Collaborate Disseminate
The Office of Australian Information Commissioner (OAIC) filed a lawsuit alleging that Facebook violated the privacy of over 300,000 of its Australian users. On March 9, OAIC announced that it had submitted court documents against Facebook. In those ma… Continue reading Facebook Sued by OAIC for Allegedly Violating Over 300K Aussies’ Privacy
Researchers observed digital attackers employing expired security certificates as a disguise to distribute the Buerak downloader and Mokes malware. Kaspersky Lab learned of a new attack method in which malicious actors leveraged infected websites to wa… Continue reading Expired Certificates Used as Disguise to Spread Buerak, Mokes Malware
The most recent National Institute of Standards and Technology (NIST) guidelines have been updated for passwords in section 800-63B. The document no longer recommends combinations of capital letters, lower case letters, numbers and special characters. … Continue reading The War of Passwords: Compliance vs NIST
Non-profit certificate authority (CA) Let’s Encrypt announced it will revoke more than three million digital certificates due to a software bug. On March 3, Let’s Encrypt revealed its plan to revoke 3,048,289 currently-valid certificates. T… Continue reading Let’s Encrypt Says It Will Revoke 3M Certificates Due to Software Bug
Security researchers discovered a new ransomware family called “PwndLocker” targeting municipalities and enterprise networks. Bleeping Computer learned that PwndLocker has been active since late 2019 and has targeted a variety of U.S. citie… Continue reading PwndLocker Ransomware Targeting Municipalities, Enterprise Networks
You have likely heard of the General Data Protection Regulation (GDPR), and you probably refer to this standard whenever the topic of privacy and data processing arises. But what about outside of the EU? The Office of the Privacy Commissioner of Canada… Continue reading What Is PIPEDA? And How Does It Protect You and Your Privacy?
Digital attackers are sending around love-themed malicious emails in an attempt to infect recipients with the Nemty ransomware. If you’ve been kicking around in the world of IT security for more years than you’d like to admit, then you̵… Continue reading Beware secret lovers spreading Nemty ransomware
An Israeli marketing company exposed more than 140GB of data by mishandling the credentials for an Elasticsearch database. A San Diego-based DevOps engineer who uses the Twitter handle 0m3n detected the disclosure after they grew tired of receiving tex… Continue reading More Than 140GB of Data Exposed by Israeli Marketing Company
Scammers disguised two domains as a content delivery network (CDN) in an attempt to quietly target visitors with a credit card skimmer. Malwarebytes noticed something suspicious within the website code of a Parisian boutique store. At first, the script… Continue reading Scammers Disguise Two Domains as CDN to Cloak Credit Card Skimmer
Security researchers discovered an attack campaign that abused fears surrounding the global coronavirus outbreak to deliver the Remcos RAT. Yoroi Security detected the attack campaign when its threat intelligence activities uncovered a suspicious artif… Continue reading Attack Campaign Leveraged Coronavirus Theme to Deliver Remcos RAT