A seemingly sharp drop in the number of compromised Cisco IOS XE devices visible on the Internet led to a flurry of speculation over the weekend — but it turns out the malicious implants were just hiding.
| | | LATEST SECURITY NEWS & COMMENTARY | | Cyberattackers Alter Implant on 30K Compromised Cisco IOS XE Devices A seemingly sharp drop in the number of compromised Cisco IOS XE devices visible on the Internet led to a flurry of speculation over the weekend — but it turns out the malicious implants were just hiding. 'Log in with...' Feature Allows Full Online Account Takeover for Millions Hundreds of millions of users of Grammarly, Vidio, and the Indonesian e-commerce giant Bukalapak are at risk for financial fraud and credential theft due to OAuth misfires -- and other online services likely have the same problems. Valve's 2FA Mandate for Game Developers Shows SMS Stickiness Despite warnings that sending one-time passwords via text messages is a flawed security measure, companies continue to roll out the approach, especially in consumer-facing applications. Ragnar Locker Ransomware Boss Arrested in Paris Cops track down ransomware developer and seize Ragnar Locker infrastructure and data-leak site, Europol says. Malicious Apps Spoof Israeli Attack Detectors: Conflict Goes Mobile A spoofed version of an Israeli rocket-attack alerting app is targeting Android devices, in a campaign that shows how cyber-espionage attacks are shifting to individual, everyday citizens. Freelance Market Flooded With North Korean IT Actors Organizations should be careful that the workers they hire on a freelance and temporary basis are not operatives working to funnel money to North Korea's WMD program, US DOJ says. Telling Small Businesses to Buy Cyber Insurance Isn't Enough To protect themselves from threats, companies also need proactive cybersecurity. City of Philadelphia Releases Cyber-Breach Notice The investigation is ongoing, and the city will contact those who may have potentially been affected by the breach, it said. (Sponsored Article) The Silent Threat of APIs: What the New Data Reveals About Unknown Risk The rapid growth of APIs creates a widening attack surface and increasing unknown cybersecurity risks. MORE NEWS / MORE COMMENTARY | | |
|
Dark Reading Daily
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA
| | To opt-out of any future Dark Reading Daily Newsletter emails, please respond here. | | Thoughts about this newsletter? Give us feedback. |
Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: | | If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. | | We take your privacy very seriously. Please review our Privacy Statement. |
|
| |
