InfoSec Feed

This feed is in UTC time. If you do not see the feed please enable JavaScript.

  • Apple Safari Flaws Enable One-Click Webcam Access
    on April 6, 2020 at 6:43 pm

    The white hat hacker who discovered the vulnerabilities received a $75,000 from Apple's bug-bounty program.

  • Emotat Malware Causes Physical Damage
    on April 6, 2020 at 4:26 pm

    Microsoft is reporting that an Emotat malware infection shut down a network by causing computers to overheat and then crash. The Emotet payload was delivered and executed on the systems of Fabrikam -- a fake name Microsoft gave the victim in their case study -- five days after the employee's user credentials were exfiltrated to the attacker's command and control...

  • US Warns People that Zoom-bombing Is a Crime
    on April 6, 2020 at 4:12 pm

    Zoom-bombing, the act of highjacking Zoom video conferences by sharing pornographic and hate images among other things, might seem like an annoying practice, but law enforcement is warning people that it’s actually a crime and perpetrators might end up in prison. Ever since the COVID-19 pandemic sent people at home, the use of teleconferencing software

  • Government VPN Servers Targeted in Zero-Day Attack
    on April 6, 2020 at 3:55 pm

    The attacks are being carried out against Chinese government interests worldwide, according to Qihoo 360.

  • Mozilla Patches Two Critical Zero-Days in Firefox
    on April 6, 2020 at 3:45 pm

    The latest release of Firefox brings fixes for two Critical vulnerabilities already seen exploited in the wild.

  • Will Apple’s “microphone switch” stop your iPad getting bugged?
    on April 6, 2020 at 3:23 pm

    A microphone switch! What will they think of next?

  • Mozilla Fixes Two Firefox Critical Vulnerabilities Exploited in the Wild
    on April 6, 2020 at 3:07 pm

    The Firefox Internet browser received a critical patch from the Mozilla Foundation to fix a couple of actively exploited zero-day vulnerabilities that were endangering both regular users and institutions. Zero-day vulnerabilities in Internet browsers are dangerous because criminals and hackers can use them with great success in a wide range of criminal schemes. Regular users

  • Data Leak: Private information of 14 million Key Ring users exposed
    on April 6, 2020 at 2:13 pm

    Five misconfigured Amazon Web Services (AWS) S3 buckets revealing private data of Key Ring users were discovered by vpnMentor researchers in January. Like many similar apps, Key Ring lets users store digital copies of their loyalty cards, create a shopping list, receive weekly deals, and benefit from new loyalty programs. Some users, however, use the

  • iCyber-Security Rebrands to Become BlockAPT
    on April 6, 2020 at 2:10 pm

    iCyber-Security has announced that it has undergone a major rebrand to reflect the platform’s evolution to become one of the most advanced and intelligent cyber defence technologies available. Developed as a toolkit through years of identifying and solving businesses’ security issues globally, BlockAPT brings together automated threat intelligence, vulnerability management, device management and proactive incident response management all under the BlockAPT platform to help fight the war against cyber attackers.   Marco Essomba, Founder and CTO of BlockAPT confirms that, “The time for single The post iCyber-Security Rebrands to Become BlockAPT appeared first on IT Security Guru.

  • Why Humans Are Phishing's Weakest Link
    on April 6, 2020 at 2:00 pm

    And it's not just because they click when they shouldn't... they also leave a trail of clues and details that make them easy to spoof

  • Why Humans Will Always Be Phishing's Weakest Link
    on April 6, 2020 at 2:00 pm

    And it's not just because they click when they shouldn't... they also leave a trail of clues and details that make them easy to spoof

  • New York City Schools Ban Zoom over Security and Privacy Woes
    on April 6, 2020 at 1:46 pm

    The State of New York has decided to ban Zoom from city schools amid news of security and privacy concerns surrounding the popular videoconferencing software. “DOE staff and service providers should cease using Zoom as soon as possible,” Department of Education Chancellor (DOE) Richard Carranza said last week. The COVID-19 pandemic has forced people around

  • Cisco Announces Intent to Acquire Fluidmesh Networks
    on April 6, 2020 at 1:02 pm

    To meet the growing demand for wireless connectivity in the most challenging environments, Cisco is announcing its intent to acquire Fluidmesh Networks, a privately-held, New York-based leader in wireless backhaul systems. Fluidmesh’s leading technology will compliment Cisco’s robust industrial wireless portfolio, providing reliable and resilient wireless solutions for mission critical applications. The post Cisco Announces Intent to Acquire Fluidmesh Networks appeared first on Cisco Blogs.

