Lucian Constantin
CSO Senior Writer
Lucian Constantin writes about information security, privacy, and data protection for CSO.
Hackers use Slack to hide malware communications
A watering hole attack used Slack for its command-and-control communications to avoid network and endpoint detection.
One in three organizations suffered data breaches due to mobile devices
New Verizon report shows a big gap between organizations' mobile security risk concerns and mobile security best practices they implement.
Qbot malware resurfaces in new attack against businesses
This new persistent and difficult-to-detect Qbot version is designed to steal financial information.
Elasticsearch clusters face attacks from multiple hacker groups
If you are running an older version of Elasticsearch, make sure you've patched its known vulnerabilities or consider upgrading.
Password managers remain an important security tool despite new vulnerability report
Experts downplay discovery of a vulnerability that can expose passwords in a computer's memory. Hackers likely to take easier paths to stealing passwords.
IoT botnets target enterprise video conferencing systems
WootCloud researchers have discovered a trio of IoT botnets based on Mirai that exploit Polycom video conferencing systems. Polycom has issued an advisory and best practices for mitigating the risk.
Attackers place cryptojacking apps in the Microsoft App Store
Microsoft has removed eight applications from its app store for Windows that were mining Monero cryptocurrency without users' knowledge.
Data breaches exposed 5 billion records in 2018
New report from Risk Based Security shows a downward trend in number breaches and exposed records, Unclear if privacy regulations like GDPR are having an effect.
CrowdStrike Store opens its endpoint security agent to other vendors
CrowdStrike will share data its cloud-based endpoint security platform collects to give customers more options while minimizing compatibility and performance concerns.
Report: Over 59,000 GDPR data breach notifications, but only 91 fines
The low number of fines relative to the volume of reported breaches might be due to over-extended regulators, says a DLA Piper report.
451 Research: Security is top data management challenge
A survey of highly qualified data management professionals by 451 Research shows that growing data volumes have made security their biggest concern.
Law enforcement shuts down xDedic marketplace for hacked servers
Cooperation among multiple agencies in the U.S. and Europe close a marketplace that sold access to servers hacked through RDP attacks.
Ursnif Trojan is back with fileless persistence
Also known as Dreambot, this new variant can deploy GandCrab ransomware through Microsoft Word macros.
Multi-vector attacks target cloud-hosted technologies
Securonix report outlines the threat posed by automated multi-vector, multi-platform attacks against cloud infrastructure.
Temporary micropatch available for zero-day Windows exploit
A publicly disclosed Windows zero-day vulnerability could allow attackers to take full control of systems once they compromise a low-privilege account. Here's a fix.
Rocke coinminer disables cloud protection agents
Cryptojacker's new shell script A7 can remove cloud security agents from Alibaba and Tencent to avoid coinminer detection.
Shadow Brokers teases more Windows exploits and cyberespionage data
A group of hackers that previously leaked alleged NSA exploits claims to have even more attack tools, as well as intelligence gathered by the agency on foreign banks and ballistic missile programs.
WannaCry attacks are only the beginning
As the WannaCry ransomware attack evolves, more cybercriminals are likely to attempt to profit from the vulnerability it exploits and similar flaws in the future.
