News


  • Microsoft Detection Tools Sniff Out Fileless Malware

    October 2, 2018

    Microsoft recently reported that their advanced threat protection tools were able to detect and block two heavily obfuscated and malicious scripts. The threats were apparently using the Sharpshooter technique, which was documented and published in a 2017 blog post from a British security firm. A report from the company details the elusive payload—it did not trigger antivirus scanning, was loaded ...

  • Security & Counter Terror Expo 2019 – The UK’s Leading National Security Event, 5-6 March 2019, Olympia, London

    October 2, 2018

    Security & Counter Terror Expo is a world-class showcase of the capabilities, strategies and intelligence to keep nations, infrastructure, business and people safe. Stepping into a New Decade After celebrating its 10-year anniversary, Security & Counter Terror Expo is launching a brand new decade with its 2019 edition. The goal of the 2019 campaign is to see a ...

  • GhostDNS: New DNS Changer Botnet Hijacked Over 100,000 Routers

    October 1, 2018

    Chinese cybersecurity researchers have uncovered a widespread, ongoing malware campaign that has already hijacked over 100,000 home routers and modified their DNS settings to hack users with malicious web pages—especially if they visit banking sites—and steal their login credentials. Dubbed GhostDNS, the campaign has many similarities with the infamous DNSChanger malware that works by changing DNS server settings ...

  • Report Ties North Korean Attacks to New Malware, Linked by Word Macros

    October 1, 2018

    Newly discovered malware from the world of cyberespionage connects the dots between the tools and operations of the little-known Reaper group believed to act on behalf of the North Korean government. The latest findings indicate that the remote access Trojans (RAT) in the KONNI and DOGCALL families are the work of the same operator, tasked with ...

  • This is how cyber attackers stole £2.26m from Tesco Bank customers

    October 1, 2018

    The inner workings of a cyber attack against Tesco Bank which saw £2.26m stolen from 9,000 customers — and resulted in the bank being fined over £16.4m for the failings that allowed it to happen — have been revealed. The Financial Conduct Authority (FCA) has hit the bank with a £16.4m fine and said Tesco Bank failed to ...

  • An insider view of a cybersecurity training workshop for employees of Europe’s transmission system operators.

    October 1, 2018

    After the hackers had stealthily accessed the SCADA system and blew the transformer with a loud bang, the defenceless employees had no option but to remove the control plugs and manually turn the machine back on. “That’s what they had to do in Ukraine,” said Michael John, Director of Operations at the European Network for Cybersecurity (ENCS), referring to the world’s ...

  • Boffin: Dump hardware number generators for encryption and instead look within

    October 1, 2018

    Hardware-based random number generators (HWRNGs) for encryption could be superseded after a Philippines-based researcher found that side-channel measurement of the timing of CPU operations provide enough entropy to seed crypto systems with the necessary randomness. In a paper presented on Saturday at the International Conference on Innovative Research in Science, Technology and Management (ICIRSTM) in Singapore, JV Roig, ...

  • Defence Secretary reveals new generation of ‘cyber cadets’

    September 30, 2018

    The Cadets CyberFirst programme, delivered by Ministry of Defence cadet organisations and the GCHQ National Cyber Security Centre, will equip over 2,000 cadets a year with the skills and expertise to become future leaders in this emerging industry. Over £1 million will be invested in the programme each year, giving cadets the opportunity to learn how ...

  • UK Conservative Party conference app leaks MPs’ personal details

    September 29, 2018

    A mobile conferencing app developed for the UK’s Conservative Party leaked the private details of people who registered to attend party conferences, including the details of party members and UK government officials. The leak was discovered on Saturday afternoon, September 29, by Guardian columnist Dawn Foster who posted her findings on Twitter.  Foster discovered that anyone who ...

  • Health insurer Bupa fined £175k after staffer tried to sell customer data on dark web souk

    September 28, 2018

    International health insurance business Bupa has been fined £175,000 after a staffer tried to sell more than half a million customers’ personal information on the dark web. The miscreant was able to access Bupa’s CRM system SWAN, which holds records on 1.5 million people, generate and send bulk data reports on 547,000 Bupa Global customers to ...

