Viry a Červi

An effective spoofing campaign promises users important information about new coronavirus cases in their local area, scooting past Proofpoint and Microsoft Office 356 ATPs.

And no, Microsoft said, none of our verified accounts have been hijacked, vehemently denying early reports.

Every once in a while an attack comes along that is so simple to set up, and yet so effective, that it makes your jaw drop. Here's one.

Vicarious liability now applies to intentional leaks, top court says

Morrisons supermarket is not liable for the actions of a disgruntled employee who deliberately leaked nearly 100,000 employees' payroll data online, the Supreme Court has ruled.…

Microsoft has announced a list of new security and privacy features it plans to add to forthcoming versions in an effort to take on its rivals.

Connecting to a port greater than 8192 using a hostname now stalls, possibly

Updated  Apple's latest update to macOS Catalina appears to have broken SSH for some users.…

Super-crypto actually normal TLS, lawsuit launched over Facebook API usage, privacy policy rewritten

UK Prime Minister Boris Johnson sparked security concerns on Tuesday when he shared a screenshot of “the first ever digital Cabinet” on his Twitter feed. It revealed the country’s most senior officials and ministers were using bog-standard Zoom to discuss critical issues facing Blighty.…

Could be a wearable, could be wired. Backed by big fines and jail

The State of Western Australia has given itself the power to install surveillance devices in homes, or compel people to wear them, to ensure that those required to isolate during the coronavirus crisis don’t interact with the community.…

There's an app for that. Or text, if you dare. Or even retail outlets

Singapore will bin the physical tokens used to provide two-factor authentication (2FA) for some digital government services.…

About 10 compromised websites employ a multi-stage, targeted effort to fingerprint and compromise victims.

Lots of non-savvy users may be recycling previously hacked creds

Group video chat app Houseparty has offered a $1m bounty to identify what it claims is an organised campaign to falsely depict it as a hackers' backdoor.…

The New York Attorney General has inquired about Zoom's data security strategy, as the conferencing platform comes under heavy scrutiny for its privacy policies.

An old RAT learns an old trick.

How many customers' deets? It's not saying just yet

Marriott Hotels has suffered its second data spillage in as many years after an "unexpected amount" of guests' data was accessed through two compromised employee logins, the under-fire chain has confirmed.…

Marriott International has today announced that it has suffered a data breach affecting up to 5.2 million people.

The second breach in less than 24 months stemmed from employee account compromises.

OpenWrt is an open source operating system used by millions of home and small business routers and embedded devices.

The source code for ransomware-as-a-service strain Dharma has been put up for sale by hackers.

Where did it all come from? 4.9m records were posted on a hacking forum - and the country only has an estimated population of 3.7m.

They have a way to inject 'good' data - i.e., accurate COVID-19 news or security patches - to outpace the spread of fake news or malware.