News

Vietnamese hackers began targeting Chinese government officials at the heart of the coronavirus outbreak in the early days of 2020, when the threat of pandemic had barely registered elsewhere in the world, according to findings by cybersecurity firm FireEye Inc. The attacks were going on as early as January 6 and continued through April, said Ben Read, a senior manager for cyber-espionage in the firm’s threat intelligence unit. The campaign of spearphishing and malware fit...

 Hackers taking part in HackerOne's first ever virtual live hacking event donated $5K in bug bounties to the World Health Organization's COVID-19 Solidarity Fund. The generous gesture was part of HackerOne's Hack for Good initiative, which invites hackers to hand over what they earn from companies by discovering bugs in their products and systems to charitable causes.  HackerOne's 13-day virtual hacking event attracted 50 hackers from 13 countries. The event had been scheduled to take...

Attackers are sending convincing emails that ultimately steal victims’ Skype credentials. Remote workers are being warned of a new phishing campaign targeting their Skype passwords. The phishing emails look “eerily similar” to a legitimate Skype notification alert, according to a report released by Cofense on Thursday. Emails indicate users have 13 pending Skype notifications that can be checked by clicking a “Review” button. Source: Threatpost

UK hardware store Robert Dyas has revealed that card-skimming malware on the chain's e-commerce website has led to the theft of customer financial data. For 23 days, starting on March 7 and ending March 30, a card skimmer was operational on the Robert Dyas' website, according to an email sent to customers and obtained by The Register. Robert Dyas provides DIY and home improvement products, gardening tools, and electricals. Customers that ordered these types of...

In a statement today, Apple said it "thoroughly investigated" a recent report about hackers exploiting three iOS vulnerabilities but "found no evidence they were used against customers." Apple's statement comes after on Wednesday, cyber-security firm ZecOps published a report detailing three iOS vulnerabilities that impacted the Apple Mail client. Source: ZD Net

A survey conducted by fintech security provider Entersekt through YouGov has found that over a third of British consumers (34 percent) distrust digital communications from banks to such an extent that they ignore actions the messages suggest they take. The survey focused on consumers’ attitudes to “paperless banking” – the means by which banks and their customers communicate and administer accounts rather than the tools they use to transact. Conducted online by YouGov in March...

Today, Cybereason announced that it will extend its award-winning endpoint protection to include mobile devices with its new platforms Cybereason Mobile and Cybereason Mobile MDR. Cybereason Mobile aims to prevent, detect and respond to security issues, shielding customers from emerging mobile threats. With Cybereason’s second new offering, Cybereason Mobile MDR provides a managed service which gives enterprises access to a team of security analysts to counter advanced mobile threats across Android and iOs devices, day...

Cybersecurity continues to be a challenge for businesses of all sizes, especially as workers are shifting to a remote workforce globally. According to recent research by Promon, the Oslo-based mobile security company which last year revealed flaws in the Home Office’s Brexit app, two-thirds of remote workers in the UK have not been given any cybersecurity training from employers in the past 12 months, while 77% say they aren’t worried about their cybersecurity while working remotely....

Banner Health Inc.'s $8.9 million deal to end claims tied to a 2016 data breach gained final approval from a federal judge in Arizona. The settlement, approved by Judge Susan Bolton of the U.S. District Court for the District of Arizona April 21, will pay up to $500 to each class member and up to $2.9 million to plaintiffs’ attorneys. The breach exposed personal information of the hospital operator’s 2.9 million patients and beneficiaries, including...

Cyber security professionals working for the World Health Organisation (WHO) have "never been busier", according to its CIO, as top officials are being targeted by constant phishing campaigns. The organisation has had to increase its security resources while it deals with the outbreak of COVID-19, the WHO's chief information officer (CIO), Bernardo Mariano, told Bloomberg. This is because cyber attacks on the organisation have significantly increased since mid-March when the coronavirus moved up to pandemic...