Category: welivesecurity

This article has been indexed from WeLiveSecurity Here’s how easily your phone number could be stolen, why a successful SIM swap scam is only the beginning of your problems, and how you can avoid becoming a victim of the attack…

Read more →

This article has been indexed from WeLiveSecurity Patches to remedy the vulnerabilities should be released over the coming weeks The post Bluetooth bugs could allow attackers to impersonate devices appeared first on WeLiveSecurity Read the original article: Bluetooth bugs could…

Read more →

This article has been indexed from WeLiveSecurity You would do well to update to macOS Big Sur 11.4 post-haste The post Apple fixes macOS zero‑day bug that let malware take secret screenshots appeared first on WeLiveSecurity Read the original article:…

Read more →

This article has been indexed from WeLiveSecurity Online dating scams often follow the same script – here’s what senior citizens should watch out for and how their younger relatives can help them avoid falling victim The post Rom‑con: How romance…

Read more →

This article has been indexed from WeLiveSecurity How stalkerware puts the stalkers’ own data at risk – Watch out for FluBot – Building security into critical infrastructure The post Week in security with Tony Anscombe appeared first on WeLiveSecurity Read…

Read more →

This article has been indexed from WeLiveSecurity An all-new privacy dashboard and better location, microphone and camera controls are all aimed at curbing apps’ data-slurping habits The post Android 12 will give you more control over how much data you…

Read more →

This article has been indexed from WeLiveSecurity The attack is a reminder of growing cyberthreats to critical infrastructure while also showing why providers of essential services are ripe targets for cybercriminals The post Colonial Pipeline attack: Hacking the physical world…

Read more →

This article has been indexed from WeLiveSecurity Con artists use social media to find and target victims for various nefarious ends, including to extort relatives of missing persons The post Scams target families of missing persons, FBI warns appeared first…

Read more →

This article has been indexed from WeLiveSecurity ESET research reveals that common Android stalkerware apps are riddled with vulnerabilities that further jeopardize victims and expose the privacy and security of the snoopers themselves The post Android stalkerware threatens victims further…

Read more →

This article has been indexed from WeLiveSecurity Why FluBot is a major threat for Android users, how to avoid falling victim, and how to get rid of the malware if your device has already been compromised The post Take action…

Read more →

This article has been indexed from WeLiveSecurity Join ESET Research at RSA Conference 2021 – WhatsApp to restrict features for some users – 1 million apps rejected from the App Store last year The post Week in security with Tony…

Read more →

This article has been indexed from WeLiveSecurity The report provides unique insights into how the COVID-19 pandemic affected the data breach landscape The post Verizon’s 2021 DBIR: Phishing and ransomware threats looming ever larger appeared first on WeLiveSecurity Read the…

Read more →

This article has been indexed from WeLiveSecurity The operation was carried out against an organized group that used online trading platforms to swindle victims out of US$36 million The post European police bust major online investment fraud ring appeared first…

Read more →

This article has been indexed from WeLiveSecurity We will explore Android stalkerware, air-gapped networks and XP exploits The post ESET Research goes to RSA Conference 2021 with record number of presentations appeared first on WeLiveSecurity Read the original article: ESET…

Read more →

This article has been indexed from WeLiveSecurity Apple also claims to have foiled US$1.5 billion worth of potentially fraudulent transactions The post 1 million risky apps rejected or removed from Apple’s App Store in 2020 appeared first on WeLiveSecurity Read…

Read more →

Your account won’t be deleted, but here’s what you may want to be aware of if not even repeated reminders to accept the new policy do the trick The post WhatsApp will limit features for users who don’t accept new…

Read more →

Ousaban banking trojan targeting Brazil – How to help your kids use safe passwords – DDoS attack takes Belgian government websites offline The post Week in security with Tony Anscombe appeared first on WeLiveSecurity Read the original article: Week in…

Read more →

How witches, wizards and superheroes can help your kids stay safe from cyber-villains, plus other parenting hacks to encourage your children to use secure passwords The post Fantastic passwords and where your children can find them appeared first on WeLiveSecurity…

Read more →

Millions of Brits could be at risk of cyberattacks due to poor default passwords and a lack of firmware updates The post Popular routers found vulnerable to hacker attacks appeared first on WeLiveSecurity Read the original article: Popular routers found…

Read more →

Another in our occasional series demystifying Latin American banking trojans The post Ousaban: Private photo collection hidden in a CABinet appeared first on WeLiveSecurity Read the original article: Ousaban: Private photo collection hidden in a CABinet

