Cyber Security, 74% of enterprise data breaches involved access to a privileged account
Centrify publishes the PAM in the Modern Threatscape survey. Most organizations don’t take steps to stop the abuse of privileged credentials.
The myth that the blockchain is unhackable has fallen
Technology Review: I’t confirmed by the recent “51%” cyber attacks, last one against Ethereum Classic, and by the cyber security weaknesses in the smart-contracts.
WinRAR, a 19 old flaw could let a hacker to gain full control over a victim’s computer
Check Point cyber security experts: There are gaps in management of inputs within the "unacev2.dll" library. Yoroi: If not necessary, block the ACE archives.
Cybercrime, new Gnosticplayers stolen data for sale: They come from 8 companies
This batch is really dangerous, none of the organizations involved was aware of the data breach. So, their cyber security and that of customers is at risk.
Cyber Security, macOS has a new enemy: a malware, variant of Shlayer
Carbon Black’ TAU: It’s disguised as an Adobe Flash software update, employs multiple levels of obfuscation, and is capable of privilege escalation.
Cybercrime attacks Italy with Super Mario to disguise the Ursnif malware
The banking trojan is spreaded through mails with malicious attachments. It builds a PowerShell command from a downloaded image, thanks to steganography.
WordPress has a critical vulnerability in plugin Simple Social Buttons
Cyber security expert Luka Šikić of WebARX: The flaw could allow attackers to modify the installation options. There is a patch, the plugin has to be updated ASAP.
Microsoft urges its users to stop using Internet Explorer
Chris Jackson: We’re not supporting new web standards for it. This could cause serious problems to the users’ cyber security. It has already happened recently.
Airlines, new cyber security flaw puts again passengers privacy at risk
Wandera: A vulnerability in the e-ticketing systems could expose PII to malicious hackers. Less than a month ago a major security breach affected more than 140 companies.
Weaponized emails are top APTs infection vector in today malware landscape
Yoroi-Cybaze cyber security experts: cybercrime and state-sponsored hackers use simple social engineering tricks to lure users to enable the malicious Macros.