Archive for the ‘cyber security’ Category

Secure Remote Working During COVID-19 — Checklist for CISOs

April 7th, 2020
Coronavirus crisis introduces a heavy burden on the CISOs with the collective impact of a mass transition to working remotely coupled with a surge of cyberattacks that strive to monetize the general chaos. Security vendors, unintendedly, contribute to this burden by a relentless generation of noise in the form of attack reports, best practices, tips, and threat landscape analysis. Here we

Posted in CISO, coronavirus, COVID-19, cyber security, cybersecurity checklist, Cynet | Comments (0)

Marriott Suffers Second Breach Exposing Data of 5.2 Million Hotel Guests

March 31st, 2020
International hotel chain Marriott today disclosed a data breach impacting nearly 5.2 million hotel guests, making it the second security incident to hit the company in recent years. "At the end of February 2020, we identified that an unexpected amount of guest information may have been accessed using the login credentials of two employees at a franchise property," Marriott said in a

Posted in Cyber Attack, cyber security, data breach, Database Security, hotel reservations, Marriott International, Privacy | Comments (0)

Hackers Exploit Zero-Day Bugs in Draytek Devices to Target Enterprise Networks

March 27th, 2020
Cybersecurity researchers with Qihoo 360's NetLab today unveiled details of two recently spotted zero-day cyberattack campaigns in the wild targeting enterprise-grade networking devices manufactured by Taiwan-based DrayTek. According to the report, at least two separate groups of hackers exploited two critical remote command injection vulnerabilities (CVE-2020-8515) affecting DrayTek Vigor

Posted in cyber security, hacking wireless router, Load Balancer, network security, network switches, Networking devices, Router hacking, Zero-Day Vulnerability | Comments (0)

Hackers Used Local News Sites to Install Spyware On iPhones

March 27th, 2020
A newly discovered watering-hole campaign is targeting Apple iPhone users in Hong Kong by using malicious website links as a lure to install spyware on the devices. According to research published by Trend Micro and Kaspersky, the "Operation Poisoned News" attack leverages a remote iOS exploit chain to deploy a feature-rich implant called 'LightSpy' through links to local news websites, which

Posted in Apple iPhone, cyber security, hacking iphone, iOS malware, iPhone hacking, Malware apps, Mobile Security, spyware | Comments (0)

Watch Out: Android Apps in Google Play Store Capitalizing on Coronavirus Outbreak

March 26th, 2020
Preying on public fears, the ongoing coronavirus outbreak is proving to be a goldmine of opportunity for attackers to stage a variety of malware attacks, phishing campaigns, and create scam sites and malicious tracker apps. Now in a fresh twist, third-party Android app developers too have begun to take advantage of the situation to use coronavirus-related keywords in their app names,

Posted in Android, android apps, Android Malware, coronavirus, COVID-19, cyber security, Cyber threats, Malware apps | Comments (0)

How CISOs Should Prepare for Coronavirus Related Cybersecurity Threats

March 18th, 2020
The Coronavirus is hitting hard on the world's economy, creating a high volume of uncertainty within organizations. Cybersecurity firm Cynet today revealed new data, showing that the Coronavirus now has a significant impact on information security and that the crisis is actively exploited by threat actors. In light of these insights, Cynet has also shared a few ways to best prepare for the

Posted in coronavirus, COVID-19, cyber security, data breach, data theft, healthcare, Malware attack, phishing attack | Comments (0)

TrueFire Guitar Tutoring Website Suffers Magecart-style Credit Card Breach

March 17th, 2020
Online guitar tutoring website TrueFire has apparently suffered a 'Magecart' style data breach incident that may have potentially led to the exposure of its customers' personal information and payment card information. TrueFire is one of the popular guitar tutoring websites with over 1 million users, where wanna-be-guitarists pay online to access a massive library of over 900 courses and

Posted in credit card breach, credit card hacking, cyber security, data breach, hacking news, magecart | Comments (0)

Android Cookie-Stealing Malware Found Hijacking Facebook Accounts

March 13th, 2020
A new simple but dangerous strain of Android malware has been found in the wild that steals users' authentication cookies from the web browsing and other apps, including Chrome and Facebook, installed on the compromised devices. Dubbed "Cookiethief" by Kaspersky researchers, the Trojan works by acquiring superuser root rights on the target device, and subsequently, transfer stolen cookies to

Posted in Android hacking, Android Malware, browser cookies, cookies stealing, cyber security, hack android mobile, malware, password security, password stealer | Comments (0)

Critical Patch Released for ‘Wormable’ SMBv3 Vulnerability — Install It ASAP!

March 12th, 2020
Microsoft today finally released an emergency software update to patch the recently disclosed very dangerous vulnerability in SMBv3 protocol that could let attackers launch wormable malware, which can propagate itself from one vulnerable computer to another automatically. The vulnerability, tracked as CVE-2020-0796, in question is a remote code execution flaw that impacts Windows 10 version

Posted in cyber security, smb malware, smb vulnerability, smb worm, software update, Windows Patch, windows updates, wormable exploit | Comments (0)

Beware of ‘Coronavirus Maps’ – It’s a malware infecting PCs to steal passwords

March 11th, 2020
Cybercriminals will stop at nothing to exploit every chance to prey on internet users. Even the disastrous spread of SARS-COV-II (the virus), which causes COVID-19 (the disease), is becoming an opportunity for them to likewise spread malware or launch cyber attacks. Reason Cybersecurity recently released a threat analysis report detailing a new attack that takes advantage of internet users'

Posted in Computer Malware, computer security, computer virus, coronavirus, cyber security, Malware attack | Comments (0)