Read more →

The attack overwhelmed the systems of a Belgian ISP, leading to widespread service outages and disruptions The post DDoS attack knocks Belgian government websites offline appeared first on WeLiveSecurity Read the original article: DDoS attack knocks Belgian government websites offline

Read more →

The Patch Tuesday security update due in July should hammer the last nail in the coffin of Adobe Flash Player The post Microsoft will soon remove Flash Player from Windows 10 devices appeared first on WeLiveSecurity Read the original article:…

Read more →

Read the original article: INTERPOL aims to deal a blow to digital piracy The agency’s new initiative will also warn about the high cost of the free lunch – the increased risk of malware exposure The post INTERPOL aims to…

Read more →

Read the original article: Week in security with Tony Anscombe Governments as cyber-targets – FBI and Have I Been Pwned team up to notify Emotet victims – Mac users urged to plug a serious security hole The post Week in…

Read more →

Read the original article: Prime targets: Governments shouldn’t go it alone on cybersecurity A year into the pandemic, ESET reveals new research into activities of the LuckyMouse APT group and considers how governments can rise to the cybersecurity challenges of…

Read more →

Read the original article: FBI teams up with ‘Have I Been Pwned’ to alert Emotet victims The data breach notification site now allows you to check if your login credentials may have been compromised by Emotet The post FBI teams…

Read more →

Read the original article: Apple patches severe macOS security flaw Mac users are being urged to update to macOS Big Sur 11.3 as at least one threat group is exploiting the zero-day bug to sneak past the operating system’s built-in…

Read more →

Read the original article: 4 common ways scammers use celebrity names to lure victims All that glitters is not gold – look out for fake celebrity endorsements and other con jobs that aren’t going out of fashion any time soon…

Read more →

Read the original article: Instagram rolls out new features to help prevent cyberbullying The social media platform is stepping up efforts to help stomp out harassment and other abusive behavior The post Instagram rolls out new features to help prevent…

Read more →

Read the original article: Week in security with Tony Anscombe WhatsApp Pink is not an update – Security holes in Apple’s AirDrop – New zero-day plugged in Chrome The post Week in security with Tony Anscombe appeared first on WeLiveSecurity…

Read more →

Read the original article: AirDrop flaws could leak phone numbers, email addresses You can only stay safe by disabling AirDrop discovery in the system settings of your Apple device, a study says The post AirDrop flaws could leak phone numbers,…

Read more →

Read the original article: WhatsApp Pink: Watch out for this fake update The malware sends automated replies to messages on WhatsApp and other major chat apps The post WhatsApp Pink: Watch out for this fake update appeared first on WeLiveSecurity…

Read more →

Read the original article: Google rushes out fix for zero‑day vulnerability in Chrome The update patches a total of seven security flaws in the desktop versions of the popular web browser The post Google rushes out fix for zero‑day vulnerability…

Read more →

Read the original article: WhatsApp in pink? Watch out for this fake update The malware sends automated replies to messages on WhatsApp and other major chat apps The post WhatsApp in pink? Watch out for this fake update appeared first…

Read more →

Read the original article: Google’s Project Zero to wait longer before disclosing bug details The 30-day grace period is designed to speed up the rollout and adoption of patches The post Google’s Project Zero to wait longer before disclosing bug…

Read more →

Read the original article: Spring cleaning? Don’t forget about your digital footprint Here are some quick and easy tips to help you clean up your cyber-clutter and keep your digital footprint tidy The post Spring cleaning? Don’t forget about your…

Read more →

Read the original article: Week in security with Tony Anscombe FBI cleans up compromised Exchange servers – Data of Clubhouse users scraped and posted online – WhatsApp bug alert The post Week in security with Tony Anscombe appeared first on…

Read more →

Read the original article: One in six people use pet’s name as password Other common and easily hackable password choices include the names of relatives and sports teams, a UK study reveals The post One in six people use pet’s…

Read more →

Read the original article: FBI removes web shells from compromised Exchange servers Authorities step in to thwart attacks leveraging the recently-disclosed Microsoft Exchange Server vulnerabilities The post FBI removes web shells from compromised Exchange servers appeared first on WeLiveSecurity Read…

Read more →

Read the original article: WhatsApp flaw lets anyone lock you out of your account An attacker can lock you out of the app using just your phone number and without requiring any action on your part The post WhatsApp flaw…

