Security News > 2020 > June

Dan Patterson, senior producer for CNET and CBS News, spoke with Theresa Payton, cybersecurity expert, CEO of Fortalice Solutions, and author of "Manipulated: Inside the Cyberwar to Hijack Elections and Distort the Truth," about political disinformation campaigns and why they're important. There's a belief in the security community and it hasn't been completely proven out yet that at some point there actually may be more bots interacting on social media than there are actual human beings based on the number of accounts that are out there and sort of the behavior and activities behind those accounts.

Fortalice CEO and former White House CIO Theresa Payton explains why disinformation is such a potent threat.

An especially popular type of BEC attack is one that uses invoice or payment fraud to steal money from the targeted organization. In the first three months of 2020, invoice and payment fraud BEC attacks increased more than 75%. But the rise was even more pronounced from April to May. Over that period, the volume of these types of BEC campaigns shot up by 200% per week, with a 36% jump in the number of organizations hit by these attacks.

With Magento 1 reaching end-of-life on Tuesday, Adobe is making a last-ditch effort to urge the 100,000 online stores still running the outdated version to migrate to Magento 2. Adobe is pulling the plug on security fixes for Magento Commerce 1.14 and Magento Open Source 1.

E-mails telling you that your data has been compromised are now sometimes fake. TechRepublic's Karen Roby spoke with Eva Velasquez, CEO of the Identity Theft Resource Center about new malware threats that look like breach alerts.

E-mails telling you that your data has been compromised are now sometimes fake. Be careful what you click on.

We care about your privacy and the protection of your domains, so we will soon be upgrading them, from basic Domain Name System to Domain Name System Security Extensions. As you probably know, DNS is short for domain name system, and it's the globally distributed database that turns server names that humans can remember, such as nakedsecurity.

A Russian national pleaded guilty last week for his role in an international cyber theft ring that caused losses of more than $568 million. The man, Sergey Medvedev, also known as "Stells," "Segmed" and "Serjbear," 33, admitted to engaging in criminal activities as part of the Infraud Organization, an international cybercrime gang that operated between October 2010 and February 2018.

Paul Bischoff, consumer privacy expert with Comparitech, found that Amazon's face recognition platform incorrectly misidentified more than 100 photos of US and UK lawmakers as criminals. Rekognition, Amazon's cloud-based facial recognition platform that was first launched in 2016, has been sold and used by a number of United States government agencies, including ICE and Orlando, Florida police, as well as private entities.

Magecart web skimmers were found on the websites of eight cities in the United States and one thing they have in common is that they all use the Click2Gov platform, Trend Micro reports. Designed for community engagement, reporting of issues, and online payments, the Click2Gov web-based platform is used by local governments across the United States and has been the victim of financially-motivated threat actors in both 2018 and 2019.