Threat Post

Cisco ‘Critical Update’ Phishing Attack Steals Webex Credentials

Emails purporting to be a Cisco “critical security advisory” are actually part of a phishing campaign trying to steal victims’ Webex credentials. An ongoing phishing campaign is reeling in victims ...
ZDNet

LastPass bug leaks credentials from previous site

Password manager LastPass has released an update last week to fix a security bug that exposes credentials entered on a previously visited site. The bug was discovered last month by Tavis Ormandy, a ...
CSOonline

Customers of Sisense data analytics service urged to change credentials

The US Cybersecurity and Infrastructure Security Agency (CISA) is urging organizations to change any credentials they might have shared or stored with Sisense, a data analytics software and services ...
Morningstar

Bitwarden Business Insights Report: Employees Take Nine Days to Update At-Risk Credentials, Leaving IT Leaders Struggling to Enforce Enterprise Security

90% of IT admins rely on employees to update their own credentials, most often through email notifications (42%) or direct conversations (36%). However, more than half of IT leaders (51%) say ...
Yahoo Finance

Schwab Requires Customers to Update Login Credentials Shared with Third-Party Platforms

Sharing is caring … except when it comes to 401(k) credentials, apparently. Charles Schwab is asking clients, whose advisors use information-sharing fintech tools to access their workplace retirement ...
PC World

Update: Zoom issues fix for UNC vulnerability that lets hackers steal Windows credentials via chat

Update: After this story and others went live April 1, Zoom CEO Eric Yuan addressed Zoom security and other issues in a blog post. Part of the blog post detailed a bug fix to be released, which would ...