Rapid7 has become the latest big-name security vendor to invest in new cloud security posture management (CSPM) capabilities, with the acquisition of DivvyCloud today. The security analytics and automation vendor will pay $145m in cash and stock for the Arlington,

A COVID-19 tracking app introduced by the Australian government has been informing users who haven’t even been tested for the novel coronavirus that they have contracted the bug. The CovidSafe app went live at 6pm on April 26 and was

A cybersecurity company is offering free training courses to help keep businesses cyber-safe. Fortinet has made all its online training programs free for the remainder of 2020 to address the skills gap in the cybersecurity industry, outlined in the 2019

The banking Trojan Grandoreiro has been taking advantage of the COVID-19 crisis to attack users, an analysis by ESET has shown. The internet security company has found the Trojan hiding in videos on fake websites that promise to provide vital

A majority of cybersecurity professionals have said that their job functions have changed due to the COVID-19 pandemic, with 90% now working remotely full-time. According to a survey of 256 cybersecurity professionals by (ISC)2, 81% of respondents, all responsible for

Muscovite fraudsters are capitalizing on the city’s COVID-19 lockdown by offering to sell desperate citizens the digital passes they now need to travel around the city. Singapore-based security vendor Group-IB said it had helped identify 126 websites, Telegram channels and

Researchers uncovered a simple flaw that existed in nearly 28 Antivirus software that allows malware authors to exploit the system and disable the Antivirus software also turn them into self-destructive tools. The bug abusing the directory junctions (Windows) and symlinks

Microsoft has patched a subdomain takeover vulnerability in Microsoft Teams that affects every user who uses the Teams desktop or web browser version. Microsoft Teams is a leading communication and collaboration platform that combines workplace features such as chat, video

Sophos patched a SQL injection flaw with XG Firewall product that exploited by attackers in the wild. Sophos informed about the bug on April 22, 2020, further analysis revealed that hackers can attack systems with either the administration interface (HTTPS

Operating Systems can be detected using Ping Command, Ping is a computer network administration software utility, which used to find the Availability of a host on an Internet Protocol (IP) network. Ping operates by sending Internet Control Message Protocol (ICMP)

A new zoom phishing campaign observed asking recipients to join a zoom meeting that threatens employees that their contracts will be either suspended or terminated. The recipients are presented with a fake Zoom login page that asks recipients to input

Researchers detected a dump containing details for nearly 400,000 payment card records uploaded to a popular darknet card shop on April 9. The database was comprised almost entirely of the payment records related to banks and financial organizations in South

Researchers uncovered a new variant of Hoaxcalls Botnet that spreading through exploiting the unpatched remote code vulnerability that resides in ZyXEL Cloud CNM SecuManager. Zyxel Cloud CNM secuManagr is a network management software designed to provide an integrated console to

Qihoo 360’s Netlab Researchers observed Moobot botnet has successfully spread in fiber routers for remote code execution using0-day vulnerability. There is a total of 9 vendors are affected by the same vulnerability, it is likely most of the vendors are

A new Zoom flaw lets hackers record Zoom meeting sessions and to capture the chat text without the knowledge of meeting participants’ even though host disables recording option for the participants. Zoom is an online video communication platform that has