting with a whole bunch of potential purchasers for HIBP and it's been... intense. Daunting. Exciting. It's actually an amazing feeling to see my "little" project come to this where I'm sitting in a room with some of the most awesome tech

Presently sponsored by: strongDM-see why Splunk's CISO says "strongDM enables you to see what happens, replay & analyze incidents. You can't get that anywhere else"

It's the last one from Norway before heading off to the US and diving into the deep end of the Project Svalbard pool followed by Black Hat and DEF CON in Vegas. That's off the back of the last week being focused on pushing out Pwned Passwords V5, loading several

Presently sponsored by: strongDM-see why Splunk's CISO says "strongDM enables you to see what happens, replay & analyze incidents. You can't get that anywhere else"

The very first feature I added to Have I Been Pwned after I launched it back in December 2013 was the public API. My thinking at the time was that it would make the data more easily accessible to more people to go and do awesome things; build mobile clients,

Presently sponsored by: strongDM-see why Splunk's CISO says "strongDM enables you to see what happens, replay & analyze incidents. You can't get that anywhere else"

So "Plan A" was to publish Pwned Passwords V5 on Tuesday but a last-minute check showed control characters had snuck in due to the quality (or lack thereof) of the source data. Scratch that and go to "Plan B" which was to push them out today but a last-minute check

Presently sponsored by: strongDM-see why Splunk's CISO says "strongDM enables you to see what happens, replay & analyze incidents. You can't get that anywhere else"

Almost 2 years ago to the day, I wrote about Passwords Evolved: Authentication Guidance for the Modern Era. This wasn't so much an original work on my behalf as it was a consolidation of advice from the likes of NIST, the NCSC and Microsoft about how we should be doing

Presently sponsored by: strongDM-see why Splunk's CISO says "strongDM enables you to see what happens, replay & analyze incidents. You can't get that anywhere else"

After a very non-stop Cyber Week in Israel, I'm back in Oslo working through the endless emails and other logistics related to Project Svalbard. In my haste this week, I put out a really poorly worded tweet which I've tried to clarify in this week's video. On more positive news,

Presently sponsored by: strongDM-see why Splunk's CISO says "strongDM enables you to see what happens, replay & analyze incidents. You can't get that anywhere else"

I've become especially reflective of my career this year, especially as Project Svalbard marches forward and I look back on what it's taken to get here. Especially as I have more discussions around the various turning points in my professional life, there's one that stands out above most others: my

Presently sponsored by: strongDM-see why Splunk's CISO says "strongDM enables you to see what happens, replay & analyze incidents. You can't get that anywhere else"

Early last year, I announced that I was making HIBP data on government domains for the UK and Australia freely accessible to them via searches of their respective TLDs. The Spanish government followed a few months later with each getting unbridled access to search their own domains via an authenticated

Presently sponsored by: strongDM-see why Splunk's CISO says "strongDM enables you to see what happens, replay & analyze incidents. You can't get that anywhere else"

Something totally new this week - Israel! I spent the week in Tel Aviv at Cyber Week, a massive infosec conference where I shared the keynote stage with an amazing array of speakers including many from three letter acronym departments and even PM Benjamin Netanyahu. It's funny how on the

Presently sponsored by: strongDM-see why Splunk's CISO says "strongDM enables you to see what happens, replay & analyze incidents. You can't get that anywhere else"

So first things first - my patience for the Instamics we're wearing just reached zero. One of them recorded and one of them didn't which means we've had to fallback to audio captured by the iPhone I was recording from so apologies it's sub-par. I ended up just uploading the

The attack, which has victimized mostly smaller local governments, is thought to have been unleashed by a single threat actor

The post Ransomware wave hits 23 towns in Texas appeared first on WeLiveSecurity

This week, ESET researchers described an ongoing campaign that targets accountants in the Balkans and spreads both a backdoor and a remote access trojan

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

Does true Artificial Intelligence even exist yet? Will it ever exist or will it end the world before we reach its full capacity?

