Security News > 2020 > March

Karen Roby: With so many people working from home, security should be top of mind. A lot of people that I've been talking to in companies all around the world built their business continuity plans based upon the assumption that we'd be able to do shift work, where there'd be skeleton crews, left inside of facilities, and it's very clear that now a lot of that has shifted to 100% evacuation from those facilities and 100% work from home.

A security expert offers tips on how to keep employees safe in this work-from-home environment during the coronavirus pandemic.

If anyone is using that house party app DELETE IT My friends email account been hacked into by it And managed to get bank account details too and has hacked that. To be honest, we can't tell you that the Houseparty app is bug-free, because we haven't decompiled or analysed it, and even if we had, working out that an app is totally free of vulnerabilities is a close-to-impossible exercise, as are many tasks where you are expected to prove a negative.

Zoom has removed a feature in its iOS web conferencing app that was sharing analytics data with Facebook, after a report revealing the practice sparked outrage. In a Friday post, Zoom that it has now removed the "Login with Facebook" software development kit for iOS, which was the feature tied to the data sharing: "Our customers' privacy is incredibly important to us, and therefore we decided to remove the Facebook SDK in our iOS client, and have reconfigured the feature so that users will still be able to log in with Facebook via their browser," according to Eric Yuan, founder of Zoom.

Vulnerabilities in Lexus and Toyota cars could be exploited by hackers to launch remote attacks against affected vehicles, researchers at China-based Tencent Keen Security Lab discovered. Research into the AVN system in the 2017 Lexus NX300 - the same system is also used in other models, including LS and ES series - has revealed security issues with the Bluetooth and vehicular diagnosis functions on the car.

Just as law-abiding people have been discussing COVID-19, so too have criminals on the dark web. In a report published last week, Sixgill discussed the specific topics that the coronavirus has been generating on the dark web.

Security should always be a top priority, but it's easy to let these security reviews and user training fall low on the to-do list. No one wants a reminder about how important these tasks are in the form of an expensive security breach.

Tom Merritt lists five remote access threats so you can secure your system. Here are the five remote access threats you should know about.

Sophisticated state-supported actors are following cybercriminals in exploiting the coronavirous pandemic and posing an "Advanced persistent threat", French defence technology giant Thales warned Monday. Hades, linked to the APT28 which is believed to be of Russian origin and behind an attack on the US Democrat party in 2016, was the first state-backed group to use the epidemic as bait, Thales' cyber intelligence service reported.

When working from home, it's important to understand the security risks. Tom Merritt lists five remote access threats so you can secure your system.