Booz Allen to Acquire AI-based Morphick

Fri, 20 Oct 2017 17:38:29 +0000

Contracting giant Booz Allen is to acquire cybersecurity firm Morphick. Few details have been made public -- there is no statement on the price involved nor the future of existing Morphick staff. Nevertheless, this seem to be a good fit for both companies, with Morphick gaining access to more customers, and Booz Allen moving further along its published plan to expand its commercial presence. read more

Locky Uses DDE Attack for Distribution

Fri, 20 Oct 2017 16:43:41 +0000

While continuing to spread via spam emails sent by the Necurs botnet, the Locky ransomware has switched to new attack techniques in recent campaigns, in an attempt to evade detection and improve infection rate. read more

Driving Security Orchestration with Your Cyber Threat Intelligence Playbook

Fri, 20 Oct 2017 16:14:18 +0000

A newish buzzword in the cybersecurity world is “orchestration”. Which to me is the junction where people, process and technology all come together. It's where people build automation into process and consume information and insight generated by technology.  read more

EquiFIX - Lessons Learned From the Most Impactful Breach in U.S. History

Fri, 20 Oct 2017 15:46:03 +0000

While Equifax is the latest major data breach to hit the headlines, we know it will not be the last. How prepared is your organization if you were similarly targeted? read more

Visa Makes Biometrics Easier for Financial Institutions

Fri, 20 Oct 2017 15:42:44 +0000

The acceptance and adoption of biometrics as a primary or second factor in multi-factor authentication has been considerably slower than expected. There are signs now, however, that it is finally gathering pace. Apple has long included TouchID with the iPhone, and has now added FaceID to the new iPhone X. read more

Google Prompt Now Primary Choice for 2-Step Verification

Fri, 20 Oct 2017 14:18:51 +0000

Google has taken yet another step toward improving the security of its users by making Google prompt the primary choice for 2-Step Verification (2SV), instead of SMS. read more

New Mirai-Linked IoT Botnet Emerges

Fri, 20 Oct 2017 14:03:11 +0000

A new, massive botnet is currently recruiting improperly secured Internet of Things (IoT) devices such as IP wireless cameras, Check Point warns. read more

Canada's CSE Spy Agency Releases Malware Analysis Tool

Fri, 20 Oct 2017 12:59:08 +0000

Canada’s Communications Security Establishment (CSE) agency announced this week that the source code for one of its malware detection and analysis tools has been made public. read more

Supply Chain Attack Spreads macOS RAT

Fri, 20 Oct 2017 11:52:40 +0000

Proton, a remote access tool (RAT) that emerged in early 2017, has once again compromised a legitimate software’s distribution channel to spread, ESET warns. read more

Russian Hackers Exploit Recently Patched Flash Vulnerability

Fri, 20 Oct 2017 11:06:44 +0000

The Russia-linked cyber espionage group known as APT28 has been using a recently patched Adobe Flash Player vulnerability in attacks aimed at government organizations and aerospace companies, security firm Proofpoint reported on Thursday. read more

Google Offers Bonus Bounties for Flaws in Popular Android Apps

Fri, 20 Oct 2017 07:49:59 +0000

Google announced on Thursday that it’s prepared to offer a bonus of $1,000 to researchers who find serious vulnerabilities in some of the popular applications present on Google Play. read more

G7 to Put Squeeze on Internet Giants at Terror Talks

Thu, 19 Oct 2017 20:31:25 +0000

Tech giants including Google, Facebook and Twitter will come under pressure in Italy this week to go further and faster in helping G7 powers tackle the ever-greater threat of extremists online. read more

Ursnif Trojan Uses New Malicious Macro Tactics

Thu, 19 Oct 2017 18:35:25 +0000

Recently observed distribution campaigns featuring the Ursnif banking Trojan were using new malicious macro tactics for payload delivery, Trend Micro has discovered. read more

BoundHook Hooking Is Invisible to Windows 10's PatchGuard

Thu, 19 Oct 2017 18:29:15 +0000

A newly discovered hooking technique can go completely undetected by the current implementation of PatchGuard, CyberArk security researchers warn. read more