Security News > 2020

Obviously, these romance scams work obviously, but you know, whenever I see these types of messages in my Twitter inbox or even just on Facebook, because I see them a lot on social media. It's social engineering at its finest and I you know, never ceases to amaze me actually how good cyber criminals are sort of taking the pulse of what's going on out thereAnd definitely things like Valentine's Day where you know, people are going to be feeling a little vulnerable maybe or, or maybe they're you know, elated because they're in a new relationship or something and they're not paying as much attention as they should be.

"The exploitation of the vulnerabilities translates to dangerous attack vectors against many IoT products released in 2018-2019. At first glance, most of the vulnerabilities affect product's availability by allowing them to be remotely restarted, deadlocked or having their security bypassed," the whitepaper reads. A search on the Bluetooth Listing Search site returns around 480 product listings that employ the affected SoCs, each listing containing multiple products from the same vendor.

Many upstream oil and gas organizations invested in cybersecurity last year in an effort to improve their threat detection and prevention capabilities, according to a survey conducted by professional services company Accenture. Respondents included executives, managers, IT professionals and engineers from national and international oil companies, independent oil firms, and oilfield services providers.

Sen. Kirsten Gillibrand, D-N.Y., is proposing the creation of a new federal agency dedicated to protecting online privacy, taking that task away from the Federal Trade Commission. In November, two Democratic members of the U.S. House, Anna Eshoo and Zoe Lofgren, proposed similar legislation, The Online Privacy Act, which would create a digital privacy agency that would have the ability to hire up to 1,600 employees and the authority to impose fines for privacy violations.

Austria's foreign ministry has said a weeks-long cyber attack from a "State actor" against its systems has ended - amid local reports that pin the blame on a Russian hacking crew and its initial four-byte payload. The attack, which was announced to burghers of the state on a 4th January, was aimed at the ministry's IT infrastructure, according to local reports. Foreign minister Alexander Schallenberg said the attack had been ended, adding: "We managed to clean up our IT systems." He claimed that "No damage to the IT equipment could be detected".

Knowing the topic is critical for many, spammers are sending phishing emails with malicious attachments masquerading as instructions around the coronavirus. These coronavirus-themed phishing emails could affect businesses due to China's role in the world economy, according to OneSpan.

After running real-world tests of Android's facial recognition on a Pixel 4, Jack Wallen shares his theory of why some people are so concerned about facial recognition. My TechRepublic article How to enable facial recognition in the BitWarden mobile password manager wound up receiving feedback about Android facial recognition-not BitWarden.

Facebook and its Irish data regulator gave conflicting signals Thursday about what caused the tech giant to postpone the European launch of its vaunted dating app. The regulator said Facebook only informed it about the new product's launch on February 3.

A joint report by the International Association of Privacy Professionals and Ernst & Young, published last year, revealed inconsistencies in how companies are implementing the DPO role, including whether the CISO also serves as DPO. When Is DPO Required? While some say it's appropriate for CISOs to serve as DPOs because the roles complement each other, others argue the DPO position should be separate.

The company said it discovered the breach recently, after being notified by a third-party that "There may have been unauthorized access to data from payment cards that were used at some Rutter's locations." Rutter's investigation revealed on January 14 that hackers had planted malware on payment processing systems, allowing them to obtain information from credit and debit cards used at point-of-sale devices at fuel pumps and convenience stores.