  • Rights groups appeal to governments over COVID-19 surveillance
    on April 6, 2020 at 12:34 pm

    Digital and human rights groups have joined in a rare worldwide appeal to governments to respect privacy when handling the COVID-19 crisis.

  • Zoom Caught in Cybersecurity Debate — Here's Everything You Need To Know
    on April 6, 2020 at 12:22 pm

    Over the past few weeks, the use of Zoom video conferencing software has exploded ever since it emerged the platform of choice to host everything from cabinet meetings to yoga classes amidst the ongoing coronavirus outbreak and work from home became the new normal. The app has skyrocketed to 200 million daily users from an average of 10 million in December — along with a 535 percent increase

  • Hackers’ forum hacked, OGUsers database dumped (again)
    on April 6, 2020 at 11:12 am

    A rival hacking forum has yet again hacked OGUsers and doxxed its database for one and all to grab.

  • Your Security Stack is Moving: SASE is Coming.
    on April 6, 2020 at 10:30 am

    Introducing: CSO Perspectives with Rick Howard. We are just now witnessing the beginnings of a new and disruptive way that the our organization’s CxOs will deploy software defined networking (SD-WAN) and consume cybersecurity services. It is called SASE or Secure Access Service Edge (Cloud Delivered). Rick Howard, The CyberWire’s CSO, Chief Analyst and Senior Fellow will discuss how the community got here and just why it will revolutionize digital transformation in the near future. Each week, Rick will share his expertise to CyberWire Pro+ members through his new CSO Perspectives podcast. For the first 3 weeks, the entire CyberWire podcast audience will be able to listen to full episodes as they are published into the CyberWire Daily Podcast feed each Monday starting April 5, 2020.

  • Citizen Lab pokes holes in Zoom encryption
    on April 6, 2020 at 10:17 am

    Citizen Lab, a research group within the University of Toronto, has been able to drive a proverbial truck through the encryption used by video conferencing app Zoom. In a report where the group said the video platform was not suitable for sharing secrets nor government or business use, Citizen Lab found Zoom has been rolling The post Citizen Lab pokes holes in Zoom encryption appeared first on IT Security Guru.

  • 425 GB of financial companies’ data exposed
    on April 6, 2020 at 10:14 am

        Researchers at vpnMentor have shared news about a recent data leak which exposed 425 GB in sensitive financial documents. The research team, led by Noam Rotem, uncovered an open database on an app developed by Advantage Capital Funding and Argus Capital Funding. The app, which is now no longer available for download, stored The post 425 GB of financial companies’ data exposed appeared first on IT Security Guru.

  • Data breaches as files sent to wrong address in Ireland
    on April 6, 2020 at 10:13 am

      Birth certificates being sent to strangers and missing marriage certificates were among almost 400 data breaches reported at the Department of Social Protection last year. The 371 data breaches represent an increase of more than 60 percent compared with the previous year, when 226 incidents were logged, according to records obtained under freedom of The post Data breaches as files sent to wrong address in Ireland appeared first on IT Security Guru.

  • More ransomware attacks against healthcare sector, warns Interpol
    on April 6, 2020 at 10:11 am

    The Interpol has warned of a significant increase in the number of attempted ransomware attacks against hospitals and other healthcare institutions on the front lines of the fight against the Covid-19 pandemic. At this point, the ransomware appears to be spreading primarily via emails – often falsely claiming to contain information or advice regarding the The post More ransomware attacks against healthcare sector, warns Interpol appeared first on IT Security Guru.

