Security flaw allows bypassing PIN verification on Visa contactless payments
The vulnerability could allow criminals to rack up fraudulent charges on the cards without needing to know the PINs
Archives - August 2020
DDoS extortion campaign targets financial firms, retailers
The extortionists attempt to scare the targets into paying by claiming to represent some of the world’s most notorious APT groups
New Chrome, Firefox versions fix security bugs, bring productivity features
Chrome gets a new way of managing tabs while Firefox now features a new add-ons blocklist
FBI, CISA warn of spike in vishing attacks
Cybercriminals take aim at teleworkers, setting up malicious duplicates of companies' internal VPN login pages
Cyber attacks: Several Canadian government services disrupted
Several services, including the national revenue agency, had to be shut down following a series of credential-stuffing attacks
How to secure your TikTok account
From keeping your account safe to curating who can view your liked content, we look at how you can increase your security and privacy on TikTok
Grandoreiro banking trojan impersonates Spain’s tax agency
Beware the tax bogeyman – there are tax scams aplenty
How to prepare and protect your digital legacy
It's never too soon to plan for what will happen to your digital presence after you pass away
Ritz London clients scammed after apparent data breach
Armed with personal data stolen from the hotel's dining reservation system, fraudsters trick guests into handing over their credit card details
Attack of the Instagram clones
Could your social media account be spoofed, why would anybody do it, and what can you do to avoid having a doppelgänger?
Google will test new feature in Chrome to curb phishing
The web browser will only display domain names as a way to help people recognize impostor websites
Mekotio: These aren’t the security updates you’re looking for…
Another in our occasional series demystifying Latin American banking trojans
What is the cost of a data breach?
The price tag is higher if the incident exposed customer data or was the result of a malicious attack, an annual IBM study finds
Twitter working to fix issue with 2FA feature
An apparent glitch is preventing a number of users from signing in to their accounts
Black Hat 2020: Fixing voting issues – boiling the ocean?
With the big voting day rapidly approaching, can the security of the election still be shored up? If so, how?
Stadeo: Deobfuscating Stantinko and more
We introduce Stadeo – a set of scripts that can help fellow threat researchers and reverse engineers to deobfuscate the code of Stantinko and other malware
Small and medium‑sized businesses: Big targets for ransomware attacks
Why are SMBs a target for ransomware-wielding gangs and what can they do to protect themselves against cyber-extortion?
Beyond KrØØk: Even more Wi‑Fi chips vulnerable to eavesdropping
At Black Hat USA 2020, ESET researchers delved into details about the KrØØk vulnerability in Wi-Fi chips and revealed that similar bugs affect more chip brands than previously thought
Blackbaud data breach: What you should know
Here’s what to be aware of if your personal data was compromised in the breach at the cloud software provider
NSA shares advice on how to limit location tracking
The intelligence agency warns of location tracking risks and offers tips for how to reduce the amount of data shared