Explore Newsletters from ECT News Network » View Samples | Subscribe
Welcome Guest | Sign In
ECommerceTimes.com
Researchers Track Linux Intrusions to Cryptojacking Gang
July 29, 2021
Bitdefender security researchers have uncovered a Romanian-based threat group active since at least last year targeting Linux-based machines with weak Secure Shell Protocol (SSH) credentials. The researchers discovered the group was deploying Monero mining malware used to steal cryptocurrency.
Marketers Need New Strategies To Parry Cookieless Advertising
July 29, 2021
The impending loss of third-party digital cookies will soon force the e-commerce advertising industry to shift its strategies fast. These developments are issuing a real blow to advertisers seeking to leverage third-party data. At issue now is how brands will regroup from these substantial changes to online advertising.
Outlaw Installer for Windows 11 Infected With Malware
July 27, 2021
Early adopters seeking a premature peek of Windows 11 via unauthorized channels may be in for a nasty surprise -- a dose of malware. Kaspersky Lab reports that an unofficial installer is in the wild that promises to install the next version of Microsoft's ubiquitous operating system on a user's computer -- but actually contains a malicious payload.
Salt Labs Launched To Heighten API Security Threat Awareness
July 22, 2021
Anyone with a stake in keeping ahead of cybersecurity assaults and enterprise network intrusions through API vulnerabilities can now tap into expert advisories and security reports. API security company Salt Security last week launched Salt Labs, a now-public forum for publishing research on API vulnerabilities.
DuckDuckGo Readies Feature To Strip Trackers From Email
July 21, 2021
Called Email Protection, the feature will be initially distributed through a waiting list that anyone can add their name to. Consumers chosen from the list will be able to create a personal @duck.com email address. Email sent to the @duck address will be denuded of trackers before being forwarded to a consumer's primary email address.
US, NATO Accuse China of Massive Microsoft Hack
July 20, 2021
In addition to its condemnation of China, the White House announced that the U.S. Justice Department has filed charges against four Ministry of State Security hackers allegedly engaged in a multiyear campaign targeting foreign governments and entities in key sectors, including maritime, aviation, defense, education and healthcare in a least a dozen countries.
Consumers Can Now Monetize Personal Data To Earn Passive Income
July 16, 2021
Shouldn't you get paid when businesses use your personal information gleaned from the internet? How much is your personal data posted online worth to you? Would you register your personal data so that you get paid when companies track you and use your own data to target you for ads? That is precisely what Invisibly lets you do.
Amazon Rolls Out End-to-End Encryption for Ring Video Devices Worldwide
July 14, 2021
After a successful rollout in the U.S. earlier this year, Amazon is expanding support for end-to-end encryption for video captured on its Ring products. Part of what's motivating this is probably setting a higher global standard so wherever Amazon goes, they will be welcome by satisfying stringent local standards," said Brad Russell, vice president of Interpret.
Cybercriminals Employing Specialists To Maximize Ill-Gotten Gains
July 13, 2021
Ransomware gangs are increasingly turning to specialists to complete their capers on corporations, according to a Dark Net intelligence provider. A report issued by Tel Aviv-based Kela noted that the days when lone wolves conducted cyberattacks from start to finish are nearly extinct, as the one-man show has given way to specialization.
Researchers Find Smart Devices Ripe for Hacker Attacks
July 7, 2021
Thousands of hacker attacks were launched on a network of smart home devices designed by researchers to assess the risk the gadgets pose to consumers. During the initial week the "honeypot" network was online, 1,017 unique scans or hacking attempts were directed at the devices on the net, which included smart TVs, printers, wireless security cameras and Wi-Fi kettles.
SolarWinds Hackers Still Targeting Microsoft, Focus on Support Staff
July 6, 2021
Microsoft recently disclosed that it too was no doubt a victim of the same Russian-based hacker gang responsible for the SolarWinds onslaught. As some of the details surrounding the cyberattack become known, the bleak disclosures might justifiably cause a sniffled gasp indicating that if Microsoft can be breached, what hope is left for everyone else?
Reputation Management: Duking It Out With Doxing
June 30, 2021
Cancel culture and politics aside, one of the more brutal threats lurking in the shadows of the internet is the slander industry. All too often, unsuspecting people become victims of websites that promote slanderous, often unverified information about individuals. This false and vilifying information lives on the internet forever and can sully an otherwise spotless reputation.
SEC Reportedly Probing SolarWinds Breach
June 23, 2021
Clients of SolarWinds, which experienced a high-profile data breach last year, are being targeted in a probe by the U.S. Securities and Exchange Commission, according to a Reuters report. "The impact of these large-scale breaches clearly has the potential to destabilize stock prices and the broader stock market, so it makes sense that the SEC would pursue such a line of inquiry," said Oliver Tavakoli, CTO of Vectra AI.
Reports of TurboTax Breach Greatly Exaggerated
June 16, 2021
Reports of a data breach of TurboTax have been overblown, according to Intuit which owns the tax preparation platform. Several news outlets recently reported that an unspecified number of TurboTax accounts were compromised in a wave of credential stuffing attacks. Those kinds of attacks exploit credentials stolen from other websites and reused at the TurboTax site.
Apple Raises Curtain on New OS Features at WWDC21
June 8, 2021
Apple on Monday revealed dozens of new features in the latest versions of its mobile and desktop operating systems at the kickoff of its annual Worldwide Developers Conference. "The emphasis of the whole presentation seemed to be making Apple products more useful for consumers," observed Gartner Senior Principal Analyst Tuong Nguyen.
New Report Profiles Ransomware Cybergangs
May 21, 2021
That old adage about crime never pays could not be more false, at least when it comes to modern-day cybercriminals. For those bad actors using ransomware as their weapon, crime is paying more than ever. A new report by the eSentire security research team found that six ransomware gangs claimed at least 290 new victims fo far this year. The combined spoils tallied potentially $45 million for the hackers.