The post AI: Artificial Ignorance appeared first on WeLiveSecurity

Unlike BlueKeep, however, these vulnerabilities affect more recent Windows versions, including Windows 10

The post Microsoft warns of new BlueKeep‑like flaws appeared first on WeLiveSecurity

ESET researchers discovered a campaign that uses two malicious tools with similar capabilities to ensure both resilience and broader potential for the attackers

The post In the Balkans, businesses are under fire from a double‑barreled weapon appeared first on WeLiveSecurity

After welcoming hacking research, automobile technology started to get better at defending against hacks. So why has the airline industry not been as welcoming?

The post Hacking my airplane – BlackHat edition appeared first on WeLiveSecurity

This week, ESET researchers described a cyberespionage campaign against government targets in Latin America and the ins and out of a spambot targeting French internet users

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

The legal action, brought over alleged click injection fraud, is said to be among the first of its kind

The post Facebook hits two app developers with lawsuit appeared first on WeLiveSecurity

ESET researchers document malware-distributing spam campaigns targeting people in France

The post Varenyky: Spambot à la Française appeared first on WeLiveSecurity

Up to 30 percent of romance fraud victims in 2018 are estimated to have been used as money mules

The post FBI warns of romance scams using online daters as money mules appeared first on WeLiveSecurity

ESET research uncovers a cyberespionage operation targeting Venezuelan government institutions

The post Sharpening the Machete appeared first on WeLiveSecurity

This week, ESET researchers put the spotlight on two threats – new Android ransomware that spreads to victims’ contacts via SMS messages, and a banking trojan that targets Latin America

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

A primer on why internet-enabled TVs make for attractive and potentially soft targets, and how cybercriminals can ruin more than your TV viewing experience

The post Smart TVs: Yet another way for attackers to break into your home? appeared first on WeLiveSecurity

The first in an occasional series demystifying Latin American banking trojans

The post From Carnaval to Cinco de Mayo – The journey of Amavaldo appeared first on WeLiveSecurity

ESET researchers discover a new Android ransomware family that attempts to spread to victims’ contacts and deploys some unusual tricks

The post Android ransomware is back appeared first on WeLiveSecurity

The fraudulent campaign is hosted by a domain that is home to yet more bogus offers pretending to come from other well-known brands

The post Scam impersonates WhatsApp, offers ‘free internet’ appeared first on WeLiveSecurity

A critical vulnerability that was thought to affect VLC media player was later downgraded to medium severity, and the player's maker slammed the bug disclosure process

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

The power utility appears to be well on track to a swift recovery following an attack that ultimately left some people without electricity

The post South African power company battles ransomware attack appeared first on WeLiveSecurity

The attack, unleashed by a 400,000-strong Mirai-style botnet, may be the largest of its kind on record

The post Streaming service withstands 13‑day DDoS siege appeared first on WeLiveSecurity

The compromised company may bear the financial brunt of the breach within the first year after the incident occurs, but the price tag is still far from final

The post Data breaches can haunt firms for years appeared first on WeLiveSecurity

On the flip side, there are currently no known cases of the vulnerability being exploited in the wild

The post VLC player has a critical flaw – and there’s no patch yet (updated) appeared first on WeLiveSecurity

ESET researchers release new findings about malware linked to the Ke3chang APT group, including details about Okrum, a previously unreported backdoor

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

ESET researchers discover fraudulent schemes piggybacking on the popularity of the face-modifying tool FaceApp, using a fake “Pro” version of the application as a lure

The post With FaceApp in the spotlight, new scams emerge appeared first on WeLiveSecurity

Tracking the malicious activities of the elusive Ke3chang APT group, ESET researchers have discovered new versions of malware families linked to the group, and a previously unreported backdoor

The post Okrum: Ke3chang group targets diplomatic missions appeared first on WeLiveSecurity

Keeping up with BlueKeep; or how many internet-facing systems, and in which countries and industries, remain ripe for exploitation?

