Cybercriminals can exploit the at-risk apps to steal login credentials, passwords, financial details, and text messages, says Check Point. Image: Jack Wallen Many applications and products caught with a security vulnerability often require two responses to fully mitigate the flaw. First, the vendor may have to issue a patch to correct the server-side weakness on its end. But then the user or developer of the app might need to apply that patch on the client…

Embraer, a Brazilian manufacturer of aircraft, has disclosed that hackers managed to breach its computer systems, and steal data. Although Embraer may not be a household name, it is the world’s third-largest producer of civil aircraft (after Boeing and Airbus), having delivered more than 8,000 aeroplanes to date. According to a press release issued by the firm, Embraer spotted it was being attacked on November 25 2020, which resulted in “a single environment of the…

Tenable®, Inc. the Cyber Exposure company, today celebrates a successful year as deepwatch’s preferred risk-based vulnerability management partner. The strategic partnership combines Tenable’s industry-leading vulnerability management solutions with deepwatch’s innovative cloud SecOps platform and managed services to help joint customers see their systems, predict what matters and act to reduce risk, especially as they prioritize cloud computing. “Over the past year, we’ve seen a massive, global shift to the cloud and remote workforces,” said Mark…

A global phishing campaign targeted organizations associated with the Coronavirus 2019 (COVID-19) cold chain. Discovered by IBM Security X-Force, the operation began in September 2020 by targeting multiple entities that support the Cold Chain Equipment Optimization Platform (CCEOP). A program created by Gavi, The Vaccine Alliance, CCEOP aims to cultivate an agile medical response to outbreaks of infectious diseases like COVID-19. It does this in part by working to strengthen the “cold chain,” or a…

COVID-19 changed how economies, consumers, and the supply chain behave. All that change means that significant amounts of legacy data are no longer useful and, in many places, we are starting from ground zero. But for CIOs who are responsible for the infrastructures, platforms, and tools that manage and move data, essential data realities may not have changed, although their scope certainly has. Due to the pivotal role technology is playing in transforming the working…

A Philadelphia food bank has been scammed out of nearly $1m following a classic business email compromise (BEC) attack, it has emerged. Philabundance is the region’s largest hunger-relief organization and receives tens of millions of dollars in donations every year. Earlier this year, it was in the process of completing a new $12m community kitchen, which is when it was sent an invoice by what managers thought was a construction company supplier. However, the email was in…