Tag: Info Security News

Read the original article: DIU awards $45M contract for weapon systems cybersecurity Posted by InfoSec News on May 13 https://www.fifthdomain.com/dod/2020/05/12/diu-awards-45m-contract-for-weapon-systems-cybersecurity/ By Andrew Eversden Fifth Domain May 12, 2020 The Defense Innovation Unit awarded a $45 million to a Silicon Valley-based…

Read more →

Read the original article: Thunderspy: What it is, why it’s not scary, and what to do about it Posted by InfoSec News on May 13 https://arstechnica.com/information-technology/2020/05/thunderspy-what-is-is-why-its-not-scary-and-what-to-do-about-it/ By Dan Goodin Ars Technica May 12, 2020 There’s a new attack that uses…

Read more →

Read the original article: Ransomware attack disables Texas Supreme Court’s website Posted by InfoSec News on May 13 https://www.infosecnews.org/ransomware-attack-disables-texas-supreme-courts-website/ By William Knowles @c4i Senior Editor InfoSec News May 13, 2020 On Friday, May 8th, the Office of Court Administration (OCA),…

Read more →

Read the original article: Ransomware attack disables Texas Supreme Court’s website Posted by InfoSec News on May 13 https://www.infosecnews.org/ransomware-attack-disables-texas-supreme-courts-website/ By William Knowles @c4i Senior Editor InfoSec News May 13, 2020 On Friday, May 8th, the Office of Court Administration (OCA),…

Read more →

Read the original article: DIU awards $45M contract for weapon systems cybersecurity Posted by InfoSec News on May 13 https://www.fifthdomain.com/dod/2020/05/12/diu-awards-45m-contract-for-weapon-systems-cybersecurity/ By Andrew Eversden Fifth Domain May 12, 2020 The Defense Innovation Unit awarded a $45 million to a Silicon Valley-based…

Read more →

Read the original article: Thunderspy: What it is, why it’s not scary, and what to do about it Posted by InfoSec News on May 13 https://arstechnica.com/information-technology/2020/05/thunderspy-what-is-is-why-its-not-scary-and-what-to-do-about-it/ By Dan Goodin Ars Technica May 12, 2020 There’s a new attack that uses…

Read more →

Read the original article: Putin Is Well on His Way to Stealing the Next Election Posted by InfoSec News on May 12 https://www.theatlantic.com/magazine/archive/2020/06/putin-american-democracy/610570/ By Franklin Foer The Atlantic June 2020 Issue Jack cable sat down at the desk in his…

Read more →

Read the original article: Law Firm Representing Lady Gaga, Madonna, Bruce Springsteen, Others Suffers Major Data Breach Posted by InfoSec News on May 12 https://variety.com/2020/digital/news/entertainment-law-firm-hacked-data-breach-lady-gaga-madonna-bruce-springsteen-1234602737/ By Todd Spangler, Shirley Halperin Variety.com May 9, 2020 Grubman Shire Meiselas & Sacks, a…

Read more →

Read the original article: Secrets, Surveillance and Snowden Posted by InfoSec News on May 12 https://www.washingtonpost.com/magazine/2020/05/11/2013-edward-snowden-leaked-top-secret-national-security-agency-documents-showing-how-us-was-spying-its-citizens-heres-what-happened-next/ By Barton Gellman The Washington Post May 11, 2020 The inbox logged a message as I slept. Many hours passed before I checked. Probably…

Read more →

Read the original article: She Saved Saudi Arabia. Can She Save the World From Cyberwarfare? Posted by InfoSec News on May 12 https://www.ozy.com/news-and-politics/she-saved-saudi-arabia-now-shes-protecting-the-world-from-cyber-warfare/318820/ By Nick Fouriezos OZY.com May 11, 2020 A cyberattack brought a Czech coronavirus testing laboratory to its…

Read more →

Read the original article: Most Businesses Vulnerable to Emerging Risks Not Covered by Their Cyber Insurance Posted by InfoSec News on May 12 https://www.cpomagazine.com/cyber-security/most-businesses-vulnerable-to-emerging-risks-not-covered-by-their-cyber-insurance/ By Alicia Hope CPO Magazine May 11, 2020 According to a new study by the Hanover…

