Author Archives: Elizabeth Montalbano

FBI: $3.5B Lost in 2019 to Known Cyberscams, Ransomware

Posted on February 12, 2020 by Elizabeth Montalbano

Cybercriminals double down on successful internet scams, with a focus on phishing, BEC and other defrauding schemes that have proven to work. Continue reading FBI: $3.5B Lost in 2019 to Known Cyberscams, Ransomware→

Dell Patches SupportAssist Flaw That Allows Arbitrary Code Execution

Posted on February 11, 2020 by Elizabeth Montalbano

The uncontrolled search path vulnerability allows a local user to use DLLs to escalate privileges and affects Windows PCs. Continue reading Dell Patches SupportAssist Flaw That Allows Arbitrary Code Execution→

Phishing Campaign Targets 250 Android Apps with Anubis Malware

Posted on February 7, 2020 by Elizabeth Montalbano

New attacks discovered by Cofense can perform keylogging, steal data and completely hijack a mobile device. Continue reading Phishing Campaign Targets 250 Android Apps with Anubis Malware→

Charming Kitten Uses Fake Interview Requests to Target Public Figures

Posted on February 6, 2020 by Elizabeth Montalbano

APT group poses as a former Wall Street Journal journalist to launch phishing campaigns and steal victim email account details. Continue reading Charming Kitten Uses Fake Interview Requests to Target Public Figures→

TrickBot Switches to a New Windows 10 UAC Bypass to Evade Detection

Posted on February 3, 2020 by Elizabeth Montalbano

The tricky trojan evolves yet again, remaining one of the most advanced vehicles for delivering malware. Continue reading TrickBot Switches to a New Windows 10 UAC Bypass to Evade Detection→

Microsoft Offers Rewards of Up to $20,000 in New Xbox Bug Bounty Program

Posted on January 31, 2020 by Elizabeth Montalbano

Program is the latest the tech giant has launched that pay users and security researchers to find vulnerabilities in its numerous products. Continue reading Microsoft Offers Rewards of Up to $20,000 in New Xbox Bug Bounty Program→

Facebook to Pay $550M to Settle Class Action Case Over Facial Recognition

Posted on January 30, 2020 by Elizabeth Montalbano

The settlement in a case over the social network’s Tag Suggestions feature is the latest financial blow the company has taken over its handling of user privacy. Continue reading Facebook to Pay $550M to Settle Class Action Case Over Facial Recognition→

Wawa Breach May Have Affected More Than 30 Million Customers

Posted on January 29, 2020 by Elizabeth Montalbano

Hefty collection of U.S. and international payment cards from the incident revealed in December found up for sale on dark-web marketplace Joker’s Stash. Continue reading Wawa Breach May Have Affected More Than 30 Million Customers→

LoRaWAN Encryption Keys Easy to Crack, Jeopardizing Security of IoT Networks

Posted on January 28, 2020 by Elizabeth Montalbano

New research from IOActive has found that “blindly” trusting the encryption of the widely adopted device protocol can lead to DDoS, sending of false data and other cyber attacks. Continue reading LoRaWAN Encryption Keys Easy to Crack, Jeopardizing Security of IoT Networks→

Fake Smart Factory Honeypot Highlights New Attack Threats

Posted on January 24, 2020 by Elizabeth Montalbano

The honeypot demonstrates the various security concerns plaguing vulnerable industrial control systems. Continue reading Fake Smart Factory Honeypot Highlights New Attack Threats→