
MacOS High Sierra zero-day shows Keychain passwords in plain text
MacOS users who are starting the upgrade to High Sierra – and those who are using El Capitan – are vulnerable to a proof-of-concept attack that shows their online passwords in plain text, according to Synack security researcher Patrick Wardle.
He discovered that Mac Keychain, a native password management tool, can store online account usernames and passwords in plain text, allowing malicious applications direct access to the account details. However, the Keychain is generally protected by a master password.
Wardle revealed the details in a video that showed a demonstration of the attack.
Check Point exposes Android malware vendor using dark net to rebrand products
A brief history of cyber-threats — from 2000 to 2020
Emotet remains leading malware in global threat index
WatchGuard report tracks rise of network attacks in Q3
Malwarebytes expands protection suite, with focus on protecting remote workers
DDoS campaigns, BEC scams & Emotet: CERT NZ reports top security threats

New year, time to update your passwords
The most popular passwords of 2020 were easy-to-guess number combinations, such as 123456, the word password, qwerty, iloveyou, and other uncomplicated options.

The top search terms from IT execs in 2020
Covid, cybersecurity and operating models were amongst the most searched terms by IT executives in 2020, according to the analyst firm.

Alibaba Cloud and LGMS tackle hybrid and multi-cloud security
Alibaba Cloud and LGMS, a cybersecurity consulting company, are teaming up to tackle the challenge of security around digital transformation and hybrid cloud.

Christmas tech gifts pose cybersecurity risks - ProofPoint
Fraudsters are targeting last-minute Christmas shoppers via email and hackers are targeting electronic devices that feature on many wish lists.

Telcos plagued by DNS attacks, but budgets should focus elsewhere
“What is most attacked, or hardest to defend, is not always the same."

Ministry of Health successfully completes COVID-19 tracing technology trial
The New Zealand Ministry of Health, the New Zealand Government's principal advisor on health and disability, completed the community-led Bluetooth contact tracing technology trial in Rotorua.