Pray.com exposed data of millions after database mess up

By Deeba Ahmed Pray.com applied lackluster security practices potentially exposing nearly 10 million users to frauds and cyberattacks, claim VpnMentor's researchers. This is a post from HackRead.com Read the original post: Pray.com exposed data of millions after database mess up...

Cyberattacks targeting health care must stop

In recent months, we’ve detected cyberattacks from three nation-state actors targeting seven prominent companies directly involved in researching vaccines and treatments for COVID-19. The targets include leading pharmaceutical companies and vaccine researchers in Canada, France, India, South Kore...

A week in security (November 9 – November 15)

Last week on Malwarebytes Labs, we reported on multiple patch releases: from Mozillas Firefox and Thunderbird to Googles Chrome. We also had a chat with our resident experts, Adam Kujawa and John Donovan, about the future of IoT cybersecurity in our latest Lock and Code podcast episode. Lastly, w...

Nation-State Attackers Actively Target COVID-19 Vaccine-Makers

Three nation-state cyberattack groups are actively attempting to hack companies involved in COVID-19 vaccine and treatment research, researchers said. Russia’s APT28 Fancy Bear, the Lazarus Group from North Korea and another North Korea-linked group dubbed Cerium are believed to be behind the...

Crippling Cyberattacks, Disinformation Top Concerns for Election Day

What keeps researchers up at night leading up to Nov. 3 isn’t election-day winners and losers. Most cite possible attacks on local infrastructure, crippling ransomware incidents and disinformation campaigns. There are also many concerned voters this year. Election-related cybersecurity attacks ha...

Halloween News Wrap: Zombie Bugs, Hospital Deaths and Other Scary Cyberattack Stories

This Halloween week, Threatpost editors discuss the spookiest security stories, including: A wave of ransomware attacks targeting a number of hospitals, sparking worries about healthcare security and the impact on patients during COVID-19 “Zombie” vulnerabilities – including Zerologon and SMBGhos...

FBI, DHS Warn Of Possible Major Ransomware Attacks On Healthcare Systems

The US Federal Bureau of Investigation FBI, Departments of Homeland Security, and Health and Human Services HHS issued a joint alert Wednesday warning of an "imminent" increase in ransomware and other cyberattacks against hospitals and healthcare providers. "Malicious cyber actors are targeting t...

2 More Hospitals Hit by Growing Wave of Ransomware Attacks, As Feds Issue Warning

UPDATE Two more hospitals were hit with ransomware attacks this week as a growing number of criminals target healthcare facilities during the COVID-19 pandemic. The troubling trend prompted federal law enforcement and health officials, on Wednesday, to sound the alarm and issue a dire warning of...

Cyberattacks Evolve as the Hospitality and Travel Industry Adapts

While the world fights against the COVID-19 pandemic, cybercriminals are out in full force with a multitude of scams designed to take advantage of the confusion and panic. COVID-19 has -- by necessity -- made us all more comfortable working, playing, and buying online. This global shift to digita...

U.S. Levies Sanctions Against Russian Research Institution Linked to Triton Malware

The Trump administration sanctioned a Russia government research institution on Friday claiming it was behind a series of cyberattacks using the highly destructive Triton malware. The Department of the Treasury’s Office of Foreign Assets Control OFAC said the Triton malware had been used in vario...

Lessons from COVID-19 Cyberattacks: Where Do We Go Next?

By Uzair Amir The COVID-19 cyberattacks have shone a harsh light on the status of web security enabling us to strengthen web security measures. This is a post from HackRead.com Read the original post: Lessons from COVID-19 Cyberattacks: Where Do We Go Next?...

Cyberattacks against machine learning systems are more common than you think

Machine learning ML is making incredible transformations in critical areas such as finance, healthcare, and defense, impacting nearly every aspect of our lives. Many businesses, eager to capitalize on advancements in ML, have not scrutinized the security of their ML systems. Today, along with...

Bug Parade: NSA Warns on Cresting China-Backed Cyberattacks

Chinese state-sponsored cyberattackers are actively compromising U.S. targets using a raft of known security vulnerabilities – with a Pulse VPN flaw claiming the dubious title of “most-favored bug” for these groups. That’s according to the National Security Agency NSA, which released a “top 25”...

Crossing the Narrow Sea

Tom Kellermann, Head of Cybersecurity Strategy at VMware and Member of the Cyber Investigations Advisory Board of the United States Secret Service. “The Greatest trick the devil ever pulled was to convince the world he didn’t exist.” -Keyser Sose Cyberspace is not a pacific environment. According...

DOJ Charges 6 Sandworm APT Members in NotPetya Cyberattacks

The Department of Justice DOJ on Monday announced charges against six Russian nationals who are allegedly tied to the Sandworm APT. The threat group is believed to have launched several high-profile cyberattacks over the past few years – including the destructive NotPetya cyberattack that targete...

US Indicts Sandworm, Russia's Most Destructive Cyberwar Unit

The Department of Justice has named and charged six men for allegedly carrying out many of the most costly cyberattacks in history...

Guide: Scale or Fail — Why MSSPs Need Multitenant Security Solutions

Managed Security Services Providers MSSPs have it rough. They have the burden of protecting their client organizations from cyberattacks, with clients from different industries, different security stacks, and different support requirements. And everything is in a constant state of flux. MSSPs are...

The Man Who Speaks Softly—and Commands a Big Cyber Army

Meet General Paul Nakasone. He reined in chaos at the NSA and taught the US military how to launch pervasive cyberattacks. And he did it all without you noticing...

Live from VMworld 2020: A Spotlight on Cybersecurity Awareness Month

Cybersecurity is no longer a buzzword. It is now a concern for businesses, government entities, consumers — for anyone who relies on the internet in our increasingly digital world. Earlier this year, the FBI reported a 400% increase in cybercrime1, a stark reality that has been exacerbated by the...

Two major flight tracking services hit by crippling cyberattacks

By Waqas It is still unclear who is behind these cyberattacks however both Flightradar24 and PlaneFinder suffered major service disruption after the attacks. This is a post from HackRead.com Read the original post: Two major flight tracking services hit by crippling cyberattacks...