  • VPN zero-day used by DarkHotel hackers
    on April 6, 2020 at 10:10 am

    Foreign state-sponsored hackers have launched a massive hacking operation aimed at Chinese government agencies and their employees. Attacks began last month, in March, and are believed to be related to the current coronavirus (COVID-19) outbreak. Chinese security-firm Qihoo 360, which detected the intrusions, said the hackers used a zero-day vulnerability in Sangfor SSL VPN servers, The post VPN zero-day used by DarkHotel hackers appeared first on IT Security Guru.

  • How one healthcare CISO is navigating the COVID-19 crisis
    on April 6, 2020 at 10:00 am

    Gourav Mukherjee is a managing partner at vCISO firm Immersion Security. Since January he has been acting CISO at a private equity-backed healthcare company with hundreds of locations across the US. In addition to managing security for the organization, Mukherjee now must deal with business continuity issues. “They have internal security staff but don't have the expertise and leadership above a director level and are without a CISO at the moment,” he says.Mukherjee contracted COVID-19 during a meeting in Florida. He has been in isolation and though he described the experience as akin to having flu and bronchitis at the same time, he is through the worst of it. “I think I was better equipped because I work in the security space and provide virtual services. For me to move some of the in-person meetings that I have in the last week to online wasn't a big deal.”To read this article in full, please click here

  • White House strategy paper to secure 5G envisions America leading global 5G development
    on April 6, 2020 at 10:00 am

    With curiously little fanfare, the White House released last week a six-page document called the National Strategy to Secure 5G, a blueprint that was mandated by the Secure 5G and Beyond Act. That bill, signed into law by President Trump on the same day, March 23, that the White House released its strategy paper, directed the president to release his strategy paper within 180 days of the bill's enactment.To read this article in full, please click here

  • Beyond Zoom: How Safe Are Slack and Other Collaboration Apps?
    on April 6, 2020 at 9:49 am

    COVID-19’s effect on work footprints has created an unprecedented challenge for IT and security staff. Many departments are scrambling to enable collaboration apps for all -- but without proper security they can be a big risk.

  • Unlock the power of threat intelligence with this practical guide. Get your free copy now
    on April 6, 2020 at 9:30 am

    Graham Cluley Security News is sponsored this week by the folks at Recorded Future. Thanks to the great team there for their support! At Recorded Future, we believe every security team can benefit from threat intelligence. That’s why we’ve published “The Threat Intelligence Handbook.” It’s aimed at helping security professionals realize the advantages of threat

  • Monday review – the hot 24 stories of the week
    on April 6, 2020 at 8:04 am

    From Marriott International's huge data breach to whether Houseparty has really hacked you - it's roundup time.

  • ISC StormCast for Monday, April 6th 2020
    on April 6, 2020 at 3:00 am

    New Bypass Technique or Corrupt Word Documenthttps://isc.sans.edu/forums/diary/New+Bypass+Technique+or+Corrupt+Word+Document/25984/ CitizenLab Analyzes Zoom Encryptionhttps://citizenlab.ca/2020/04/move-fast-roll-your-own-crypto-a-quick-look-at-the-confidentiality-of-zoom-meetings/https://www.sans.org/webcasts/zomg-its-zoom-114670 Mozilla Patches Critical Firefox Flawshttps://www.mozilla.org/en-US/security/advisories/mfsa2020-11/ Malicious JavaScript injected into Discordhttps://www.bleepingcomputer.com/news/security/discord-turned-into-an-account-stealer-by-updated-malware/

  • Firefox zero day in the wild: patch now!
    on April 5, 2020 at 7:21 pm

    Mozilla just pushed out an update for its Firefox browser to patch a security hole that was already being exploited in the wild.

  • Firefox Zero-Day Flaws Exploited in the Wild Get Patched
    on April 4, 2020 at 1:28 pm

    Mozilla Foundation rushes patches to fix bugs in its browser that could allow for remote code execution.

