The emerging threat becomes clear: criminals with no programming knowledge are now able to target any organization or person with minimal effort. And what better way to maximize the payout than to target those industries where lives immediately depend on network connected devices that can be ransomed?
CS Digest Section: Data Security
A comment period has closed on NIST's new password guidelines for federal agencies that challenge the effectiveness of traditional behaviors around authentication such as an insistence on complex passwords and scheduled resets.
Pixel tracking is a decades-old email marketing technique that relies on embedding a one-by-one pixel image, usually transparent or of the same colour of the email's background which prevents users from noticing them in most cases.
A phishing attack usually depends on two things: a perfect disguise and somewhat the ignorance of users. But not this one as hackers are now faking popular domains like Apple, Google, or eBay on their own fraudulent websites. Hackers are even able to get the little "Secure" green bar for their fraudulent websites making the attack even more sophisticated.
The hotel group, which operates Holiday Inn, Kimpton, and several other brands, has now released details on the broader scope of the security breach. "Approximately 1,200 IHG-branded franchise hotel locations in the Americas were affected," a company spokesperson tells The Verge.
Attackers are exploiting a previously undisclosed vulnerability in Microsoft Word, which security researchers say can be used to quietly install different kinds of malware -- even on fully-patched computers.
What's very important to know is that some of the patched security flaws allowed hackers to take control of your system, and this does nothing more than to emphasize how important it is to update computers as soon as possible.
Sage is yet another ransomware that has become a common threat nowadays. Similarly to Spora, it has capabilities to encrypt files offline. The malware is actively developed and currently, we are facing an outbreak of version 2.2. of this product.
Personal information for up to 100,000 taxpayers may have been compromised in a security breach of a critical online tool used to fill out student loan applications, Internal Revenue Service Commissioner John Koskinen said Thursday.
A Canadian court on Tuesday denied bail to a man accused of carrying out devastating cyber attacks on Yahoo as he awaits possible extradition to the United States to face criminal charges.