Inside fake Interac transfer and tax refund SMS phishing
It’s tax season in Canada and scammers are using fake tax refund forms to lure victims into supplying their personal information via phishing pages
Cybersecurity
What’s the deal with session‑replay scripts?
Some aspects of online tracking go beyond just website analytics
Anti‑Malware testing needs standards, and testers need to adopt them
A closer look at Anti-Malware tests and the sometimes unreliable nature of the process.
The 5 IT security actions to take now based on 2018 Trends
Implementing the five actions described in this article can help reduce your organization's cyber risk and bolster its security defenses
Lazarus KillDisks Central American casino
The Lazarus Group gained notoriety especially after cyber-sabotage against Sony Pictures Entertainment in 2014. Fast forward to late 2017 and the group continues to deploy its malicious tools, including disk-wiping malware known as KillDisk, to attack a number of targets.
Oil & gas industry in Middle East found lagging in security
The oil and gas industry is the target of as much as one-half of all cyberattacks in the Middle East
Critical Infrastructure Interview with David Harley
WeLiveSecurity sat down with David Harley to get a better understanding of Critical Infrastructure and the role he has played in the area throughout his career.
Pirate websites expose users to more malware, study finds
The study found that the more time users spent on pirate sites the higher the likelihood that some type of malware would compromise their computers.
Employers’ best bet for appealing to security pros? Value their opinions
The report also sheds light on how not to go about attracting new hires. Vague and inaccurate job descriptions along with job postings that include insufficient qualifications were found to top the list of turnoffs for many jobseekers
New DDoS attack method breaks record again, adds extortion
DDoS mitigation service Arbor Networks has announced that an undisclosed US company has suffered an attack fueled by internet-facing Memcached servers that clocked in at 1.7 terabits per second (Tbps), beating the previous record of 1.35 Tbps.
GitHub knocked briefly offline by biggest DDoS attack ever
At its peak, inbound traffic reached a staggering 1.35 terabits per second (Tbps), outflanking the previously record-setting assault of 1 Tbps at French web hosting provider OVH in September 2016.
The rise of AI needs to be controlled, report warns
The experts urge policy-makers to work closely with technical researchers, computer scientists and the cybersecurity community to investigate, understand and prepare for possible malicious uses of AI.
Major reform of cybersecurity policies in France
This document, which is described by its authors as a “real white paper on cyber-defense”, is divided into three parts, followed by approximately 20 priority recommendations summarizing the central elements of the document.
One‑third of organizations sacrifice mobile security for business performance
Only one in seven organizations have put in place all four basic cybersecurity practices specified by Verizon – changing all default passwords, encrypting data transmitted over public networks, granting employee access on a need-to-know basis, and testing security systems regularly.
Friendly warnings left in unsecured Amazon S3 buckets which expose private data
Ethical hackers are warning businesses who use Amazon S3 cloud storage if they have left data exposed for anyone to access... by leaving "friendly warnings" on the servers.
US forms dedicated office to help avert cyberattacks on infrastructure
The vulnerability of critical infrastructure, including energy grids, to cyberattacks has been a growing concern worldwide. Many nations have been scrambling to improve their defenses vis-à-vis threats faced by services that are critical to the continuity of our daily lives.
Patch now! Microsoft fixes over 50 serious security flaws
This week saw the second Tuesday of the month, and everyone who is responsible for protecting Windows computers knows what that means: another bundle of security patches have been released by Microsoft.
Smart, Smarter… Dumbest…
While the evolution of new smartphones creates more possibilities for the user, these new devices also creates more possibilities for hackers.
World Economic Forum: Cyberthreats rising in prominence in global risk landscape
The latest survey marks a shift from optimism regarding technological risks in the previous years. The heightened levels of worry come on the back of an escalation in cybersecurity threats, which, as noted by the WEF, are growing in prevalence and in disruptive potential alike.
CES 2018 cybersecurity: Now in every single ‘whatchamacallit’
Not content anymore to just have a bed made of soft plushy stuff, now you can adjust everything about the bed, from electronically sitting up in bed to the lighting surrounding your nap: connected digital technology everywhere.