Read more →

Read the original article: U.S. to Accuse China of Trying to Hack Vaccine Data, as Virus Redirects Cyberattacks Posted by InfoSec News on May 10 https://www.nytimes.com/2020/05/10/us/politics/coronavirus-china-cyber-hacking.html By David E. Sanger and Nicole Perlroth NYTimes.com May 10, 2020 WASHINGTON — The…

Read more →

Read the original article: Zoom buys Keybase — its first acquisition — as part of 90-day plan to fix security flaws Posted by InfoSec News on May 07 https://www.cnbc.com/2020/05/07/zoom-buys-keybase-in-first-deal-as-part-of-plan-to-fix-security.html By Ari Levy CNBC.com May 7, 2020 Zoom has acquired security…

Read more →

Read the original article: Cybercriminals are ‘already taking advantage’ of the COVID-19 crisis Posted by InfoSec News on May 07 https://www.healthcareitnews.com/news/cyber-criminals-are-already-taking-advantage-covid-19-crisis By Kat Jercich Healthcare IT News May 07, 2020 The COVID-19 pandemic has necessitated an increase in information collection…

Read more →

Read the original article: A discovered malware sample uses code from the NSA and a Chinese hacking group Posted by InfoSec News on May 07 https://www.cyberscoop.com/eset-shadow-brokers-nsa-winnti-china/ By Shannon Vavra CYBERSCOOP May 7, 2020 Good hackers steal, great hackers borrow. According…

Read more →

Read the original article: A Department of Defense bulletin on a ‘leaking’ sinkhole has baffled cybersecurity experts Posted by InfoSec News on May 06 https://www.cyberscoop.com/dcsa-cybersecurity-bulletin-leaking-sinkhole-electic-panda-anubis/ By Shannon Vavra CYBERSCOOP May 6, 2020 In mid-April, an obscure agency housed under the…

Read more →

Read the original article: Cybersecurity, Internet infrastructure companies hold up relatively well amid COVID-19 pandemic Posted by InfoSec News on Apr 29 https://www.zdnet.com/article/cybersecurity-internet-infrastructure-companies-hold-up-relatively-well-amid-covid-19-pandemic/ By Larry Dignan Between the Lines ZDNet April 28, 2020 Information security and technologies that speed up…

Read more →

Read the original article: How Spies Snuck Malware Into the Google Play Store — Again and Again Posted by InfoSec News on Apr 29 https://www.wired.com/story/phantomlance-google-play-malware-apt32/ By Andy Greenberg Security Wired.com 04/28/2020 GOOGLE'S PLAY STORE for Android apps has never had…

Read more →

Read the original article: Nine million logs of Brits’ road journeys spill onto the internet from password-less number-plate camera dashboard Posted by InfoSec News on Apr 29 https://www.theregister.co.uk/2020/04/28/anpr_sheffield_council/ By Gareth Corfield The Register 28 Apr 2020 Exclusive — In a…

Read more →

Read the original article: Rapid7 is acquiring DivvyCloud for $145M to beef up cloud security Posted by InfoSec News on Apr 29 https://techcrunch.com/2020/04/28/rapid7-is-acquiring-divvycloud-for-145m-to-beef-up-cloud-security/ By Ron Miller TechCrunch April 28, 2020 Rapid7 announced today after the closing bell that it will…

Read more →

Read the original article: National Security Agency releases guide to secure video conferencing Posted by InfoSec News on Apr 29 https://www.infosecnews.org/national-security-agency-releases-guide-to-secure-video-conferencing/ By William Knowles @c4i Senior Editor InfoSec News April 29, 2020 Last Friday, the National Security Agency released a…

Read more →

Read the original article: Rapid7 is acquiring DivvyCloud for $145M to beef up cloud security Posted by InfoSec News on Apr 29 https://techcrunch.com/2020/04/28/rapid7-is-acquiring-divvycloud-for-145m-to-beef-up-cloud-security/ By Ron Miller TechCrunch April 28, 2020 Rapid7 announced today after the closing bell that it will…

Read more →

Read the original article: National Security Agency releases guide to secure video conferencing Posted by InfoSec News on Apr 29 https://www.infosecnews.org/national-security-agency-releases-guide-to-secure-video-conferencing/ By William Knowles @c4i Senior Editor InfoSec News April 29, 2020 Last Friday, the National Security Agency released a…