  • A rough year ahead for ransomware attacks - and how to stop them.
    on April 4, 2020 at 5:00 am

    2020 is shaping up to be a rough year. Ransomware attacks will continue to grow as cybercriminals get more sophisticated in their methods and expand their reach. Allan Liska, Senior Analyst at Recorded Future, shares their findings and predictions in a new report.  The research can be found here: 5 Ransomware Trends to Watch in 2020 The CyberWire's Research Saturday is presented by Juniper Networks. Thanks to our sponsor Enveil, closing the last gap in data security.

  • Imperva Boosts Capacity to Meet Demand in Malaysia
    on April 3, 2020 at 10:12 pm

    Imperva is enhancing support for its customers in Asia by increasing capacity at its PoP in Kuala Lumpur (KL), Malaysia. Home to hundreds of multinational companies, KL’s thriving high-tech economy and strong financial center positions it well as a global hot-spot for business. Imperva is boosting its services at its KL PoP by increasing capacity The post Imperva Boosts Capacity to Meet Demand in Malaysia appeared first on Blog.

  • Friday Squid Blogging: On Squid Communication
    on April 3, 2020 at 9:30 pm

    They can communicate using bioluminescent flashes: New research published this week in Proceedings of the National Academy of Sciences presents evidence for a previously unknown semantic-like ability in Humboldt squid. What's more, these squid can enhance the visibility of their skin patterns by using their bodies as a kind of backlight, which may allow them to convey messages of surprising...

  • Zero-Day Exploitation Increasingly Demonstrates Access to Money, Rather than Skill — Intelligence for Vulnerability Management, Part One
    on April 3, 2020 at 8:27 pm
  • Researcher Hijacks iOS, macOS Camera with Three Safari Zero-Days
    on April 3, 2020 at 8:00 pm

    A security researcher earned $75,000 for finding a whopping seven zero-days in Safari, three of which can be combined to access the camera.

  • 5 Soothing Security Products We Wish Existed
    on April 3, 2020 at 8:00 pm

    Maybe security alert fatigue wouldn't be so bad if the alerts themselves delivered less stress and more aromatherapy.

  • Self-Propagating Malware Targets Thousands of Docker Ports Per Day
    on April 3, 2020 at 7:31 pm

    A Bitcoin-mining campaign using the Kinsing malware is spreading quickly thanks to cloud-container misconfigurations.

  • Cybersecurity notes during the pandemic emergency. Twitter bots. Ransomware attack on a biotech firm. WHO updates. And how are the cyber gangs doing these days?
    on April 3, 2020 at 7:08 pm

    Geolocation in support of social distancing. Fixing vulnerabilities in a popular teleconferencing service. Twitter bots running an influence campaign against the Turkish government are taken down. A biotech firm reports a ransomware attack. More on attempts to compromise the World Health Organization. And a look at how cyber criminals are faring during the emergency. Michael Sechrist from BAH on cybercrime changes in the age of Coronavirus, guest is Admiral James Stavridis (Ret.) from Preveil on global cyber security threats and realities. For links to all of today's stories check our our CyberWire daily news brief: https://thecyberwire.com/issues/issues2020/April/CyberWire_2020_04_03.html

  • Cloud Providers, CDNs Team Up to Battle Internet Routing Attacks
    on April 3, 2020 at 5:16 pm

    A group of CDNs and cloud providers are joining in on a fight against common internet routing attacks.

  • Hacking the iOS/macOS webcam – Apple pays out $75,000 to bug hunter
    on April 3, 2020 at 5:12 pm

    A vulnerability researcher has received a bug bounty after discovering security holes in Apple’s software that could allow malicious parties to hijack an iPhone or Mac user’s camera and spy upon them. Read more in my article on the Hot for Security blog.

  • 5 things you can do today to make Zooming safer
    on April 3, 2020 at 3:46 pm

    5 things you can do to make your Zooming safer, more private and more secure...