Read more →

Read the original article: Clubhouse in the spotlight after user records posted online Reports of another trove of scraped user data add to the recent woes of popular social media platforms The post Clubhouse in the spotlight after user records…

Read more →

Read the original article: Data from 500 million LinkedIn accounts put up for sale The treasure trove of data reportedly includes users’ LinkedIn IDs, full names, email addresses, phone numbers and workplace information The post Data from 500 million LinkedIn…

Read more →

Read the original article: Week in security with Tony Anscombe Janeleiro banking trojan takes aim at Brazil – Lazarus deploys Vyveva backdoor in South Africa – The long shelf life of leaked data The post Week in security with Tony…

Read more →

Read the original article: (Are you) afreight of the dark? Watch out for Vyveva, new Lazarus backdoor ESET researchers discover a new Lazarus backdoor deployed against a freight logistics firm in South Africa The post (Are you) afreight of the…

Read more →

Read the original article: Does data stolen in a data breach expire? Some personal information just doesn’t age – here’s what the Facebook data leak may mean for you The post Does data stolen in a data breach expire? appeared…

Read more →

Read the original article: Supply‑chain attacks: When trust goes wrong, try hope? How can organizations tackle the growing menace of attacks that shake trust in software? The post Supply‑chain attacks: When trust goes wrong, try hope? appeared first on WeLiveSecurity…

Read more →

Read the original article: $38 million worth of gift cards stolen and sold on dark web Easy to redeem and hard to trace, gift cards remain a hot commodity in the criminal underground The post $38 million worth of gift…

Read more →

Read the original article: Janeleiro, the time traveler: A new old banking trojan in Brazil ESET Research uncovers a new threat that targets organizations operating in various sectors in Brazil The post Janeleiro, the time traveler: A new old banking…

Read more →

Read the original article: Week in security with Tony Anscombe PHP source code briefly backdoored – Prevent data loss before it’s too late – The perils of owning a smart dishwasher The post Week in security with Tony Anscombe appeared…

Read more →

Read the original article: Is your dishwasher trying to kill you? Does every device in your home really need to be connected to the internet? And could your smart appliance be turned against you? The post Is your dishwasher trying…

Read more →

Read the original article: Are you prepared to prevent data loss? From losing cherished memories to missing deadlines, the impact of not having backups when a data disaster strikes can hardly be overstated The post Are you prepared to prevent…

Read more →

Read the original article: Backdoor added to PHP source code in Git server breach Had the incident gone unnoticed, the attackers could have taken over websites using the tainted code The post Backdoor added to PHP source code in Git…

Read more →

Read the original article: Apple rushes to patch zero‑day flaw in iOS, iPadOS The bug is under active exploitation by unknown attackers and affects a wide range of devices, including iPhones, iPads and Apple Watches The post Apple rushes to…

Read more →

Read the original article: Week in security with Tony Anscombe Security and your right to repair – Scams offer fake COVID-19 vaccines and ask for Bitcoin – Jail time for a disgruntled IT contractor The post Week in security with…

Read more →

Read the original article: Warning issued over scams touting fake COVID‑19 vaccines, asking for Bitcoin Neither traditional money nor cryptocurrency buys you happiness, or a genuine COVID-19 vaccine for that matter The post Warning issued over scams touting fake COVID‑19…

Read more →

Read the original article: Vengeful IT worker gets jail time for deleting company’s Microsoft user accounts The company was left to deal with three months’ worth of IT problems The post Vengeful IT worker gets jail time for deleting company’s…

Read more →

Read the original article: When repairing things you own may make you an outlaw How do you balance the right to repair with the requirement to remain secure? The post When repairing things you own may make you an outlaw…

Read more →

Read the original article: Almost $2 billion lost to BEC scams in 2020 Nearly half of reported cybercrime losses in 2020 were the result of BEC fraud, according to an FBI report The post Almost $2 billion lost to BEC…

Read more →

Read the original article: 5 reasons why (not only) financial companies struggle with cybersecurity Why do many organizations have a hard time keeping up with the evolving threat landscape and effectively managing their cyber-risks? The post 5 reasons why (not…

Read more →

Read the original article: Trust your surveillance? Why hacked cameras are very bad When a breach captures a part of us that is unchangeable, does it mean that we have allowed technology to pry too deeply into our lives? The…

Read more →

Read the original article: 7 steps to staying safe and secure on Twitter Follow these easy steps to prevent your Twitter account from being hacked and to remain safe while tweeting The post 7 steps to staying safe and secure…

