Web Security Archives | CW Enterprises

Articles targeted at Web App Security, hacks, guides, how to’s and the latest vulnerabilities.

Feds Crack Down on Money Mules, Warn of BEC Scams

6th December 2019Lindsey O Donnell

Authorities say they have halted over 600 domestic money mules – exceeding the 400 money mules stopped last year. Source: Threat Post [...]

AT&T, Verizon Subscribers Exposed as Mobile Bills Turn Up on the Open Web

5th December 2019Tara Seals

Names, addresses, phone numbers, call and text message records and account PINs were all caught up in a cloud misconfiguration. Source: Threat [...]

‘Ultimate’ MiTM Attack Steals $1M from Israeli Startup

5th December 2019Elizabeth Montalbano

Researchers uncovers “ultimate man-in-the-middle attack” that used an elaborate spoofing campaign to fool a Chinese VC firm and rip off an emerging business. [...]

Android Ups the Mobile Security Ante with Default TLS Encryption

3rd December 2019Tara Seals

More than 90 percent of Android apps running on the latest OS encrypt their traffic by default. Source: Threat Post – Web [...]

Supply Chain Account Takeover: How Criminals Exploit Third-Party Access

3rd December 2019Pat Cooper

It’s important for businesses of all sizes to not only view their suppliers’ attack surface as their own but also extend some of [...]

Microsoft OAuth Flaw Opens Azure Accounts to Takeover

2nd December 2019Lindsey O Donnell

The Microsoft applications are vulnerable to an authentication issue that could enable Azure account takeover. Source: Threat Post – Web Security – [...]

Smart TVs: The Cyberthreat Lurking in Your Living Room, Feds Warn

2nd December 2019Tara Seals

TV takeover, privacy threats, botnet concerns and Wi-Fi network compromise are all big concerns when it comes to connected TVs. Source: Threat [...]

IoT Smartwatch Exposes Kids’ Personal, GPS Data

27th November 2019Lindsey O Donnell

Yet another connected smartwatch for children has been discovered exposing personal and location data of kids – opening the door for various insidious [...]

Magecart Group Switches Up Tactics with MiTM, Phishing

26th November 2019Tara Seals

This new skimming/phishing hybrid threat tactic means that even stores that send customers to external payment processors are vulnerable. Source: Threat Post [...]

Managing the Human Security Factor in the Age of Ransomware

26th November 2019Derek Manky

Convincing employees to take security seriously takes more than awareness campaigns. Source: Threat Post – Web Security – Managing the Human Security [...]