Security News > 2020

Deloitte's US Cyber Risk Services leader, Deborah Golden, spoke with TechRepublic about the top 9 challenges she has seen enterprises face now that thousands of enterprises are weeks into the massive shift to remote work. "The need to have these types of tools and technologies has been in organizations prior to COVID-19 but have grown exponentially in use, so the desire to have video and voice at the same time while also sharing and collecting and leveraging for work has caused some challenges that we're seeing across the board," Golden said.2.

Secure messaging app developer Signal says its US operation hangs in the balance due to a proposed law in America. "Some large tech behemoths could hypothetically shoulder the enormous financial burden of handling hundreds of new lawsuits if they suddenly became responsible for the random things their users say, but it would not be possible for a small nonprofit like Signal to continue to operate within the United States," Signal's Joshua Lund said.

London-based data privacy company Privitar this week announced that it has raised $80 million in a Series C funding round, which brings the total amount raised to date to more than $143 million. Privitar provides a data privacy and anonymisation platform that enables organizations to obtain data-driven insights without putting sensitive employee, customer and partner information at risk.

That spike in users also exposed a growing list of security flaws: Zoom bombing trolls have emerged, user email addresses and photos have leaked, calls aren't being end-to-end encrypted, and flaws found in the Zoom installer allow an attacker to gain root access to computers that run a malicious version of it. These security flaws have prompted some organizations, companies, governments, government agencies, and schools to ban Zoom or restrict its use.

Someone is targeting web denizens with a malicious, copycat Malwarebytes website, which serves up the Raccoon information stealer malware to unsuspecting visitors. Further, the fake Malwarebytes site is being used in a malvertising campaign via the PopCash ad network, researchers added.

The number of COVID-19-themed attacks has increased significantly over the past couple of months, but they represent only a fraction of daily threats, security firms say. At the moment, the tech giant is seeing roughly 60,000 phishing emails that carry COVID-19 related malicious attachments or malicious URLs each day.

With more people working from home and e-commerce experiencing a boom-time, fraudsters have taken notice. According to a special report, Impacts of Global E-Commerce and Fraud Trends Amid Coronavirus, released by e-commerce fraud-prevention provider Forter, as consumers have shifted their purchases online and begun working from home en masse, fraudsters are taking full advantage.

Zero Trust can seem scary to those accustomed to traditional security approaches. There are many reasons to go Zero Trust when it comes to enterprise security.

Purporting to offer help and info on COVID-19, the apps can let hackers take control of devices to access files, contacts, the calendar, and more, according to Check Point Research. As cyber criminals exploit the coronavirus with phishing emails, ransomware, and other attacks, so too are they concocting phony coronavirus-themed apps to infect mobile devices.

Bug bounty platform provider Bugcrowd announced on Thursday that it has raised $30 million in a Series D funding round. The funding round, which brings the total raised by the company to more than $80 million, was led by Rally Ventures, with participation from other new and existing investors.