SEARCH
All Articles
Morgan Stanley to Pay $60 Million Fine for 2016 Data Breach
Morgan Stanley has agreed to pay a $60 million fine for its repeated failures to adequately protect customer data when disposing of old equipment.
New Android Ransomware Variant Shows Constant Evolution
A new Android ransomware strain known as MalLocker.B is using new techniques to persist and evade defenses.
Cybercrime Victims Are Not Calling the Police
Ransomware, business email compromise, and social engineering are among the top threats facing organizations, but the magnitude of the problem is not well-understood, Europol said in its threat assessment report.
California Voters Asked to Amend Privacy Law
California voters will vote on Proposition 24, on whether to expand the groundbreaking privacy law that was passed just two yeras ago. Proposition 24, or the California Privacy Rights Act of 2020, builds on the California Consumer Privacy Act of 2018 which just took effect this year.
Global Privacy Control Protocol Aims to Pick Up Where Do Not Track Left Off
The new Global Privacy Control protocol is designed to let users tell websites not to sell their data.
UHS Recovering From Malware Infection
Universal Health Services says most of its network and applications are back online after a massive malware infection hit the company last week.
Visa Reports POS Malware Infected Two Hospitality Companies
Two hospitality merchants in North America were compromised by point-of-sale malware in May and June of this year, Visa said in a recent technical report.
China-Linked Hackers Found Using UEFI Rootkit
The newly discovered MosaicRegressor framework has been used by attackers linked to China to deliver a UEFI rootkit in some targets.
House Version of EARN IT Act Introduced
The EARN IT Act has now made its was into the House of Representatives, with a key change from the Senate version's stance on encryption.
ESET Identifies 11 Latin American Malware Families
There are multiple distinct banking Trojan families in Latin America, rather than one large group as has been previously believed, ESET researchers said at the Virus Bulletin 2020 conference.
GitHub Releases Integrated Code Scanning Feature
GitHub has released a new code-scanning feature for both public and private repositories that finds security flaws before they make it into a codebase.
Decipher Podcast: Larry Cashdollar
Larry Cashdollar, a senior security researcher at Akamai, joins Dennis Fisher to talk about 20 years of vulnerability research and the many different ways that things can go sideways.
Universal Health Services Network Knocked Offline
A security incident at Universal Health Services has taken the network of the large health system offline.
Framework Outlines How Companies Should Talk About Breaches
Organizations are increasingly developing incident response playbooks to plan out in advance what steps to take in case of a security breach—such as an employees accessing files without authorization, a lost computer, or a server compromised by outside attackers. A team of academics from the UK's University of Kent and University of Warwick outlined a comprehensive playbook on how organizations should communicate after a security incident.
Attackers Actively Targeting Zerologon Flaw, Microsoft Warns
The Zerologon vulnerability Microsoft patched in Windows Server last month is actively being exploited in several attacks, Microsoft warned.