0 Comments
Next month marks the 30th anniversary of the first ever ransomware attack, and according to new research this particular form of malware is still going strong.  According to the “Mid-Year Threat Landscape Report“ published yesterday by Bitdefender, ransomware increased 74.23% year on year in the first six months of 2019.  Researchers noted a change in the ransomware landscape following the fall
0 Comments
Security researchers found vulnerabilities in the Qualcomm TrustZone secure element extension that could allow attackers to steal the most sensitive data stored on mobile devices. TrustZone implements architectural security extensions on ARM processors that can be integrated into the bootloader, radio, Android system image and a trusted execution environment (TEE) in mobile devices. Slava Makkaveev,
0 Comments
The recent controversies surrounding the WhatsApp hacking haven’t yet settled, and the world’s most popular messaging platform is in choppy waters once again. The Hacker News has learned that WhatsApp has recently patched yet another critical vulnerability that could have allowed attackers to remotely compromise targeted devices and potentially steal secured chat messages and files
0 Comments
New research published today by Zix-AppRiver has revealed that 61% of US executives feel powerless to stop employees holiday shopping on company devices, despite knowing that the practice poses a cybersecurity threat to the business. Researchers asked 1,049 cybersecurity decision-makers within American SMBs across a diverse range of industry sectors about the holiday shopping habits of their employees.  According
0 Comments
by John E Dunn More than a decade after it first emerged, is the world any closer to stopping ransomware? Judging from the growing toll of large organisations caught out by what has become the weapon of choice for so many criminals, it’s tempting to conclude not. The problem for defenders, as documented in SophosLabs’
0 Comments
It appears that at least the United States has started taking the threat of Sim Swapping attacks very seriously. Starting with the country’s first-ever conviction for ‘SIM Swapping’ this February, U.S. Department of Justice has since then announced charges against several individuals for involving in the scheme to siphon millions of dollars in cryptocurrency from
0 Comments
TikTok is beginning to dabble in social commerce. The short-form video app said it has started to allow some users to add links to e-commerce sites (or any other destination) to their profile biography as well as offer creators the ability to easily send their viewers to shopping websites. The company said the roll-out of
0 Comments
Cyber professionals will compete to find leads in real missing persons cases in a competition in Washington, DC, next month.  SANS Institute has teamed up with non-profit organization Trace Labs to host the Open-Source Intelligence (OSINT) Missing Persons Capture the Flag (CTF) in partnership with local, state, and federal law enforcement agencies. Participants, working in teams of
0 Comments
Are you considering a career in cybersecurity? What learning path(s) should you take? Does formal education matter? ESET experts share their insights. With cyberthreats on the rise, cybersecurity professionals are, unsurprisingly, a hot commodity. According to a recent study, there will be 350% growth in open cybersecurity positions from 2013 to 2021 and it is
0 Comments
Freshworks, a company that makes a variety of business software tools, from CRM to help-desk software, announced a $150 million Series H investment today from Sequoia Capital, CapitalG (formerly Google Capital) and Accel on a hefty $3.5 billion valuation. The late-stage startup has raised almost $400 million, according to Crunchbase data. The company has been
0 Comments
America’s Internal Revenue Service is to launch a large-scale cyber-safety campaign to coincide with the busiest shopping period of the year. According to the website Accountingtoday.com, the campaign by the IRS will begin on the Monday after Thanksgiving, commonly known to bargain hunters as Cyber Monday.  “The campaign will emphasize to practitioners and taxpayers the
0 Comments
Security pros know October as National Cybersecurity Awareness Month. But October 2019 marked another important event: It was the fifth anniversary of the release of Docker 1.0. Since Docker was introduced, there has been a tremendous evolution in containers and the containerization ecosystem. Consider, for example, the emergence of container-focused cloud services, the proliferation of
0 Comments
by Danny Bradbury Apple has yanked an app from its iTunes App Store that allowed Instagram users to follow their friends’ activities on the social network. Apple removed Like Patrol from its store last weekend citing a violation of its data collection policies. Apple didn’t return requests for comment, but the app showed up as
0 Comments
The infamous vulnerability has been exploited for a cryptocurrency mining campaign, but more damaging attacks may still be in store Ever since it was discovered six months ago, the BlueKeep vulnerability has had (not only) the cybersecurity community concerned about impending WannaCryptor-style attacks. Earlier in November, Microsoft together with security researchers Kevin Beaumont and Marcus
0 Comments
Complying with cyber regulations forms a significant portion of the CISO’s responsibility. Compliance is, in fact, one of the major drivers in the purchase and implementation of new security products. But regulations come in multiple different colors and shapes – some are tailored to a specific vertical, while others are industry-agnostic. Some bare explicit consequences
0 Comments
PortSwigger has launched a free interactive training platform in an attempt to address the global shortage of cybersecurity talent.  The makers of Burp Suite cut the ribbon on the new Web Security Academy last month following a soft launch of the platform in April 2019, which a PortSwigger spokesperson said had garnered “overwhelmingly positive user feedback.” The Web