November 2020 - Page 2 of 5 - Cyber Security Minute

VMware Patches Vulnerabilities Exploited at Chinese Hacking Contest

Issued by: Security Week

At the 2020 Tianfu Cup International PWN Contest, which took place earlier this month in China, participants earned a total of more than $1.2 million for exploits targeting Chrome, Safari, Firefox, Adobe Reader, Docker, VMware ESXi, CentOS, the iPhone, the Samsung Galaxy S20 phone, Windows, and routers from TP-Link and Asus. The 360 ESG Vulnerability…

Vulnerabilities

Consumer behaviors and cyber risks of holiday shopping in 2020

Issued by: Help Net Security

While consumers are aware of increased risks and scams via the internet, they still plan to do more shopping online – and earlier – this holiday season, McAfee reveals. Thirty-six percent of Americans note they are hitting the digital links to give gifts and cheer this year, despite 60% feeling that cyber scams become more…

Vulnerabilities

Cisco Webex Vulnerability Allows Ghost Access to Meetings

Issued by: Security Week

Identified by IBM’s security researchers, the Webex flaws could allow attackers to join meetings as ghosts (without being seen by other participants), remain in the meeting as a ghost after being expelled, and access information on meeting attendees (names, email addresses and IP addresses). Tracked as CVE-2020-3419, the first of the issues impacts both Webex…

Malware & Threats

Russia, China ‘Cyber Threats’ Target Canada: Report

Issued by: Security Week

“The number of cyber threat actors is rising, and they are becoming more sophisticated”, the Canadian Centre for Cyber Security said. The center found that those four countries are very likely attempting to build up capacities to disrupt key Canadian infrastructure — like the electricity supply — to further their goals. The report said they…

Network Security

AWS Network Firewall: Network protection across all AWS workloads

Issued by: Help Net Security

Amazon Web Services announced the general availability of AWS Network Firewall, a new managed security service that makes it easier for customers to enable network protections across all of their AWS workloads. Customers can enable AWS Network Firewall in their desired Amazon Virtual Private Cloud (VPC) environments with just a few clicks in the AWS…

Cloud Security

Multi-cloud environments leaving businesses at risk

Issued by: Help Net Security

Businesses around the globe are facing challenges as they try to protect data stored in complex hybrid multi-cloud environments, from the growing threat of ransomware, according to a Veritas Technologies survey. Only 36% of respondents said their security has kept pace with their IT complexity, underscoring the need for greater use of data protection solutions…

Vulnerabilities

Risk professionals expect a dynamic risk environment in 2021

Issued by: Help Net Security

A majority of audit and risk professionals believe the risk environment will continue to be dynamic and unpredictable in 2021, rather than returning to more stable pre-pandemic conditions, an AuditBoard survey finds. The top risk they cited for the coming year was of “economic conditions impacting growth,” followed closely by “cybersecurity threats.” The responses also…

Malware & Threats

Explosion in digital commerce pushed fraud incentive levels sky-high

Issued by: Help Net Security

A rise in consumer digital traffic has corresponded with a rise in fraud attacks, Arkose Labs reveals. As the year progresses and more people than ever are online, historically ‘normal’ online behavioral patterns are no longer applicable and holiday levels of digital traffic continue to occur on a near daily basis. Fraudsters are exploiting old…

Software Security

macOS Big Sur 11.0.1 Patches 60 Vulnerabilities

Issued by: Security Week

macOS Big Sur 11.0 was officially launched on November 12 and on the same day Apple released its first update, version 11.0.1. The company has advised customers to update to this version — macOS Big Sur 11.0 comes preinstalled on certain Mac models — but there have been reports that the Big Sur update is…

Malware & Threats

Biotech Company Miltenyi Biotec Discloses Malware Attack

Issued by: Security Week

The Cologne, Germany-based company provides solutions for cell and therapy research, including COVID-19-related products. It has facilities in 28 countries and employs more than 3,000 people. In an official statement, Miltenyi Biotec announced that, over the past couple of weeks, it experienced malware attacks that affected some of its order processing capabilities. “During the last…