Facebook’s FTC-Mandated Privacy Committee Now in Effect
Facebook will report its privacy practices to both the committee, the FTC, and to a third-party assessor.
IcedID Banker is Back, Adding Steganography, COVID-19 Theme
The malware has boosted its anti-detection capabilities in a new email campaign.
Cisco Webex, Router Bugs Allow Code Execution
High-severity flaws plague Cisco’s Webex collaboration platform, as well as its RV routers for small businesses.
BofA Phish Gets Around DMARC, Other Email Protections
The June campaign was targeted and aimed at stealing online banking credentials.
Five Password Tips for Securing the New WFH Normal
Darren James, product specialist with Specops Software, warned that password resets, for example, are a particularly vexing issue for sysadmins, as they can often lockout end-users from their accounts.
Phishing Campaign Targeting Office 365, Exploits Brand Names
Attackers use trusted entities to trick victims into giving up their corporate log-in details as well as to bypass security protections.
InvisiMole Group Resurfaces Touting Fresh Toolset, Gamaredon Partnership
InvisiMole is back, targeting Eastern Europe organizations in the military sector and diplomatic missions with an updated toolset and new APT partnership.
AcidBox Malware Uncovered Using Repurposed VirtualBox Exploit
A “very rare” malware has been used by an unknown threat actor in cyberattacks against two different Russian organizations in 2017.
Premier League’s Return: A Hat Trick of Cyberthreats?
The beautiful game is back on the pitch in the U.K. — and cyberattackers will be looking to take advantage of fans streaming the games.
Shlayer Mac Malware Returns with Extra Sneakiness
Spreading via poisoned Google search results, this new version of Mac’s No. 1 threat comes with added stealth.