Read more →

Read the original article: Dumpster diving to revive a crashing NetWare server? It was acceptable in the ’90s Posted by InfoSec News on Apr 28 https://www.theregister.co.uk/2020/04/27/who_me/ By Richard Speed The Register 27 Apr 2020 Who, Me? Today is Monday the…

Read more →

Read the original article: Ethical Data Privacy in a Time of COVID-19 Posted by InfoSec News on Apr 27 https://www.cpomagazine.com/data-privacy/ethical-data-privacy-in-a-time-of-covid-19/ By Pam Hrubey cpomagazine.com April 27, 2020 As COVID-19 continues to spread, the data collected from those who are infected…

Read more →

Read the original article: Hackers spoof SBA to try to compromise companies’ computers Posted by InfoSec News on Apr 27 https://www.cyberscoop.com/small-business-administration-spoof-ibm-coronavirus/ By Sean Lyngaas CYBERSCOOP April 27, 2020 With the U.S. Small Business Administration continuing to play a high-profile role…

Read more →

Read the original article: Europe’s Privacy Law Hasn’t Shown Its Teeth, Frustrating Advocates Posted by InfoSec News on Apr 27 https://www.nytimes.com/2020/04/27/technology/GDPR-privacy-law-europe.html By Adam Satariano NYTimes.com April 27, 2020 LONDON — When Europe enacted the world’s toughest online privacy law nearly…

Read more →

Read the original article: Pentagon Seeks Continuous Monitoring of Defense Contractors’ Cybersecurity Posted by InfoSec News on Apr 27 https://www.defenseone.com/technology/2020/04/pentagon-seeks-continuous-monitoring-defense-contractors-cybersecurity/164834/ By Mariam Baksh Nextgov April 23, 2020 A new monitoring system is just part of a larger plan that will…

Read more →

Read the original article: Vietnamese cyber-espionage has pivoted to Beijing’s coronavirus response Posted by InfoSec News on Apr 23 https://www.cyberscoop.com/vietnam-coronavirus-china-apt32-fireeye/ By Shannon Vavra CYBERSCOOP April 22, 2020 Hackers working on behalf of the Vietnamese government have been targeting Chinese government…

Read more →

Read the original article: New York payments startup exposed millions of credit card numbers Posted by InfoSec News on Apr 23 https://techcrunch.com/2020/04/22/paay-unencrypted-credit-card-data/ By Zack Whittaker TechCrunch April 22, 2020 A massive database storing millions of credit card transactions has been…

Read more →

Read the original article: Flaw in iPhone, iPads may have allowed hackers to steal data for years Posted by InfoSec News on Apr 23 https://www.reuters.com/article/us-usa-apple-cyber/flaw-in-iphone-ipads-may-have-allowed-hackers-to-steal-data-for-years-idUSKCN2242IK By Christopher Bing, Joseph Menn Reuters.com April 22, 2020 WASHINGTON/SAN FRANCISCO (Reuters) – Apple Inc…

Read more →

Read the original article: Temporary hospitals are rife with cybersecurity vulnerabilities Posted by InfoSec News on Apr 23 https://www.healthcareitnews.com/news/temporary-hospitals-are-rife-cybersecurity-vulnerabilities By Nathan Eddy Healthcare IT News April 22, 2020 The COVID-19 outbreak has led to a series of rapidly established medical-treatment…

Read more →

Read the original article: Ransomware is now the biggest online menace you need to worry about – here’s why Posted by InfoSec News on Apr 23 https://www.zdnet.com/article/ransomware-is-now-the-biggest-online-menace-you-need-to-worry-about/ By Danny Palmer Security ZDNet April 22, 2020 Ransomware attacks have become more…

Read more →

Read the original article: U.S. Supreme Court to consider limiting reach of computer fraud law Posted by InfoSec News on Apr 22 https://www.reuters.com/article/us-usa-court-computer/u-s-supreme-court-to-consider-limiting-reach-of-computer-fraud-law-idUSKBN2221XD By Lawrence Hurley Reuters.com April 20, 2020 WASHINGTON (Reuters) – The U.S. Supreme Court will consider whether…