  • Facebook security breach: Up to 50m accounts attacked

    September 28, 2018

    Facebook has said “almost 50 million” of its users were left exposed by a security flaw. The company said attackers were able to exploit a vulnerability in a feature known as “View As” to gain control of people’s accounts. The breach was discovered on Tuesday, Facebook said, and it has informed police. Users that had potentially been affected ...

  • DanaBot Banking Trojan Found Targeting European Countries

    September 27, 2018

    Security researchers recently discovered a banking trojan named DanaBot (detected by Trend Micro as TROJ_BANLOAD.THFOAAH) being distributed to European countries via spam emails. Here’s what you need to know about this threat, how users and businesses can defend against it, and how managed detection and response can help address this threat. What is DanaBot? DanaBot is a banking trojan, written in ...

  • EU lawmakers push for cybersecurity, data audit of Facebook

    September 27, 2018

    European Union lawmakers appear set this month to demand audits of Facebook by Europe’s cybersecurity agency and data protection authority in the wake of the Cambridge Analytica scandal. A draft resolution submitted Thursday to the EU Parliament’s civil liberties and justice committee urged Facebook to accept “a full and independent audit of its platform investigating data ...

  • Port of San Diego suffers cyber-attack, second port in a week after Barcelona

    September 27, 2018

    Two major international ports fell victim to cyber-attacks within the span of a week, putting the shipping industry on alert for a possible threat actor targeting the entire sector. The first to fall was the Port of Barcelona, Spain, on September 20, last week. The second attack was reported yesterday, September 25, by the Port of ...

  • Cybersecurity Researchers Spotted First-Ever UEFI Rootkit in the Wild

    September 27, 2018

    Cybersecurity researchers at ESET have unveiled what they claim to be the first-ever UEFI rootkit being used in the wild, allowing hackers to implant persistent malware on the targeted computers that could survive a complete hard-drive wipe. Dubbed LoJax, the UEFI rootkit is part of a malware campaign conducted by the infamous Sednit group, also known as ...

  • Cobalt threat group serves up SpicyOmelette in fresh bank attacks

    September 27, 2018

    Advanced persistent threat group (APT) the Cobalt Gang, also known as Gold Kingswood, is spreading SpicyOmelette malware in campaigns targeting financial institutions worldwide. In a world where cyberattacks against businesses and consumers alike are spreading and evolving in nature and sophistication, it is often financial institutions which bear the brunt. Banking customers hoodwinked by fraudulent schemes or ...

  • US government hacker jailed after losing secrets

    September 26, 2018

    A man who illegally took home hacking tools from his workplace at the National Security Agency, and then allegedly lost them to Russian intelligence, has been jailed for five years and six months. Nghia Hoang Pho, 68, developed hacking tools at the NSA’s elite Tailored Access Operations (TAO) unit, which works on penetrating target computer networks ...

  • VPNFilter’s Arsenal Expands With Newly Discovered Modules

    September 26, 2018

    Seven new modules discovered in VPNFilter further fill in the blanks about how the malware operates and reveals a wider breath of capabilities. Researchers have discovered new modules in VPNFilter – the malware behind the widespread campaign in May that infected 75 router brands – revealing that its capabilities are much more widespread and sophisticated than previously thought. After ...

  • New Linux Kernel Bug Affects Red Hat, CentOS, and Debian Distributions

    September 26, 2018

    Security researchers have published the details and proof-of-concept (PoC) exploits of an integer overflow vulnerability in the Linux kernel that could allow an unprivileged user to gain superuser access to the targeted system. The vulnerability, discovered by cloud-based security and compliance solutions provider Qualys, which has been dubbed “Mutagen Astronomy,” affects the kernel versions released between ...

  • Man gets two years in prison for sabotaging US Army servers with ‘logic bomb’

    September 25, 2018

    A US judge has sentenced an Atlanta man to two years in prison followed by three years of supervised release for sabotaging one of the US Army’s payroll databases with a “logic bomb.” The man’s sentence is related to an incident that occurred in November 2014 and affected the US Army’s Regional Level Application Software (RLAS). According ...