Read more →

Read the original article: Week in security with Tony Anscombe A banking trojan masquerades as Clubhouse for Android – The implications of the Verkada breach – A zero-day patched in Chrome The post Week in security with Tony Anscombe appeared…

Read more →

Read the original article: Beware Android trojan posing as Clubhouse app The malware can grab login credentials for more than 450 apps and bypass SMS-based two-factor authentication The post Beware Android trojan posing as Clubhouse app appeared first on WeLiveSecurity…

Read more →

Read the original article: FBI: Cybercrime losses topped US$4.2 billion in 2020 The Bureau received over 28,000 reports of COVID-19-themed scams last year The post FBI: Cybercrime losses topped US$4.2 billion in 2020 appeared first on WeLiveSecurity   Become a…

Read more →

Read the original article: Google fixes Chrome zero‑day bug exploited in the wild The latest update patches a total of five vulnerabilities affecting the browser’s desktop versions The post Google fixes Chrome zero‑day bug exploited in the wild appeared first…

Read more →

Read the original article: PayPal fraud: What merchants should know From overpayment to shipping scams, what are some of the most common threats that merchants using PayPal should watch out for? The post PayPal fraud: What merchants should know appeared…

Read more →

Read the original article: Week in security with Tony Anscombe ESET research into exploitation of Microsoft Exchange flaws – How smart sex toys may expose your privacy – E-health versus your personal data The post Week in security with Tony…

Read more →

Read the original article: Sex in the digital era: How secure are smart sex toys? ESET researchers investigate what could possibly go wrong when you connect your bedroom to the internet of things The post Sex in the digital era:…

Read more →

Read the original article: Online health security – when ‘opt out’ isn’t an option What happens when you try to opt out of e-health to avoid issues in the event of a breach? The post Online health security – when…

Read more →

Read the original article: Exchange servers under siege from at least 10 APT groups ESET Research has found LuckyMouse, Tick, Winnti Group, and Calypso, among others, are likely using the recent Microsoft Exchange vulnerabilities to compromise email servers all around…

Read more →

Read the original article: WhatsApp may soon roll out encrypted chat backups While chats are end-to-end encrypted, their backups are not – this may change soon The post WhatsApp may soon roll out encrypted chat backups appeared first on WeLiveSecurity…

Read more →

Read the original article: Going dark: Service disruptions at stock exchanges and brokerages Are you a bull or a bear? If you can’t access your data and money, do your sentiments about the market still matter? The post Going dark:…

Read more →

Read the original article: Women in cybersecurity: Gender gap narrows but not enough The number of women joining the ranks of cybersecurity practitioners is steadily increasing, but a lot still needs to be done to close the gap The post…

Read more →

Read the original article: How ESET’s work on SafetyNet® helps protect children online For over a decade, ESET and the San Diego Police Foundation have been working together to help keep children safe from online threats The post How ESET’s…

Read more →

Read the original article: Week in security with Tony Anscombe Four zero-days patched in Microsoft Exchange Server – A tale about an unsophisticated criminal – Web trackers in a password manager app The post Week in security with Tony Anscombe…

Read more →

Read the original article: Cybersecurity risks and challenges facing the financial industry A primer on various threats looming over financial companies and the steps that these organizations can take to counter them The post Cybersecurity risks and challenges facing the…

Read more →

Read the original article: Microsoft rushes out fixes for four zero‑day flaws in Exchange Server At least one vulnerability is being exploited by multiple cyberespionage groups to attacks targets mainly in the US, per ESET telemetry The post Microsoft rushes…

Read more →

Read the original article: Not all cybercriminals are sophisticated Some perpetrators of online crime and fraud don’t use advanced methods to profit at the expense of unsuspecting victims and to avoid getting caught The post Not all cybercriminals are sophisticated…

Read more →

Read the original article: Popular password manager in the spotlight over web trackers While the trackers in LastPass’ Android app don’t collect any personal data, the news may not sit well with some privacy-minded users The post Popular password manager…

Read more →

Read the original article: Championing worthy causes: How ESET gives a helping hand A snapshot of some of the ways ESET makes an impact supporting the well-being of people, communities and the environment The post Championing worthy causes: How ESET…

Read more →

Read the original article: Safeguarding children against cyberbullying in the age of COVID‑19 As screen time has increased, so has the risk of cyberbullying. What you can do to help protect your children from online harassment? The post Safeguarding children…