Read more →

Read the original article: Hackers posed as Egyptian oil contractor in apparent spy campaign ahead of OPEC meeting Posted by InfoSec News on Apr 22 https://www.cyberscoop.com/agent-tesla-oil-company-opec-phishing/ By Jeff Stone CYBERSCOOP April 21, 2020 Hackers are trying to infect organizations throughout…

Read more →

Read the original article: Multiple Vulnerabilities in IBM Data Risk Manager Posted by InfoSec News on Apr 22 https://github.com/pedrib/PoC/blob/master/advisories/IBM/ibm_drm/ibm_drm_rce.md By Pedro Ribeiro (pedrib () gmail com | @pedrib1337) from Agile Information Security Disclosure Date: 21/04/2020 | Last Updated: 22/04/2020 Introduction…

Read more →

Read the original article: Zoom’s Security Woes Were No Secret to Business Partners Like Dropbox Posted by InfoSec News on Apr 20 https://www.nytimes.com/2020/04/20/technology/zoom-security-dropbox-hackers.html By Natasha Singer and Nicole Perlroth nytimes.com April 20, 2020 One year ago, two Australian hackers found…

Read more →

Read the original article: Hackers just tapped China’s dForce for $25 million in Ethereum exploit Posted by InfoSec News on Apr 20 https://decrypt.co/26033/dforce-lendfme-defi-hack-25m By Andrew Hayward and Robert Stevens Decrypt.co April 19, 2020 DForce, a Chinese decentralized finance protocol, today…

Read more →

Read the original article: China-linked ‘Electric Panda’ hackers seek U.S. targets, intel agency warns Posted by InfoSec News on Apr 17 https://www.politico.com/news/2020/04/16/china-electric-panda-hackers-seek-us-targets-191220 By Natasha Bertrand Politico.com 04/16/2020 Nearly 40 U.S. contracting facilities with access to classified information have been targeted…

Read more →

Read the original article: Security lapse exposed Clearview AI source code Posted by InfoSec News on Apr 17 https://techcrunch.com/2020/04/16/clearview-source-code-lapse/ By Zack Whittaker TechCrunch April 16, 2020 Since it exploded onto the scene in January after a newspaper exposé, Clearview AI…

Read more →

Read the original article: Czechs warn of imminent, large-scale cyberattacks on hospitals Posted by InfoSec News on Apr 17 https://uk.reuters.com/article/uk-czech-cyber/czechs-warn-of-imminent-large-scale-cyberattacks-on-hospitals-idUKKBN21Z00N By Jason Hovet, Christopher Bing, Jack Stubbs Reuters April 16, 2020 PRAGUE/WASHINGTON/LONDON (Reuters) – The Czech Republic warned international allies…

Read more →

Read the original article: AMA, AHA partner on COVID-19 cyber threats guidance for hospitals, physicians Posted by InfoSec News on Apr 17 https://www.healthcareitnews.com/news/ama-aha-partner-covid-19-cyber-threats-guidance-hospitals-physicians By Nathan Eddy Healthcare IT News April 16, 2020 The American Medical Association and the American Hospital…

Read more →

Read the original article: Scammers are masquerading as smart TV owners to fleece advertisers, researchers say Posted by InfoSec News on Apr 17 https://www.cyberscoop.com/scammers-masquerading-smart-tv-owners-fleece-advertisers-researchers-say/ By Jeff Stone CYBERSCOOP April 16, 2020 Scammers who have infiltrated the advertising ecosystem are using…

Read more →

Read the original article: Ethical hackers find hundreds of vulnerabilities during latest Air Force bug bounty Posted by InfoSec News on Apr 15 https://www.fifthdomain.com/2020/04/15/ethical-hackers-find-hundreds-of-vulnerabilities-during-latest-air-force-bug-bounty/ By Andrew Eversden Fifth Domain April 15, 2020 Ethical hackers found more than 460 vulnerabilities in…

Read more →

Read the original article: Penn Medicine CISO offers tips for COVID-19 cybersecurity response Posted by InfoSec News on Apr 15 https://www.healthcareitnews.com/news/penn-medicine-ciso-offers-tips-covid-19-cybersecurity-response By Mike Miliard Healthcare IT News April 15, 2020 As hospitals and health systems nationwide grapple with the fast-moving…

