Cybersecurity News & Analysis | SC Media | Info Security News

Security News

Facebook leveraged user data as bargaining chip, considered selling to allies

By

Facebook CEO Mark Zuckerberg leveraged user data as a bargaining chip to fend off competitors and considered selling access to friendly companies, giving privacy short shrift along the way. Even as he was promising to make privacy a priority, a pledge he renewed in the face of the Cambridge Analytica scandal and a string of…

Microsoft web mail services breached after support agent’s credentials are compromised

By

Hackers reportedly compromised a Microsoft Corp. support agent’s credentials, allowing them to gain unauthorized access to the company’s various web-based email services, including Outlook, MSN and Hotmail, for at least three months in 2019. This breach exposed not only information pertaining to certain customers’ email accounts, but also in some cases the content of the…

Join us for the 2019 RiskSec conference

By

SC Media’s 13th annual cybersecurity conference, RiskSec, will be held Wednesday, May 8 in Philadelphia. As a loyal SC reader, we are happy to offer you $100 off admission with discount code WEB. This year’s event will provide insights from thought leaders across various industries, focusing on the most significant issues that security professionals face…

5 Things You Need to Know About API Protection

Whether you realize it or not, APIs are everywhere in your organization and they’re growing in numbers. In fact it’s estimated that the average organization manages over 300 APIs, many of which are exposed externally to customers and partners. While the concept of APIs may still be foreign to some, they’re an integral part of…

Threat actors gaining admin rights before ransomware infections

By

Threat actors are using accounts with admin privileges to install BitPaymer ransomware via PsExec suggesting threat actors are taking a more targeted approach to their distribution of malware. Similar to the Arizona Beverage ransomware attack earlier this month, a manufacturing company also appears to have been targeted in an attack in which the company’s name…

Three apps claiming to improve Instagram exposed as an insta-scam

By

A trio of Android applications that supposedly helped Instagram account owners increase likes and followers, boost security and improve the overall user experience were actually stealing their usernames and passwords, Malwarebytes has reported. The apps, which were designed to target users based in Iran, had been available for download via the Google Play store as…

Oculus exec says U.S. Senator’s privacy policy questions on VR will be answered “in due time”

Facebook supply chain leak leads to Oculus headsets shipping with hidden messages

By

Facebook admitted a supply chain data leak in its new Oculus headsets resulted in the devices shipping out with secret messages reading “Big Brother Is Watching You,” “The Masons Were Here,” “This Space for Rent,” and “Hi iFixit! We See You!.” The messages were physically printed inside tens of thousands of new Oculus motion controllers…

Bernie Sanders

Russia targeted Sanders supporters on Twitter to sway support to Trump

By

“Bernie bros” weren’t the only ones who tweeted furiously about Bernie Sanders during the 2016 presidential campaign. Russian trolls on Twitter targeted Sanders supporters in an effort to sway them toward candidate Donald Trump, according to researchers at Clemson University.  Pointing out that the tweets occurred at a “higher volume than people thought,” Darren Linvill,…

Two Romanians convicted for roles in Bayrob malware operation

By

Two Romanian nationals were convicted in an Ohio federal court on Thursday for their roles in the Bayrob group, an organization that launched a multi-million-dollar cybercriminal operation fueled by its own proprietary malware. Bogdan Nicolescu, 36, and Radu Miclaus, 37, were found guilty on separate 21 counts for developing and spreading the Bayrob trojan, which…

FBI logo

Hackers publish info on FBI National Academy alum

By

Hackers posted personal information on FBI, Secret Service and other federal employees as well as police officers nicked from three websites associated with the FBI National Academy (FBINAA). “We believe we have identified the three affected Chapters that have been hacked and they are currently working on checking the breach with their data security authorities,”…

Next post in Security News