More and more home IoT devices are being connected to organisational networks as people across the globe work from home, increasing the potency of new botnet dark_nexus
Here are certain scenarios that organisations can warn their employees about, and the possible steps to mitigate the risk
People's privacy and data security face risk of attacks from cyber-criminals who tap unsecured official Coronavirus Android apps
Happy developers working in teams with mature DevSecOps practices make more secure software, survey showed; Workplace happiness tangible, says psychologist
Encryption is no longer a requirement but a proactive business choice, as proliferation of data grows, found study
North Korean hacking group accused of sophisticated campaign against global Chinese government interests
Remote work is worsening an already bad situation regarding the management of wireless devices
Europol details Covid-rated cyber-crime operations; Interpol warns of ransomware attacks on hospitals
Flaws in HP’s support assistant software could allow hackers run remote code execution attacks on Windows PCs
Eight out of 10 security decision makers think AI-supercharged attacks are inevitable, shows Darktrace survey
The INPS website was attacked while about 339,000 applications for the €600 benefits for VAT-registered and self-employed Italians were being processed
Around 3,000 systems infected daily by a newly discovered campaign to infect Microsoft SQL servers with data-stealing malware and Monero cryptomining code.
Zoom has been facing growing concerns on security and privacy, with New York’s attorney general asking the company to explain its security measures
Microsoft prompted to issue targeted notifications to healthcare organisations as Covid-stresses sector faces severe threats from cyber-criminals
Supreme Court rules that Morrisons does not face vicarious liability on data breach; Alibi doesn’t always work, says Martin Sloan of Brodies LLP
Nigeria continues to be a hotspot for this particular threat (BEC scams), with SilverTerrier growing into a sophisticated threat group
Kaspersky discovered watering hole websites targeting Asian ethnic group; preferred method for toppers in ATP Who’s Who, said CYFIRMA researchers
Wordfence discovers flaw that could grant or revoke admin rights to any registered user, another allows attacker to control website navigation
Marriott Hotels disclosed another data breach in which details of approximately 5.2 million guests were leaked
UK’s rapid response unit set up to combat misinformation about Coronavirus tackles five to ten misinformation campaigns each day
Popular video conferencing app offers huge bounty after series of hacking allegations hits the headlines.
Paper letters with printed socially-engineered messages use gift cards as lure to encourage victims to use malware-laced USBs
Orders up 23 percent year-on-year in UK; scamsters target card details and user info as more and more stay online
An unpatched flaw in iOS 13.3.1 and later could prevent VPNs from encrypting all traffic, according to security researchers, enabling hackers to snoop on private data
Western companies targetted by APT41 as it aims to help China shift its economy toward higher value products and services, including IT, Robotics, energy efficiency, electric vehicles, aerospace equipment,
Hackers have compromised WordPress-based websites of corporate sites and news blogs to plant backdoors onto victim’s systems. Compromised websites redirect victims to phishing sites.
More and more firms have started reporting repeated cyber-incidents in the past 12 months according to recent UK government figures.
Apart from cyber-criminals, even Android app developers are attempting to capitalise on the growing number of people who are turning to apps for Covid information, finds Bitdefender
Margaret Sale, a founding member of the Saving Bletchley Park campaign, member of the board of Bletchley Park Trust and trustee of The National Museum of Computing, has died aged 87.
KnowBe4 notes dismal results in phishing test; Barracuda Network notes surge in Covid-related phishing activity globally
SQL injection was the major network attack tactic of Q4 2019, with an enormous 8000 percent rise when compared to Q4 2018, says WatchGuard research
Data leak confessions increase 27 percent in 2019 from eight percent in 2018; Covid-related remote work to aggravate issue
Hackers able to capture payment data from online shoppers buying from Tupperware and affiliated sites, finds Malwarebytes
Cyber-criminals continue to ride on Covid-19 scare, with WHO remaining the prime target
TrickMo malware steals transaction authorisation codes from victims
The limited experience of developing nations in cyber-attacks force them to leverage commodity malware to advance their agendas
Concerns have been raised over recent warnings from Windows Defender that scans are not completing as expected
From computing speed to password crackers, white-hat hackers pitch in to do their bit to boost research to control Covid-19
Attackers are exploiting unpatched Windows zero day flaws; “limited targeted attacks” could leverage two unpatched remote code executive (RCE) vulnerabilities in Windows.
UK fintech company informed that its customer and employee data was safe, two days after a ransomware attack was reported
The annual data security audit of NHS organisations, due this month, has been postponed to the end of September
A flaw found last month is used by hackers to compromise and controlZyxel NAS devices under attack from Mukashi Mirai variant
While businesses are closed there will be a greater need for both physical and cyber-security professionals to both protect vital personal information in closed offices; and what about apprentices?
More than five billion records were exposed after an elasticsearch “data breach database” housing a trove of security incidents from the last seven years was left unprotected.
The 'intentionally opaque' way in which Google handles user data puts Google's compliance in doubt, Attila Tomaschek, data privacy expert at ProPrivacy tells SC Media UK.
Twitter released new content guidelines regarding Covid-19 tweets after Facebook’s AI fails to differentiate between verified content and spam
Amazon patches S3 buckets of Doxzoo after vpnMentor researchers find 343 GB trove
Cyber-criminals say they won’t attack healthcare IT systems, but security pros expect ransomware onslaught to continue - with attacks up 36% says Positive report: Avast, Twitter act to aid public.
If you receive an email that appears to be from WHO, use the following guideline before responding
Cyber-criminals use coronavirus tracking map created by Johns Hopkins University to deliver Android spyware
Is Zero Trust really achievable given the complexity in finance service organisations?
Brought to you in partnership with Forescout