The post BlueKeep patching isn’t progressing fast enough appeared first on WeLiveSecurity

A researcher found that it was possible to subvert the platform’s password recovery mechanism and take control of user accounts

The post How your Instagram account could have been hijacked appeared first on WeLiveSecurity

ESET researchers describe the ins and outs of a zero-day exploit that has been used for a highly targeted attack and reveal the name of the threat actor that deployed it

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

What mounting public concern about falling victim to cybercrime says about government and corporate efforts at cybercrime deterrence

The post Cybercrime seen to be getting worse: The time to act is now appeared first on WeLiveSecurity

ESET research reveals notorious crime group also conducting espionage campaigns for the past five years

The post Buhtrap group uses zero‑day in latest espionage campaigns appeared first on WeLiveSecurity

ESET research discovers a zero-day exploit that takes advantage of a local privilege escalation vulnerability in Windows

The post Windows zero‑day CVE‑2019‑1132 exploited in targeted attacks appeared first on WeLiveSecurity

The times they have a-changed since the ICO could only slap fines worth a fraction of the current amounts

The post UK’s data watchdog hands out two mega‑fines for breaches appeared first on WeLiveSecurity

ESET researchers have discovered a malicious campaign distributing a backdoor via torrents, with Korean TV content used as a lure

The post Malicious campaign targets South Korean users with backdoor‑laced torrents appeared first on WeLiveSecurity

Chinese smart home solutions provider Orvibo has leaked two billion logs from devices managed via its cloud platform, exposing sensitive information about their users

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

A trifecta of issues impact the organization’s cyber-resilience and conspire to put it in the firing line of cyberattacks

The post NHS warned to act now to keep hackers at bay appeared first on WeLiveSecurity

The leak, which has since been plugged, exposed a range of highly specific and sensitive information about users

The post Two billion user logs leaked by smart home vendor appeared first on WeLiveSecurity

“Sounds bad”, the former Equifax CIO wrote in a text after learning of the breach that ended up affecting almost half the US population

The post Ex‑Equifax executive sent to jail for insider trading after breach appeared first on WeLiveSecurity

With partner abuse increasingly going digital, we took an in-depth look this week at what needs to be done to stop the scourge of stalkerware

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

The new feature is intended to protect the kind of data that you hold particularly dear

The post Microsoft enhances OneDrive to secure your sensitive files appeared first on WeLiveSecurity

A few days apart, two cities in Florida cave in to extortionists’ demands in hopes of restoring access to municipal computer systems

The post Two US cities opt to pay $1m to ransomware operators appeared first on WeLiveSecurity

What technology makers and others can – and should – do to counter the kind of surveillance that starts at home

The post Stopping stalkerware: What needs to change? appeared first on WeLiveSecurity

The infiltration was only spotted and stopped after the hackers roamed the network undetected for almost a year

The post Hackers breach NASA, steal Mars mission data appeared first on WeLiveSecurity

ESET researchers throw light on an unusual cryptocurrency miner and on Android apps that can get around 2FA protections

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

Why smaller businesses cannot afford to ignore how they gather, store and protect data

The post Privacy legislation may soon affect smaller businesses appeared first on WeLiveSecurity

The story of a Linux miner bundled with pirated copies of VST (Virtual Studio Technology) software for Windows and macOS

The post LoudMiner: Cross‑platform mining in cracked VST software appeared first on WeLiveSecurity

Are you in the 26% of people who use one of these PIN codes to unlock their phones?

The post You’d better change your birthday – hackers may know your PIN appeared first on WeLiveSecurity

Locked out and out of luck? The photo-sharing platform is trialing new methods to reunite you with your lost account

The post Instagram tests new ways to recover hacked accounts appeared first on WeLiveSecurity

ESET analysis uncovers a novel technique bypassing SMS-based two-factor authentication while circumventing Google’s recent SMS permissions restrictions

The post Malware sidesteps Google permissions policy with new 2FA bypass technique appeared first on WeLiveSecurity

What are the main security concerns associated with smart buildings and why are they in the crosshairs of cybercriminals?

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

On the other hand, a surprisingly high number of Europeans haven't even heard of the landmark legislation

The post GDPR one year on: Most Europeans know at least some of their rights appeared first on WeLiveSecurity

La Liga has taken substantial flak for tapping into microphones and geolocation services in fans‘ phones in a bid to root out piracy

The post Spain’s top soccer league fined over its app’s ‘tactics’ appeared first on WeLiveSecurity