Top executives of the software firm SolarWinds blamed an intern for having used a weak password for several years, exposing the company to hack. Top executives of the SolarWinds firm believe that the root cause of the recently disclosed supply chain attack is an intern that has used a weak password for several years. Initial […]

The post Intern caused ‘solarwinds123’ password leak, former SolarWinds CEO says appeared first on Security Affairs.

Read More Intern caused ‘solarwinds123’ password leak, former SolarWinds CEO says

Introduction The trojan is a sneaky impersonator that behaves like a legitimate program. It can hide in the background and steal information from the device. Trojan samples often delete, modify, block, and copy data to disrupt services provided by the …

Read More Understanding Android Malware Families (UAMF) – The Trojan: An impersonator in the background (Article 2)

Today’s podcast describes ways to avoid being victimized by fraud, and more
The post Cyber Security Today – Fraud Prevention Month starts, cyber incident costs hospital chain $67 million and problems with COVID apps first appeared on IT World Canada.

Read More Cyber Security Today – Fraud Prevention Month starts, cyber incident costs hospital chain $67 million and problems with COVID apps

Early in 2020, cyberspace attackers apparently working for the Russian government compromised a piece of widely used network management software made by a company called SolarWinds. The hack gave the attackers access to the computer networks of some 18,000 of SolarWinds’s customers, including US government agencies such as the Homeland Security Department and State Department, American nuclear research labs, government contractors, IT companies and nongovernmental agencies around the world.

It was a huge attack, with major implications for US national security. The Senate Intelligence Committee is scheduled to …

Read More National Security Risks of Late-Stage Capitalism

There’s a lot of chatter about France’s new repairability index, a story about a surgeon’s Zoom call in the middle of surgery turns heads, and the comments of SolarWinds’ CEO It’s all the tech news that’s popular right now. Welcome to Hashtag Tre…

Read More Hashtag Trending, March 1, 2021 – France’s new ‘repairability’ index; Zoom call during surgery; More tips to fight Zoom fatigue

ByteDance, the company behind TikTok, agreed to pay $92 million in a settlement to U.S. users for illegal data collection. ByteDance, the company behind TikTok, agreed to pay $92 million in a settlement to U.S. users. The settlement has yet to be approved by a federal judge. The Chinese firm was accused to have failed […]

The post ByteDance agreed to pay $92M in US privacy Settlement for TikTok data collection appeared first on Security Affairs.

Read More ByteDance agreed to pay $92M in US privacy Settlement for TikTok data collection

The National Security Agency (NSA) published a document to explain the advantages of implementing a zero-trust model. The National Security Agency (NSA) recently published a document to explain the benefits of adopting a zero-trust model, and advice to navigate the process. Modern infrastructure are complex environments that combine multiple technologies and that are exposed to […]

The post NSA embraces the Zero Trust Security Model appeared first on Security Affairs.

Read More NSA embraces the Zero Trust Security Model

During a video conference of the members of the European Council, EU leaders agreed on a new strategy aimed at boosting defense and security.  During the recent video conference of the members of the European Council (25-26 February 2021), NATO chief Jens Stoltenberg highlighted the importance to define a strategy to boost defense and security. “We […]

The post EU leaders aim at boosting defense and security, including cybersecurity appeared first on Security Affairs.

Read More EU leaders aim at boosting defense and security, including cybersecurity

The New Zealand-based cryptocurrency exchange Cryptopia suffered a new cyber heist while it is in liquidation due to a 2019 security breach. In 2019, the New Zealand-based cryptocurrency exchange Cryptopia discloses a cyber attack that took place on January 14th. At the time of the first attack, the threat actors stole approximately USD 30 million […]

The post New Zealand-based cryptocurrency exchange Cryptopia hacked again appeared first on Security Affairs.

Read More New Zealand-based cryptocurrency exchange Cryptopia hacked again

A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box. If you want to also receive for free the international press subscribe here. Bug bounty hacker earned $5,000 reporting a Stored XSS flaw in iCloud.com Experts warn of threat actors abusing […]

The post Security Affairs newsletter Round 303 appeared first on Security Affairs.

Read More Security Affairs newsletter Round 303

A critical authentication bypass vulnerability could be exploited by remote attackers to Rockwell Automation programmable logic controllers (PLCs). A critical authentication bypass vulnerability, tracked as CVE-2021-22681, can be exploited by remote attackers to compromise programmable logic controllers (PLCs) manufactured by Rockwell Automation. The vulnerability was independently reported to Rockwell by researchers at the Soonchunhyang University […]

The post Experts found a critical authentication bypass flaw in Rockwell Automation software appeared first on Security Affairs.

Read More Experts found a critical authentication bypass flaw in Rockwell Automation software

‘Hotarus Corp’ Ransomware operators hacked Ecuador’s largest private bank, Banco Pichincha, and the country’s Ministry of Finance. ​A cybercrime group called ‘Hotarus Corp’ has breached the Ecuador’s largest private bank, Banco Pichincha, and the local Ministry of Finance (the Ministerio de Economía y Finanzas de Ecuador). The group claims to have also stolen data from […]

The post Hotarus Corp gang hacked Ecuador’s Ministry of Finance and Banco Pichincha appeared first on Security Affairs.

Read More Hotarus Corp gang hacked Ecuador’s Ministry of Finance and Banco Pichincha

The telecommunications giant T-Mobile disclosed a data breach after some of its customers were apparently affected by SIM swap attacks. The telecommunications provider T-Mobile has disclosed a data breach after it became aware that some of its customers were allegedly victims of SIM swap attacks. Crooks conduct SIM swapping attacks to take control of victims’ […]

The post T-Mobile customers were hit with SIM swapping attacks appeared first on Security Affairs.

Read More T-Mobile customers were hit with SIM swapping attacks

I honestly don’t know where my time goes. I get up, have great plans for all the things I want to do then next minute, the day is gone. There’s probably some hints in the range of different things I’m speaking about this week and the book is certainly now

Read More Weekly Update 232