Monday, September 23, 2019
ZDNet

New North Korean malware targeting ATMs spotted in India

Another version of the same malware, but with RAT-like features, spotted targeting Indian research centers.
ZDNet

Privilege escalation vulnerability patched in Forcepoint VPN for Windows

The bug could also be used post-exploit to circumvent PC defenses.
ZDNet

Google revamps privacy policy to give users more control over Assistant voice recordings

You will be spared human eavesdroppers, too, unless you choose to opt-in.
ZDNet

Massive wave of account hijacks hits YouTube creators

YouTube creators from the auto and car community were hit the hardest in what appears to be a coordinated attack.
ZDNet

Apple neutered ad blockers in Safari, but unlike Chrome, users didn’t say a thing

On the other hand, everyone was busy blasting Google for a similar plan in Chrome.
ZDNet

Facebook suspended tens of thousands of apps from 400 developers

Cambridge Analytica fallout yielded tens of thousands of app suspensions and bans.
ZDNet

Exclusive: TalkTalk hacker also breached EtherDelta cryptocurrency exchange

Elliot Gunton and Anthony Tyler Nashatka charged for 2015 EtherDelta hack.
ZDNet

The ultimate guide to finding and killing spyware and stalkerware on your smartphone

Surveillance isn't just the purview of nation-states and government agencies -- sometimes, it is closer to home.
ZDNet

Magecart strikes again: hotel booking websites come under fire

Card-skimmers may have impacted close to 200 hotel properties and their customers.
ZDNet

Man allegedly used drone to pelt ex-girlfriend’s home with bombs

Charges now include unregistered drone operation, meth use, and unlawfully owning firearms.
ZDNet

Twitter removes new batch of state-backed accounts

Twitter removes new accounts part of state-run information campaigns in the United Arab Emirates, Egypt, Saudi Arabia, Spain, Equador, and China.
ZDNet

Google removes two Chrome ad blocker extensions caught ‘cookie stuffing’

Two Chrome ad blockers caught manipulating cookies so extension devs could earn commissions on users' backs.
ZDNet

Two arrested in $10 million tech support scheme that ‘preyed on the elderly’

Suspects run tech support scam sites and made over $10m from over 7,500 victims by billing unneeded tech support fees.
ZDNet

Two years later, hackers are still breaching local government payment portals

New 20,000 batch of payment card details found on the dark web and traced back to new Click2Gov hacks.
ZDNet

Old Magecart web domains resurrected for fraudulent ad schemes

Card skimming is the modus operandi of Magecart but many of the new campaigns focus on malvertising instead.
ZDNet

Smart TVs send user data to tech heavyweights including Facebook, Google, Netflix

A research study suggests that private information is being transferred even when devices are idle.
ZDNet

Patch now: 1,300 Harbor cloud registries open to attack

A severe critical privilege escalation vulnerability has been found in the open source registry software.
ZDNet

Ubisoft to send out cease & desist requests to DDoS-for-hire services

Because all cybercriminals are law-abiding citizens and have a legal department.
ZDNet

GitHub security alerts now support PHP projects

GitHub is now also a CVE CNA and can issue its own CVE numbers for bugs disclosed in projects hosted on the platform.
ZDNet

Windows Defender malware scans are failing after a few seconds

Windows Defender "Quick" and "Full" scans stop after a few files and a few seconds.
SC Magazine

Ning Wang – Offensive Security

Ning WangCEO Offensive Security Why Nominated: Ning Wang is a rising star has worked to break the boundaries in the security industry, so that people can see that anyone is capable of starting a career in cybersecurity and advancing it –...
SC Magazine

Dani Martínez – IOActive

Dani MartínezSecurity ConsultantIOActive Why nominated: Dani Martínez proved to be a self-starter, beginning his career in IT he soon developed an interest in cybersecurity and began taking online courses in his spare time. Martínez also dove write in and began a cybersecurity blog...
SC Magazine

Maurice Stebila – Harman, a Samsung Company

Maurice StebilaDigital Security,Compliance and Privacy OfficerHarman, a Samsung Company Why nominated: Maurice Stebila has spent more than 30 years in the automotive, manufacturing and financial services industry supporting two of the world’s largest companies – EDS/General Motors and Harman by Samsung...
SC Magazine

Ed Adams – Security Innovation

Ed AdamsPresident and CEOSecurity Innovation Why Nominated: A highly respected veteran of the cybersecurity industry, Security Innovation CEO Ed Adams has taken on several new leadership roles in the year or so. Last April, he was named to board of directors of...
SC Magazine

David Archer – Galois

David ArcherPrincipal scientistGalois Why Nominated: Archer, an advocate for preserving privacy of data even when it’s used in decision-making both within the U.S. at all levels of government as well as internationally, directs research in privacy-preserving information technologies. Profile:  David Archer is all...