News


  • Critical infrastructure will have to operate if there’s malware on it or not

    September 16, 2018

    As threats and cyber-attacks on critical infrastructure are expected to intensify in the near future, cyber-security experts believe that companies and government agencies should be prepared to operate networks even if there’s malware or a threat actor on the network or not. The idea is that cyber-attacks should not cause downtime of any form, and networks should be designed in a way ...

  • Bristol Airport blames hackers for three day technical meltdown

    September 16, 2018

    A cyber attack was the cause behind a three day technical meltdown, according to Bristol Airport. The airport’s information screens were out of service on both Friday and Saturday, with holidaymakers having to read departure times off whiteboards scattered around the airport. An airport spokesman said several systems were taken offline on Friday in a bid to ...

  • New CSS Attack Restarts an iPhone or Freezes a Mac

    September 15, 2018

    A new attack has been discovered that will cause iOS to restart or respring and macOS to freeze simply by visiting a web page that contains certain CSS & HTML. Windows and Linux users are not affected by this bug. This new attack was discovered by Sabri Haddouche, a security researcher at Wire, who was able to devise a ...

  • Keeping up with the changing face of security

    September 14, 2018

    Press Release By Philip Ingram MBE, Grey Hare Media Ltd We have been lucky in 2018 after the terror that tore across Europe and the UK in 2016 – 2017 with vehicle, knife and bomb attacks happening in Nice, London Bridge, Westminster, Manchester and Barcelona. These are just a few of the places left reeling from a wave ...

  • New Cold Boot Attack Unlocks Disk Encryption On Nearly All Modern PCs

    September 13, 2018

    Security researchers have revealed a new attack to steal passwords, encryption keys and other sensitive information stored on most modern computers, even those with full disk encryption. The attack is a new variation of a traditional Cold Boot Attack, which is around since 2008 and lets attackers steal information that briefly remains in the memory (RAM) after ...

  • Government mass surveillance breached human rights, says European court

    September 13, 2018

    Mass surveillance and data collection programs used by the UK government breached privacy and don’t meet the necessary legal requirements to guarantee rights will be upheld, the European Court of Human Rights (ECHR) has ruled. The court has concluded that the UK’s mass interception programmes breached the European Convention on Human Rights. The case of ‘Big ...

  • OilRig APT Continues Its Ongoing Malware Evolution

    September 13, 2018

    The Iran-linked APT appears to be in a state of continuous tool development, analogous to the DevOps efforts seen in the legitimate software world. OilRig, an APT group believed to have ties to Iran, has been spotted in yet another campaign in the Middle East – this time targeting victims within an undisclosed government using an ...

  • Crooks Combine Phishing and Impersonation For Higher Success Rate

    September 12, 2018

    While phishing continues to be the prevalent threat in malware-less email-based attacks, cybercriminals refine their methods by adding an impersonation component to increase the success rate against company employees. Phishing emails are easy to deploy and do not require other preparation from the attacker than crafting a vague message that is sufficiently convincing for a large ...

  • Data management firm Veeam mismanages own data, leaks 445m records

    September 12, 2018

    A company which has built its reputation on global data management services appears to have left a treasure trove of data open to the prying eyes of the public. Baar, Switzerland-based Veeam calls itself the “global leader in intelligent data management” and offers “Hyper-Available” data management solutions able to merge traditional data backup and recovery tools with modern ...

  • Osiris Banking Trojan Displays Modern Malware Innovation

    September 12, 2018

    Osiris’ fundamental makeup positions it in the fore of malware trends, despite being based on old source code that’s been knocking around for years. After staying dormant for few years, the Kronos banking trojan resurfaced in July in a form dubbed Osiris. A wider analysis of how the banking trojan is evolving shows innovative development on ...