Read more →

Read the original article: Oxford University COVID‑19 lab hacked Neither clinical research into the coronavirus nor any patient data were affected by the incident The post Oxford University COVID‑19 lab hacked appeared first on WeLiveSecurity   Become a supporter of…

Read more →

Read the original article: Week in security with Tony Anscombe Privacy bug in Brave browser – Clubhouse audio streamed to external website – Protecting children from cyberbullying in COVID-19 era The post Week in security with Tony Anscombe appeared first…

Read more →

Read the original article: Facebook ramps up fight against child abuse content Two new tools will warn users about the risks of searching for and sharing content that exploits children, including the potential legal consequences of doing so The post…

Read more →

Read the original article: Google’s Password Checkup tool rolling out to Android devices People who use devices running Android 9 or newer will be alerted if their login credentials have been stolen The post Google’s Password Checkup tool rolling out…

Read more →

Read the original article: Clubhouse chats streamed to third‑party website The incident raises concerns about the privacy and security of conversations taking place on the platform The post Clubhouse chats streamed to third‑party website appeared first on WeLiveSecurity   Become…

Read more →

Read the original article: Brave browser’s Tor mode exposed users’ dark web activity A bug in the ad blocking component of Brave’s Tor feature caused the browser to leak users’ DNS queries The post Brave browser’s Tor mode exposed users’…

Read more →

Read the original article: TDoS attacks could cost lives, warns FBI Both hacktivists and extortionists have used telephony denial-of-service attacks as a way to further their goals The post TDoS attacks could cost lives, warns FBI appeared first on WeLiveSecurity…

Read more →

Read the original article: Week in security with Tony Anscombe Avoid COVID-19 vaccine fraud and hoaxes – Romance scams cause record-high losses – Exaramel in the spotlight after attacks in France The post Week in security with Tony Anscombe appeared…

Read more →

Read the original article: Malware authors already taking aim at Apple M1 Macs The first instance of malicious code native to Apple Silicon M1 Macs emerged a month after the release of devices equipped with the company’s in-house CPUs The…

Read more →

Read the original article: Record‑high number of vulnerabilities reported in 2020 High-severity and critical bugs disclosed in 2020 outnumber the sum total of vulnerabilities reported 10 years prior The post Record‑high number of vulnerabilities reported in 2020 appeared first on…

Read more →

Read the original article: Beware of COVID‑19 vaccine scams and misinformation The vaccination push provides a vital shot in the arm for the world’s battle against the pandemic, but it’s also a topic ripe for exploitation by fraudsters and purveyors…

Read more →

Read the original article: Romance scams in 2020: Breaking hearts, wallets – and records As dating apps experience a boom amid COVID-19, losses to romance scams soar too The post Romance scams in 2020: Breaking hearts, wallets – and records…

Read more →

Read the original article: Attacks targeting IT firms stir concern, controversy The Exaramel backdoor, discovered by ESET in 2018, resurfaces in a campaign hitting companies that use an outdated version of a popular IT monitoring tool The post Attacks targeting…

Read more →

Read the original article: Record‑breaking number of vulnerabilities reported in 2020 High-severity and critical bugs disclosed in 2020 outnumber the sum total of vulnerabilities reported 10 years prior The post Record‑breaking number of vulnerabilities reported in 2020 appeared first on…

Read more →

Read the original article: Fifty shades of vulnerable: How to play it safe with your smart sex toy While you’re living out your fantasies, your internet-enabled sex toy may be setting you up for a privacy nightmare The post Fifty…

Read more →

Read the original article: Week in security with Tony Anscombe ESET’s Q4 2020 threat report is out – How smart sex toys can ruin your privacy – Protecting water supply systems The post Week in security with Tony Anscombe appeared…

Read more →

Read the original article: Protecting the water supply – hacker edition What can municipalities do to better protect their water supply systems? The post Protecting the water supply – hacker edition appeared first on WeLiveSecurity   Become a supporter of…

Read more →

Read the original article: Microsoft patches actively exploited Windows kernel flaw This month’s relatively humble bundle of security updates fixes 56 vulnerabilities, including a zero-day bug and 11 flaws rated as critical The post Microsoft patches actively exploited Windows kernel…

Read more →

Read the original article: Hacker attempts to poison Florida city’s water supply While the incursion was thwarted in time, cyberattacks targeting critical infrastructure are a major cause for concern The post Hacker attempts to poison Florida city’s water supply appeared…

Read more →