Read more →

Posted by InfoSec News on Apr 14 https://arstechnica.com/information-technology/2020/04/4-windows-0days-under-active-exploit-get-fixes-in-this-months-update-tuesday/ By Dan Goodin Ars Technica 4/14/2020 Microsoft has patched four actively exploited vulnerabilities that allow attackers to execute malicious code or elevate system privileges on devices that run Windows. Two of the…

Read more →

Posted by InfoSec News on Apr 10 https://www.itnews.com.au/news/shipbuilder-austal-was-hacked-with-stolen-creds-sold-on-dark-web-546165 By Ry Crozier iTnews.com.au April 8, 2020 Austal, the ASX-listed shipbuilder and defence contractor, was compromised in late 2018 by an attacker who used login credentials purchased on a dark web forum,…

Read more →

Posted by InfoSec News on Apr 10 https://www.zdnet.com/article/hackers-are-scanning-for-vulnerable-vpns-in-order-to-launch-attacks-against-remote-workers/ By Danny Palmer ZDNet.com April 8, 2020 The number of cyberattacks attempting to exploit the coronavirus outbreak for their own gain continues to rise as both cyber-criminal groups and nation-state-backed hacking operations…

Read more →

Posted by InfoSec News on Apr 08 https://www.theregister.co.uk/2020/04/07/apple_safari_camera_hack/ By Tim Anderson The Register 7 Apr 2020 Independent security researcher Ryan Pickren has revealed how a malicious website could hack Apple's Safari browser on iOS and macOS to spy on the…

Read more →

Posted by InfoSec News on Apr 10 https://thenextweb.com/hardfork/2020/04/09/travelex-paid-2-3m-in-bitcoin-to-get-its-systems-back-from-hackers/ By David Canellis The Next Web 04/09/2020 Travelex paid hackers $2.3 million worth of Bitcoin to regain access to its computer systems after a devastating ransomware attack on New Year’s Eve, reports…

Read more →

Posted by InfoSec News on Apr 08 https://www.cyberscoop.com/australia-coronavirus-hacking-criminals/ By Sean Lyngaas CYBERSCOOP April 7, 2020 As governments around the world consider their options for cracking down on scammers exploiting the coronavirus pandemic, Australia is touting a muscular approach in cyberspace.…

Read more →

Posted by InfoSec News on Apr 08 https://www.chicagotribune.com/coronavirus/ct-coronavirus-zoombombing-winnetka-schools-20200406-6uodnrw2nfajppquiolmk5wvpu-story.html By Karen Ann Cullotta Chicago Tribune April 07, 2020 Winnetka police are investigating recent reports of so-called Zoombombing incidents at two local schools, with hackers hijacking online student learning by posting pornographic…

Read more →

Posted by InfoSec News on Apr 08 https://www.chicagotribune.com/coronavirus/ct-coronavirus-zoombombing-winnetka-schools-20200406-6uodnrw2nfajppquiolmk5wvpu-story.html By Karen Ann Cullotta Chicago Tribune April 07, 2020 Winnetka police are investigating recent reports of so-called Zoombombing incidents at two local schools, with hackers hijacking online student learning by posting pornographic…

Read more →

Posted by InfoSec News on Apr 08 https://www.cyberscoop.com/australia-coronavirus-hacking-criminals/ By Sean Lyngaas CYBERSCOOP April 7, 2020 As governments around the world consider their options for cracking down on scammers exploiting the coronavirus pandemic, Australia is touting a muscular approach in cyberspace.…

Read more →

Posted by InfoSec News on Apr 08 https://www.theregister.co.uk/2020/04/07/apple_safari_camera_hack/ By Tim Anderson The Register 7 Apr 2020 Independent security researcher Ryan Pickren has revealed how a malicious website could hack Apple's Safari browser on iOS and macOS to spy on the…

Read more →

Posted by InfoSec News on Apr 06 https://www.theregister.co.uk/2020/04/06/ico_data_protection_fines_ba_marriott_hack_postponed/ By Gareth Corfield The Register 6 Apr 2020 The UK Information Commissioner's Office has yet again postponed its £280m in fines against British Airways and Marriott Hotels for data leaks. The fines…

