featured Archives - Page 39 of 75 - Cyber Security Minute

Digital-first lifestyle opens consumers to potential risks during tax season

Issued by: Help Net Security

Consumers have faced a lot of change over the past year with the shift to a digital-first lifestyle, and tax season with increasing risks is no exception. McAfee’s 2021 Consumer Security Mindset study revealed that while roughly 2 out of 3 Americans (63%) plan to do their taxes online in 2021, 12% of Americans will…

Vulnerabilities

Intel Paid Out $800,000 Per Year Through Bug Bounty Program

Issued by: Security Week

The chipmaker on Wednesday published its 2020 Product Security Report, which reveals that nearly half of the vulnerabilities patched last year were discovered by its own employees, and the company claims that a vast majority of the addressed issues are the direct result of its investment in product security assurance. According to Intel, 105 vulnerabilities…

Vulnerabilities

Universal Health Services Suffered $67 Million Loss Due to Ransomware Attack

Issued by: Dark Reading

A ransomware attack last fall cost Universal Health Services $67 million in pre-tax losses, the healthcare provider confirmed in an earnings report released today. Referring to it as an “information technology security incident,” UHS officials said the cyberattack forced the organization to suspend user access to several information technology applications in the US during the…

Malware & Threats

New ‘LazyScripter’ Hacking Group Targets Airlines

Issued by: Security Week

Initially identified in December 2020, the threat actor is targeting IATA and airlines, with the most recent attacks employing a phishing lure mimicking the newly introduced IATA ONE ID (Contactless Passenger Processing tool). Dated 2018, one of the earliest attacks attributed to the adversary, which Malwarebytes refers to as LazyScripter, was aimed at individuals looking…

Software Security

What Can Your Connected Car Reveal About You?

Issued by: Dark Reading

The smartphone has become the central command center for many people’s lives. A 2020 study found that the average user has 67 apps on their phone — but most people never stop to think about what data those apps contain or how well protected it is. Well, I probe for security holes for a living,…

Malware & Threats

Attackers Already Targeting Apple’s M1 Chip with Custom Malware

Issued by: Dark Reading

The latest processor for Apple’s Macs — the M1 chip — has already become a target for malware authors, who have created Mac-specific binaries targeting the ARM64 architecture used by the processors, researchers said this week. For example, one MacOS malware downloader, dubbed Silver Sparrow, has a number of interesting properties, including the use of…

Network Security

CISO Conversations: Princeton, Cal State and Ohio State CISOs Talk Higher Ed Cybersecurity

Issued by: Security Week

A few weekends ago, I went to a birthday party for a buddy of mine. The theme was “Lord of the Rings.” When I arrived, I could see that many of my friends were already there, bunched up in groups of five or six, as the host circulated among them. I said hi to the…

Cloud Security

You’ve Got Cloud Security All Wrong: Managing Identity in a Cloud World

Issued by: Dark Reading

As organizations prioritize digital transformation, they are moving services to the cloud at a rapid clip. Yet when making this shift, many companies fail to make the necessary updates to their security programs and solutions to protect the new cloud perimeter. Rather than redesigning their security infrastructure for the cloud, many organizations are simply wrapping…

Network Security

Tougher EU Privacy Rules Loom for Messenger, Zoom

Issued by: Security Week

The EU’s 27 member states approved a proposal that was stuck since 2017, with countries split between those wanting strict privacy online and others wanting to give leeway to law enforcement and advertisers. Portugal, which currently holds the EU’s rotating presidency, submitted a compromise proposal that was approved by qualified majority at a meeting in…

Vulnerabilities

Google Launches Database for Open Source Vulnerabilities

Issued by: Security Week

OSV should make it easier for the users of open source software to find out which vulnerabilities impact them. It can also help maintainers of open source software accurately identify all versions and commits impacted by a flaw across all their branches. Google OSVFor consumers, Google says OSV provides a database that can be easily…