  • Zoom Was Mining Data and Matching Users with LinkedIn Info
    on April 3, 2020 at 3:29 pm

    Zoom has disabled a feature in its web conferencing software that allowed the company to secretly gather data and match the information with LinkedIn sources, giving some users the ability to identify participants in the conference without their knowledge. Following a New York Times investigation, Zoom decided to eliminate its LinkedIn data mining entirely, citing

  • FBI Warns Education & Remote Work Platforms About Cyberattacks
    on April 3, 2020 at 3:15 pm

    The FBI expects attackers will target virtual environments as more organizations rely on them as a result of the COVID-19 pandemic.

  • Security and Privacy Implications of Zoom
    on April 3, 2020 at 3:10 pm

    Over the past few weeks, Zoom's use has exploded since it became the video conferencing platform of choice in today's COVID-19 world. (My own university, Harvard, uses it for all of its classes.) Over that same period, the company has been exposed for having both lousy privacy and lousy security. My goal here is to summarize all of the problems...

  • US Government Advises Everyone to Upgrade Google Chrome as Soon as Possible
    on April 3, 2020 at 2:28 pm

    The US Cybersecurity and Infrastructure Security Agency (CISA) is advising companies, institutions and regular users to update their Google Chrome browsers to the latest version as soon as possible. Given the dominant position of Google Chrome in the Internet browser market, it makes sense for CISA to get involved when there’s a significant risk. Google

  • Twitter reveals Mozilla Firefox bug that stores your direct messages for up to 7 days
    on April 3, 2020 at 2:18 pm

    Twitter recently warned users of a Mozilla Firefox bug that grants access to accounts’ non-public information to anyone using the device. “We recently learned that the way Mozilla Firefox stores cached data may have resulted in non-public information being inadvertently stored in the browser’s cache,” Twitter said in a statement on April 2. “This means

  • This is Not Your Father’s Ransomware
    on April 3, 2020 at 2:15 pm

    Ransomware operators are aiming for bigger targets and hitting below the belt. With doxing and extortion threats added to the mix, ransomware is evolving into something even more sinister.

  • This is Not Your Father's Ransomware
    on April 3, 2020 at 2:15 pm

    Ransomware operators are aiming for bigger targets and hitting below the belt. With doxing and extortion threats added to the mix, ransomware is evolving into something even more sinister.

  • Want to Improve Cloud Security? It Starts with Logging
    on April 3, 2020 at 2:00 pm

    Remedying the "garbage in, garbage out" problem requires an understanding of what is causing the problem in the first place.

  • Spearphishing Campaign Exploits COVID-19 To Spread Lokibot Infostealer
    on April 3, 2020 at 12:50 pm

    The attack discovered uses World Health Organization trademark to lure users with info related to coronavirus.

Feed sources:

  • https://www.schneier.com/blog/atom.xml
  • https://nakedsecurity.sophos.com/feed/
  • https://krebsonsecurity.com/feed/
  • http://feeds.feedburner.com/GoogleOnlineSecurityBlog
  • https://www.darknet.org.uk/feed/
  • https://www.darkreading.com/rss_simple.asp
  • https://www.imperva.com/blog/feed/
  • https://www.csoonline.com/index.rss
  • http://feeds.feedburner.com/TheHackersNews
  • https://taosecurity.blogspot.com/feeds/posts/default
  • https://technet.microsoft.com/en-us/security/rss/advisory
  • https://podcasts.files.bbci.co.uk/b01n7094.rss
  • https://labsblog.f-secure.com/feed/
  • https://dfirblog.wordpress.com/feed/
  • https://www.us-cert.gov/ncas/alerts.xml
  • https://threatpost.com/feed/
  • https://www.fireeye.com/blog/threat-research/_jcr_content.feed
  • https://feeds.feedburner.com/CiscoBlogThePlatform
  • http://feeds.feedburner.com/GrahamCluleysBlog
  • http://feeds.feedburner.com/TroyHunt
  • http://blogs.securiteam.com/index.php/feed
  • https://www.secureworks.com/rss?feed=blog
  • https://hotforsecurity.bitdefender.com/feed
  • http://www.itsecurityguru.org/feed/
  • https://blogs.technet.microsoft.com/msrc/feed/
  • https://blogs.technet.microsoft.com/mmpc/feed/

Have more RSS feeds to add to the list? Contact me. Thanks!