Security

A new RSA Security report on cyberfraud has troubling news for users north of the border.

The "RSA Quarterly Fraud Report: Q1 2020," released Thursday, examined a total of 50,119 incidents of fraud across the globe, with 54% attributed to phishing attacks. Daniel Cohen, RSA's head of anti-fraud products, said phishing is still the "go-to tool" for cybercriminals targeting end users at large.

A hacker claims to have breached the backend servers belonging to a US cyber-security firm and stolen information from the company's "data leak detection" service.

The hacker says the stolen data includes more than 8,200 databases containing the information of billions of users that leaked from other companies during past security breaches.

Reyes Daniel Ruiz, 34, will face no jail time for the offence which saw him abuse his position to hack 6,000 accounts of Yahoo Mail users.

He has been sentenced to five years of probation and home confinement and ordered to pay a $5,000 fine and $118,456 repatriation to Yahoo – where he worked as an engineer from 2009 to 2019.

Any company that uses a certain piece of networking equipment from Seattle-based F5 Networks had a rude interruption to their July 4 weekend, as a critical vulnerability turned the holiday into a race to implement a fix. Those who haven't done so by now may now have a much larger problem on their hands.

North Korean hackers with ties to Lazarus Group have pivoted to skimming online shopping platforms in recent months, following in the footsteps of the Magecart hacking collective.

Security researchers have found links between recent global skimming activity and previously documented North Korean hacking operations, particularly cyber criminals linked with the group known as Lazarus, or HIDDEN COBRA.

An old and dangerous piece of Android malware called FakeSpy has resurfaced in a big way, according to a new report from Cybereason. FakeSpy, which was first discovered by security researchers nearly three years ago, is a particularly nasty piece of malware designed to steal a user’s text messages, financial data, bank login information, app data, contact lists, and more.

F5 Networks, one of the world's largest provider of enterprise networking gear, has published a security advisory this week warning customers to patch a dangerous security flaw that is very likely to be exploited.

The vulnerability impacts the company's BIG-IP product. These are multi-purpose networking devices that can work as web traffic shaping systems, load balancers, firewalls, access gateways, rate limiters, or SSL middleware.

With macOS 11, also known as Big Sur, Apple has removed the ability to install macOS profile configurations from the command-line.

This ability was previously a core feature of macOS' enterprise package, which allows system administrators to deploy new configurations company-wide via automated scripts.

You are, we hope, already protecting your phone with a PIN, a fingerprint, or a face (or all three), but sometimes you'll want to add an extra barrier to particular apps—if you're lending your phone to a friend, say, or if your kids or partner are always borrowing your phone for whatever reason.

Nearly 20 years after its initial release, a hacker has found a way to run homebrew software on an unmodified PlayStation 2 using nothing but a carefully burned DVD-ROM.

Previous efforts to hack the PS2 relied on internal modifications, external hardware (like pre-hacked memory cards and hard drives), or errors found only on very specific models of the system. The newly discovered FreeDVDBoot differs from this previous work by exploiting an error in the console's DVD video player to create a fully software-based method for running arbitrary code on the system.