Dissecting the Colonial Pipeline Incident
May 20, 2021
IT experts at the hacked Colonial Pipeline did a good job in mitigating the May 7 cyberattack and successfully stopped it when discovered by shutting down the network. But the attack was mostly invisible in the weeks-long initial stages, according to a briefing NTT Security executives conducted Tuesday.
Research Exposes 10 Common Threats Vexing Cloud Customers
May 19, 2021
New research by threat detection and response firm Vectra AI shows that the most common threats to corporate networks remain consistent throughout all companies -- regardless of their size. Researchers calculated the relative frequency of threat detections that were triggered during a three-month span. The results detail the top 10 threat detections that customers receive by relative frequency.
Mobile Devices Under Siege by Cyberattackers
May 18, 2021
Cybercriminals are deliberately targeting phones, tablets, and Chromebooks to increase their odds of finding a vulnerable entry point. The Financial Services Threat Report from Lookout disclosed that 20 percent of mobile banking customers had a trojanized app on their devices when trying to sign into their personal mobile banking account.
Alliances Formed to Plug Security Holes in the IoT
May 13, 2021
Advancements in 5G connectivity and accelerated digital transformation of business operations creates heightened risk and expanded attack surfaces for security teams to harden and protect. Now, efforts by several internet industry groups are focused on new measures to fix inherent security weaknesses with the rapidly expanded use of IoT devices for enterprises and consumers.
Bolt-On Security the Linux Way
May 12, 2021
In this piece, I aim to provide a range of simple but effective options for encrypting a small number of files. In particular, these options are salient for use cases like tax filing, where users are sending sensitive documents to recipients with an unknown degree of technical proficiency. Fond as I am of PGP, I'll bet you your refund check that your accountant doesn't know the first thing about using it.
Two-Thirds of CISOs Admit They're Not Ready to Face a Cyberattack
May 12, 2021
The 2021 edition of Proofpoint's Voice of the CISO report -- based on a survey of more than 1,400 CISOs in 14 countries -- found 66 percent of the executives acknowledged their organizations were unprepared to handle a targeted cyberattack this year. In addition, more than half the CISOs admitted they are more concerned about the repercussions from a cyberattack this year than they were in 2020.
Allow App to Track? Most iOS 14.5 Users Tap Fuggedaboutit!
May 11, 2021
More than 90 percent of U.S. users of the latest version of Apple's mobile operating system iOS 14.5 are taking advantage of a new feature to block an application's ability to track their activity on their phones. Worldwide, 88 percent of users shut down app tracking on their iPhones. This is bad news for advertisers.
Outdated Windows Users Flout Computing Safety
May 4, 2021
A recent study by Kaspersky revealed that nearly one quarter of PCs still run Microsoft Windows 7, which stopped receiving mainstream support in January 2020. Using an end-of-life operating system that no longer receives security updates is akin to driving a car with a brake light on, suggested Oliver Tavakoli, CTO at Vectra AI.
Microsoft, Intel Team Up to Clamp Down on Cryptominers
April 28, 2021
As cryptocurrency values continue to rise, cryptojacking becomes more attractive to cybercriminals. Now, a powerful hardware-based threat detection technology is being integrated into a Microsoft enterprise security product to help protect businesses from cryptojacking malware. The action integrates Intel Threat Detection Technology with Microsoft Defender for Endpoint.
Cybercops Scrub Botnet Software From Millions of Computers
April 27, 2021
The notorious Emotet botnet software began uninstalling itself from some one million computers Sunday. The uninstall command was part of an update sent to the infected computers by law enforcement servers in the Netherlands after Emotet's infrastructure was compromised in January during a multinational operation mounted by eight nations.
DuckDuckGo Unwraps Google FLoC Blocker
April 20, 2021
DuckDuckGo has announced an add-on to the Chrome browser that blocks Google's new scheme to provide marketers with information for targeting advertising at Internet users. The scheme called FLoC -- Federated Learning of Cohorts -- is being tested in Chrome, in some cases without the knowledge of the browser's users.
How Fixable Is the Unsafe Internet?
April 15, 2021
A recent study from Consumer Reports' Digital Lab reveals that 96 percent of Americans agree that more should be done to protect consumer privacy. But don't expect to see a whole new alternative Internet emerging any year soon. Instead, you will see a focus on software offerings built around privacy and security rather than hardware.
DNS Flaws Expose Millions of IoT Devices to Hacker Threats
April 14, 2021
A set of flaws in a widely used network communication protocol that could affect millions of devices has been revealed by Forescout Research Labs and JSOF Research. The nine vulnerabilities discovered by security researchers dramatically increase the attack surface of at least 100 million Internet of Things devices, exposing them to potential attacks that could take the devices offline or to be hijacked by threat actors.
Fortune 500s Hit by MS Exchange Breach Maybe Still Unaware
April 13, 2021
Jonathan Cran, founder and CEO of Intrigue, a cybersecurity startup based in Austin, Texas, used his company's network security tools to compile a list of Fortune 500 companies still exposed to last month's Microsoft Exchange breach. Potentially, many of those companies may not know their networks are compromised.
See More Articles in Security Section >>
Given the spread of the Covid-19 Delta variant, if my employer requires me to return to the company's location in 2021, I will...
Agree because I'm fully vaccinated.
Agree if the company institutes a mandatory mask requirement and other safety protocols.
Comply reluctantly, because I can't afford to lose my job, but start looking for different employment.
Resign immediately so I can dedicate all of my time to find a job I feel is safer.
Resign because I'm not vaccinated and don't want to risk infection to myself or others.