  • Bad Actors Sizing Up Systems Via Lightweight Recon Malware

    September 11, 2018

    These stealthy downloaders initially infect systems and then only install additional malware on systems of interest. Well-known financial crime gang Cobalt Group and other threat actors have recently shifted tactics to incorporate lightweight modular downloaders that “vet” target machines for their attractiveness before proceeding with a full-fledged attack. The emergence of the AdvisorsBot and Marap malwares, as ...

  • More than 40% of ICS computers were attacked in H1 2018

    September 11, 2018

    More than 40% of all industrial control system (ICS) computers protected by Kaspersky Lab solutions were attacked by malicious software at least once during the first half of 2018. The most impacted countries turned out to be Vietnam, Algeria and Sri Lanka, while the safest region for industrial machines was Denmark. These are among the ...

  • Russian domestic security service launch new dedicated center to counter cyberattacks

    September 11, 2018

    Russia’s Federal Security Service, the FSB, now has a separate coordination center created in order to prevent, detect and counter cyberattacks on critical infrastructure facilities as well as repair damage from such attacks. The new agency is officially titled ‘National Coordination Center for Computer Incidents’ and it will be headed by Andrey Ivashko who is also ...

  • British Airways breach caused by the same group that hit Ticketmaster

    September 11, 2018

    A cyber-criminal operation known as Magecart is believed to have been behind the recent card breach announced last week by British Airways. The operation has been active since 2015 when RisqIQ and ClearSky researchers spotted the malware for the first time. The group’s regular mode of operation involves hacking into online stores and hiding JavaScript code that steals payment card information entered ...

  • Mirai, Gafgyt IoT botnets stab systems with Apache Struts, SonicWall exploits

    September 10, 2018

    New variations of Mirai and the Gafgyt botnet are harnessing new vulnerabilities to compromise IoT devices, including the security flaw which caused the 2017 Equifax data breach. On Sunday, researchers from the Palo Alto Networks Unit 42 team said in a blog postthat new variants of the botnets have been upgraded with a slew of exploits designed to ...

  • LuckyMouse uses malicious NDISProxy Windows driver to target gov’t entities

    September 10, 2018

    The LuckyMouse advanced persistent threat (APT) is back with a twist in tactics that harnesses LeagSoft certificates to spread Trojans by way of malicious NDISProxy drivers. It was back in June that researchers discovered that LuckyMouse, also known as EmissaryPanda and APT27, had targeted a national data center containing Asian government resources. In this previous campaign, LuckyMouse used ...

  • GCHQ intelligence chief threatens ‘brazen’ Russia with UK’s ‘tools’

    September 7, 2018

    British spies are ready to counter an “active and real threat” posed by the “brazen Kremlin”, the head of GCHQ has warned. Jeremy Fleming said the government’s cyber intelligence agency could “deploy the full range of tools from across our national security apparatus” to target Russia’s GRU intelligence agency and its agents. During a speech at the ...

  • ‘Domestic Kitten’ Mobile Spyware Campaign Aims at Iranian Targets

    September 7, 2018

    Spreading via fake Android apps, the malware lifts a range of sensitive information from victims’ devices. A mobile spyware campaign against mainly Iranian citizens has been spotted – with evidence that the Iranian government might be involved. The operation is dubbed Domestic Kitten by Check Point researchers — “kitten” to follow common APT nomenclature for Iranian groups ...

  • BA hacked: 380,000 card payments ‘compromised’ in breach

    September 7, 2018

    Shares of British Airways’ parent company IAG fell around 4% as markets opened on Friday morning, hours after the airline said the credit card information of at least 380,000 customers had been “compromised” in a data theft. More than £500m was wiped of the airline group’s market value as a result, before the share price rallied ...

  • U.S. Ties Lazarus to North Korea and Major Hacking Conspiracy

    September 6, 2018

    The DoJ said a DPRK spy, Park Jin-hyok, was involved in “a conspiracy to conduct multiple destructive cyberattacks around the world.” The Justice Department has charged a North Korean man in the hacking of Sony Pictures Entertainment (SPE) in 2014 – as well as the global WannaCry attack last year that caused millions of dollars of ...