A view of the Q1 2020 threat landscape as seen by ESET telemetry and from the perspective of ESET threat detection and research experts

The post ESET Threat Report appeared first on WeLiveSecurity

Another in our occasional series demystifying Latin American banking trojans

The post Grandoreiro: How engorged can an EXE get? appeared first on WeLiveSecurity

Microsoft plugs a security hole that could have enabled attackers to weaponize a GIF in order to hijack Teams accounts and steal data

The post Microsoft Teams flaw could let attackers hijack accounts appeared first on WeLiveSecurity

ESET research into vulnerabilities in smart home hubs – Discovering and disrupting a botnet in Latin America – Digital assistants in the work-from-home era

The post Week in security with Tony Anscombe appeared first on WeLiveSecurity

A pair of vulnerabilities in the default email app on iOS devices is believed to have been exploited against high-profile targets

The post iOS Mail app flaws may have left iPhone users vulnerable for years appeared first on WeLiveSecurity

ESET researchers discover, and play a key role in the disruption of, a 35,000-strong botnet spreading in Latin America via infected USB drives

The post Following ESET’s discovery, a Monero mining botnet is disrupted appeared first on WeLiveSecurity

If you’re trying to be responsible towards the planet, also be responsible to yourself and take these steps so that the device doesn’t end up costing you more than you’ve saved

The post Buying a secondhand device? Here’s what to keep in mind appeared first on WeLiveSecurity

In worst-case scenarios, some vulnerabilities could even allow attackers to take control over the central units and all peripheral devices connected to them

The post Serious flaws found in multiple smart home hubs: Is your device among them? appeared first on WeLiveSecurity

Security is not a game, but learning about it could be – here’s why adding the fun factor can help employees become more cyber-aware

The post How gamification can boost your cybersecurity training appeared first on WeLiveSecurity

In 2015, we launched our Vulnerability Research Grant program, which allows us to recognize the time and efforts of security researchers, including the situations where they don’t find any vulnerabilities. To support our community of security researchers and to help protect our users around the world during COVID-19, we are announcing a temporary expansion of our Vulnerability Research Grant efforts.

In light of new challenges caused by the coronavirus outbreak, we are expanding this initiative by  creating a COVID-19 grant fund. As of today, every Google VRP Bug Hunter who submitted at least two remunerated reports from 2018 through April 2020 will be eligible for a $1,337 research grant. We are dedicating these grants to support our researchers during this time. We are committed to protecting our users and we want to encourage the research community to help us identify threats and to prevent potential vulnerabilities in our products.

We understand the individual challenges COVID-19 has placed on the research community are different for everyone and we hope that these grants will allow us to support our Bug Hunters during these uncertain times. Even though our grants are intended to recognize the efforts of our frequent researchers regardless of their results, as always, bugs found during the grant are eligible for regular rewards per the Vulnerability Reward Program (VRP) rules. We are aware that some of our partners might not be interested in monetary grants. In such cases, we will offer the option to donate the grant to an established COVID-19 related charity and within our discretion, will monetarily match these charitable donations.

For those of you who recently joined us or are planning to start, it’s never too late. We are committed to continue the Vulnerability Research Grant program throughout 2020, so stay tuned for future announcements and follow us on @GoogleVRP!