Security News > 2020 > December

As individuals and organizations alike face cyberattacks on a regular basis, cybercrime enacts a huge financial toll around the world. In a new report released Monday, McAfee reveals the costs of cybercrime and offers advice on how to better protect your organization.

Security researcher Oskars Vegeris has published documentation on a wormable, cross-platform vulnerability in Microsoft Teams that could allow invisible malicious hacker attacks. Microsoft.com' domain could be abused to trigger a remote code execution flaw in the Microsoft Teams desktop application.

Environmental group WWF operates a tragically necessary maritime cleanup operation to find and remove so-called "Ghost nets" from the sea. A ghost net is any rogue fishing device that has got loose and carries on snagging sea creatures, including fish, sea mammals such as whales and dolphins, and even birds, in an uncontrollable way.

Microsoft Azure CTO Mark Russinovich utilized a monster 420 logical processor virtual machine to play Tetris using the CPU core list in Windows Task Manager. To do this, Russinovich redirected the output of a console Tetris implementation to his 'Task Manager CPU pixel array,' which is likely based on a modified version of TaskManagerBitmap project.

Russian state-sponsored hackers have been exploiting a vulnerability that VMware patched recently in some of its products, the National Security Agency warned on Monday. The vulnerability is tracked as CVE-2020-4006 and it has been found to impact the VMware Workspace ONE Access identity management product and some related components, including Identity Manager on Linux, vIDM Connector on Windows and Linux, VMware Cloud Foundation and vRealize Suite Lifecycle Manager.

A Russian bitcoin expert at the center of a multi-country legal tussle was sentenced in Paris on Monday to five years in prison for money laundering and ordered to pay 100,000 euros in fines in a case of suspected cryptocurrency fraud. Vinnik denies wrongdoing, and his lawyers are discussing whether to appeal.

Cybersecurity professionals should brace for pandemic warfare in 2021, according to a new report from Experian. Experian's eighth annual Data Breach Industry Forecast outlines five predictions for the data breach industry.

Complimenting our focus is a Threatpost eBook Healthcare Security Woes Balloon in a Covid-Era World that neatly packages our complete in-depth report on the topic. Threatpost's eBook examines these inherent security challenges, as well as how COVID-19 has drastically reshaped the healthcare space over the past year when it comes to security risk.

While it's a thrilling development, the inevitable rise of quantum computing means security teams are one step closer to facing a threat more formidable than anything before. The team joins Google, which claimed it achieved quantum supremacy in Oct. 2019 using a "Supercold, superconducting metal," according to WIRED. IBM has also entered the quantum computing fray, while leveling criticism against Google's claims of supremacy.

The pandemic's unprecedented impact on healthcare lay bare the gaping holes in the healthcare industry's cybersecurity defenses. Woods, who has worked for the past 10 years with small hospitals, healthcare focused nonprofits and government entities, added, "If technology goes offline, doctors and nurse practitioners can no longer give the quality of care that they were able to, or to as many people. Right now, with COVID-19, there's a dramatic rise in the attack surface and the number and types of systems that are being used," he said.