Lazarus takes aim at South Korea via an unusual supply-chain attack – The harsh reality of poor passwords – Bumble bitten by bugs
ESET researchers have uncovered a novel Lazarus supply-chain attack that, in order to deliver malware, abuses legitimate South Korean security software and digital certificates stolen from two companies. A list of the 200 most commonly-used passwords on the web in 2020 this year demonstrates again that various easy-to-guess combinations remain as popular as ever. Security flaws in the popular dating app Bumble put the data of its almost 100 million users at risk. All this – and more – on WeLiveSecurity.com.