Read more →

Posted by InfoSec News on Apr 06 https://www.cyberscoop.com/sba-data-exposure-covid-19-loan-program-small-business-administration/ By Sean Lyngaas CYBERSCOOP April 5, 2020 As the federal agency overseeing relief to small businesses during the coronavirus pandemic was preparing to ramp up its lending, some of the Small Business…

Read more →

Posted by InfoSec News on Apr 06 https://www.zdnet.com/article/russian-telco-hijacks-internet-traffic-for-google-aws-cloudflare-and-others/ By Catalin Cimpanu Zero Day ZDNet April 5, 2020 Earlier this week, traffic meant for more than 200 of the world's largest content delivery networks (CDNs) and cloud hosting providers was suspiciously…

Read more →

Posted by InfoSec News on Mar 30 By MOHAMAD ELBARDICY & Emma Bowman NPR.org March 30, 2020 Large numbers of companies are rolling out mandatory work-from-home policies to help limit the risks posed by the coronavirus outbreak. But cybersecurity experts…

Read more →

Posted by InfoSec News on Mar 30 https://www.zdnet.com/article/fbi-re-sends-alert-about-supply-chain-attacks-for-the-third-time-in-three-months/ By Catalin Cimpanu Zero Day ZDNet.com March 31, 2020 The FBI has issued an alert on Monday about state-sponsored hackers using the Kwampirs malware to attack supply chain companies and other industry…

Read more →

Posted by InfoSec News on Mar 30 https://forward.com/news/442568/anti-semites-zoom-hackers-video-swastikas-zoombombing/ By Molly Boigon Forward.com March 27, 2020 Cindy Goldberg, a school board president, was waiting for a virtual meeting to begin on Zoom Tuesday night when hackers started posting cartoon images of…

Read more →

Posted by InfoSec News on Mar 30 By MOHAMAD ELBARDICY & Emma Bowman NPR.org March 30, 2020 Large numbers of companies are rolling out mandatory work-from-home policies to help limit the risks posed by the coronavirus outbreak. But cybersecurity experts…

Read more →

Posted by InfoSec News on Mar 27 https://siliconangle.com/2020/03/26/data-allegedly-stolen-ransomware-attack-cybersecurity-insurance-provider-chubb/ BY DUNCAN RILEY SiliconAngle 03/26/2020 Cybersecurity insurance provider Chubb Group Holdings Inc. is allegedly the latest victim of a ransomware attack. Details of the attack, which came to light today, are somewhat…

Read more →

Posted by InfoSec News on Mar 27 [Moderators note: Since I didn't get any replies, I crowdsourced the following and will work to find more, but also post requests from the InfoSec community. – WK] -=- The popular Infosec R&D…

Read more →

Posted by InfoSec News on Mar 27 https://onemedical.com/blog/live-well/mental-health-self-isolation By Christine Celio One Medical Group Mar 26, 2020 As local governments and health authorities look to curb the spread of COVID-19, more and more people throughout the U.S. are being told…

Read more →

Posted by InfoSec News on Mar 25 https://www.claimsjournal.com/news/national/2020/03/24/296164.htm Claims Journal March 24, 2020 Ransomware attacks became both more frequent and more brutal in 2019, according to a new report by speciality insurer Beazley. Beazley said its Breach Response Services unit…

Read more →

Posted by InfoSec News on Mar 25 I'm sorry this is the first batch of InfoSec News for this year, and if you want off the list, I totally get it. the unsubscribe details are in the headers of each…

Read more →

Posted by InfoSec News on Mar 25 https://www.tomshardware.com/news/a-mysterious-database-exposed-200-million-americans-personal-info By Nathaniel Mott Toms Hardware 03/23/2020 Here's a strange one: CyberNews reported Friday that a Google Cloud database exposed the personal information of roughly 200 million Americans. It's not clear who owned…

Read more →

Posted by InfoSec News on Mar 25 https://arstechnica.com/information-technology/2020/03/attackers-exploit-windows-zeroday-that-can-execute-malicious-code/ By Dan Goodin Ars Technica 03/23/2020 Attackers are actively exploiting a Windows zero-day vulnerability that can execute malicious code on fully updated systems, Microsoft warned on Monday. The font-parsing remote code-execution vulnerability…

Read more →