Nov 29, 2019 | Cloud Consultancy News
PhishLabs has observed an active TrickBot campaign targeting the employees of multiple organisations. Trickbot is a sophisticated successor of the Dyre Banking Trojan. It uses an intricate network of command and control servers (C2), web injects, and customized...
Nov 28, 2019 | Cloud Consultancy News
Google’s Threat Analysis Group (TAG) this week shared some data on government-backed hacking and disinformation attempts targteting its customers. Google has been alerting users of state-sponsored hacking attempts for several years and it has sent out thousands of...
Nov 27, 2019 | Cloud Consultancy News
A new strain of mobile banking trojan called Ginp has been constantly refined to collect login credentials and credit card details. Starting in early June as an SMS stealer that delivered the victim’s incoming and outgoing messages to a command and control (C2)...
Nov 26, 2019 | Cloud Consultancy News
Users of some AVG and Avast antivirus software may be prevented from upgrading to the latest version of Windows 10 due to a compatibility issue. Microsoft has blocked upgrades to both Windows 10 versions 1909 and 1903 for AVG and Avast users running version...
Nov 25, 2019 | Cloud Consultancy News
In September, California Governor Jerry Brown signed into law a new bill aimed at regulating the security of IoT devices, and it’s set to go into effect in a few short months on January 1, 2020. While the goal of the law is to better address the risks that increased...
Nov 22, 2019 | Cloud Consultancy News
A new spam campaign pretending to be a ‘Critical Microsoft Windows Update’ has been discovered that attempts to deliver the Cyborg Ransomware, but turns out to be an utter failure. In a report from Trustwave that was released today, researchers outline how...
Nov 21, 2019 | Cloud Consultancy News
The list of routers that have critical RCE bugs, that have reached end of life and that won’t get fixed has grown. D-Link has warned that more of its routers are vulnerable to critical flaws that allow remote hackers to take control of hardware and steal data. The...
Nov 20, 2019 | Cloud Consultancy News
Hackers accessed macys.com’s “Checkout” and “My Wallet” pages early last month and added malicious script to lift shoppers’ personal information, such as credit card data, then send it to a remote site. The company discovered the Oct. 7 hack on Oct. 15 when it...
Nov 19, 2019 | Cloud Consultancy News
Facebook has disclosed the existence of a severe vulnerability leading to remote code execution attacks in WhatsApp messaging software. Last week, the technology giant said in a security advisory that the WhatsApp bug, tracked as CVE-2019-11931, is a stack-based...
Nov 18, 2019 | Cloud Consultancy News
Security researchers have discovered a vulnerability in Ring doorbells that exposed the passwords for the Wi-Fi networks to which they were connected. Bitdefender said the Amazon-owned doorbell was sending owners’ Wi-Fi passwords in cleartext as the doorbell joins...
Nov 15, 2019 | Cloud Consultancy News
All six major browser vendors have plans to support DNS-over-HTTPS (or DoH), a protocol that encrypts DNS traffic and helps improve a user’s privacy on the web. The DoH protocol has been one of the year’s hot topics. It’s a protocol that, when...
Nov 14, 2019 | Cloud Consultancy News
The Equifax breach took place in 2017, but even two years later it is still regarded as one of the worst of all time. The Equifax breach happened because the firm failed to patch a web server, which is itself a very basic error. But now a class action lawsuit shows...
Nov 13, 2019 | Cloud Consultancy News
Cyber risks are the top concern among businesses of all sizes for the first time since the Travelers Companies’ survey began in 2014. Of the 1,200 business leaders who participated in the survey, 55% said they worry some or a great deal about cyber risks, ahead of...
Nov 12, 2019 | Cloud Consultancy News
There’s a significant prevalence and impact of cyberattacks that use stolen hashed administrator credentials, also referred to as Pass the Hash (PtH) attacks, within businesses today, according to a survey from One Identity. Among the survey’s most noteworthy findings...
Nov 11, 2019 | Cloud Consultancy News
While more businesses are investing in security measures like multifactor authentication (MFA), employees still have poor password habits that weaken companies’ overall security posture, according to LastPass. Given that stolen and reused credentials are linked to 80...
Nov 8, 2019 | Cloud Consultancy News
Cybercrime is continuing to mature and becoming more and more bold, shifting its focus to larger and more profitable targets as well as new technologies. Data is the key element in cybercrime, both from a crime and an investigate perspective. These key threats...
Nov 7, 2019 | Cloud Consultancy News
5G is being positioned as a “network of networks” that will encompass public and private components, licensed and unlicensed spectrum, and even expand beyond cellular, to satellite communications. In reality, 5G will only be one component of the enterprise vertical...
Nov 6, 2019 | Cloud Consultancy News
Nearly three-quarters of consumers (74%) would be likely to participate in a cybersecurity awareness or education program from their financial institution if they offered it. The survey conducted by The Harris Poll on behalf of Computer Services also found that an...
Nov 5, 2019 | Cloud Consultancy News
1 in 50 URLs are malicious, nearly one-third of phishing sites use HTTPS and Windows 7 exploits have grown 75% since January. A new Webroot report also highlights the importance of user education, as phishing lures have become more personalized as hackers use stolen...
Nov 4, 2019 | Cloud Consultancy News
For the second year in a row, the majority of employers are failing to equip their employees with the appropriate technologies, procedures and policies to ensure data security across the organization, according to Apricorn. The survey report, which polled nearly 300...
Nov 1, 2019 | Cloud Consultancy News
850,000 domains worldwide now have DMARC records, a 5x increase since 2016, according to Valimail. However, less than 17% of global DMARC records are at enforcement — meaning fake emails that appear to come from those domains are still arriving in recipients’ inboxes....