Iranian Hackers Use New Malware in Recent Attacks

Fri, 19 Jul 2019 17:46:12 +0000

The Iran-linked cyber-espionage group OilRig has started using three new malware families in campaigns observed over the past month, FireEye reports. read more

The Growing Threat of Targeted Ransomware

Fri, 19 Jul 2019 16:52:06 +0000

Ransomware targeting organizations is a growing threat. The extent of that threat is not always obvious. Except for the healthcare sector, disclosure of a ransomware attack is not generally required -- so victims will not necessarily report an incident. This is exacerbated by those victims who simply pay up and recover their files without the problem becoming obvious. read more

Author of Dryad and Rubella Macro Builders Arrested

Fri, 19 Jul 2019 16:45:34 +0000

Dutch authorities this week announced the arrest a 20-year old man for allegedly developing and distributing Office Macro Builders.  read more

Why Incident Response Must Adopt a Kill Chain Perspective

Fri, 19 Jul 2019 16:20:43 +0000

Even as incident response (IR) has evolved, it has struggled to see beyond individual events and create a more complete perspective. IR tools are still very effective, particularly as advances in orchestration and automation technology have turned many IR tools into SOAR tools, but they are limited by this narrow focus. read more

Israel Spyware Firm Can Mine Data From Social Media: FT

Fri, 19 Jul 2019 16:11:49 +0000

An Israeli spyware firm thought to have hacked WhatsApp in the past denied a report Friday that it had boasted to clients that it can scoop user data from servers run by technology titans. read more

Microsoft Launches Bug Bounty Program for Dynamics 365

Fri, 19 Jul 2019 16:04:44 +0000

read more

Ex-NSA Contractor to Be Sentenced in Stolen Documents Case

Fri, 19 Jul 2019 15:01:06 +0000

A former National Security Agency contractor awaits sentencing in Baltimore’s federal court for storing two decades’ worth of classified documents at his Maryland home. read more

Google Increases Bug Bounty Program Rewards

Fri, 19 Jul 2019 14:47:29 +0000

Google on Thursday informed security researchers that they can now earn significantly higher rewards if they submit vulnerability reports through the company’s bug bounty programs. read more

Researchers Claim They Bypassed Cylance's AI-Based Antivirus

Fri, 19 Jul 2019 06:12:55 +0000

Researchers at Australia-based cybersecurity firm Skylight claim to have found a way to trick Cylance’s AI-based antivirus engine into classifying malicious files as benign. read more

Poland, Lithuania Probe Russian-made App Behind Viral Old Age Selfies

Fri, 19 Jul 2019 04:39:58 +0000

Poland and Lithuania said Thursday they were looking into the potential security risks of using a Russian-made face-editing app that has triggered a viral social media trend where users post "aged" selfies. read more

Over 800,000 Systems Still Vulnerable to BlueKeep Attacks

Thu, 18 Jul 2019 17:03:10 +0000

Users and organizations continue to patch the Windows vulnerability tracked as BlueKeep and CVE-2019-0708, but over 800,000 systems are still exposed to attacks. read more

Biometrics: Dismantling the Myths Surrounding Facial Recognition

Thu, 18 Jul 2019 16:14:43 +0000

Biometric Authentication is No Longer Just the Stuff of Spy Movies or Reserved for Military-Grade Installations read more

Slack Resetting More User Passwords in Response to 2015 Breach

Thu, 18 Jul 2019 14:15:58 +0000

Slack announced on Thursday that it’s resetting passwords for accounts that users have not secured after the data breach suffered by the company back in 2015. read more

US Senator Calls for Investigation into Russia-made FaceApp

Thu, 18 Jul 2019 13:40:48 +0000

The chart-topping Russian-made FaceApp, which allows users to see how they will look as they age, found itself in the eye of a political storm in the US Wednesday, with one senator urging an FBI investigation into its "national security and privacy risks". read more

Malware Framework Gathers 1 Billion Ad Impressions in 3 Months

Thu, 18 Jul 2019 12:36:30 +0000

Flashpoint security researchers have discovered a new malware framework that managed to gather over one billion fraudulent ad impressions in the past three months. read more

Report Finds California Government IT Security Flaws

Thu, 18 Jul 2019 12:11:27 +0000

California’s state auditor raised alarms Tuesday about information security in some state offices and called for additional oversight and regular assessments. read more

StrongPity Targets Victims with Malicious WinBox Installer

Thu, 18 Jul 2019 11:47:27 +0000

A recently discovered ongoing campaign attributed to the StrongPity threat actor abuses malicious WinBox installers to infect victims, AT&T’s Alien Labs security researchers reveal. read more

Microsoft Reports Hundreds of Election-Related Cyber Probes

Thu, 18 Jul 2019 05:59:52 +0000

Microsoft says it has detected more than 740 infiltration attempts by nation-state actors in the past year targeting U.S.-based political parties, campaigns and other democracy-focused organizations including think tanks and other nonprofits. read more

Vulnerability Allows Hackers to Take Control of Drupal 8 Websites

Thu, 18 Jul 2019 05:52:38 +0000

Drupal developers on Wednesday informed users that version 8.7.4 is affected by a potentially serious vulnerability, and advised them to update to version 8.7.5, which addresses the issue. read more