News


  • China blamed for data theft from US Navy contractor

    June 11, 2018

    China is being blamed for a cyberattack on a US Navy contractor which has led to the theft of sensitive military information. As reported by The Washington Post, US officials have claimed that up to 614 Gigabytes of information was stolen, including signal and sensor data, as well as submarine radio information relating to cryptographic systems. Plans for ...

  • Maritime navigation hack has potential to wreak havoc in English channel

    June 8, 2018

    A researcher has warned that threat actors are able to compromise common maritime navigation systems to potentially cause chaos in the shipping industry. As reported by the BBC, security researcher Ken Munro from Pen Test Partners has discovered that a ship navigation system called the Electronic Chart Display (Ecdis) can be compromised, potentially to disasterous effect Read more… Source: ...

  • Cyber security: Nation-state cyber attacks threaten everyone, warns ex-GCHQ boss

    June 8, 2018

    The dynamics of cyber warfare have changed so dramatically that nation-state attacks are now a problem everyone needs to face up to, the former head of the UK’s intelligence agency has warned. “Five years ago we were aware of nation-state attacks but we would’ve seen them as something that only a nation-state needs to worry about. Today they’re ...

  • Zero-Day Flash Exploit Targeting Middle East

    June 7, 2018

    A zero-day vulnerability is being exploited in the wild in targeted attacks against Windows users in the Middle East, researchers warned Thursday. The Flash Player vulnerability (CVE-2018-5002), a stack-based buffer overflow bug that could enable arbitrary code execution, was patched earlier today by Adobe. Read more… Source: ThreatPost  

  • Targeted Spy Campaign Hits Russian Service Centers

    June 7, 2018

    A series of espionage attacks have been uncovered, targeted at service centers in Russia that provide maintenance and support for a variety of electronic goods. The payload is a commercial version of the Imminent Monitor tool, which is freely available for purchase as legitimate software. Its developers explicitly prohibit any usage of the tool in a malicious way ...

  • VPNFilter Malware Impact Larger Than Previously Thought

    June 6, 2018

    Researchers say the impact of the VPNFilter malware discovered last month is larger than originally reported. On Wednesday, Cisco Talos researchers said they now believe the malware has infected twice the number of router brands than previously stated. They added that VPNFilter also delivers a more potent punch than they originally thought, and have identified a previously ...

  • Prowli Malware Targeting Servers, Routers, and IoT Devices

    June 6, 2018

    After the discovery of massive VPNFilter malware botnet, security researchers have now uncovered another giant botnet that has already compromised more than 40,000 servers, modems and internet-connected devices belonging to a wide number of organizations across the world. Dubbed Operation Prowli, the campaign has been spreading malware and injecting malicious code to take over servers and websites around ...

  • MyHeritage Says Over 92 Million User Accounts Have Been Compromised

    June 5, 2018

    MyHeritage, the Israel-based DNA testing service designed to investigate family history, has disclosed that the company website was breached last year by unknown attackers, who stole login credentials of its more than 92 million customers. The company learned about the breach on June 4, 2018, after an unnamed security researcher discovered a database file named “myheritage” ...

  • Facebook Accused of Giving Over 60 Device-Makers Deep Access to User Data

    June 4, 2018

    After being embroiled into controversies over its data sharing practices, it turns out that Facebook had granted inappropriate access to its users’ data to more than 60 device makers, including Amazon, Apple, Microsoft, Blackberry, and Samsung. According to a lengthy report published by The New York Times, the social network giant struck data-sharing partnerships with at least 60 device ...

  • Researchers Warn of Microsoft Zero-Day RCE Bug

    June 1, 2018

    Researchers have discovered a medium-severity Windows vulnerability that enables remote attackers to execute arbitrary code – and Microsoft hasn’t issued a patch yet. The flaw, which was first discovered by Dmitri Kaslov of Telspace Systems, exists within the handling of error objects in JScript, according to a Tuesday advisory by Trend Micro’s Zero Day Initiative group. Read more… Source: ...

  • State-sponsored cyber attacks deserve tougher responses: ASPI report

    June 1, 2018

    “If cyberattacks really pose a significant threat, governments need to start thinking of them like they think of other incidents in the physical world,” says a new policy paper from the Australian Strategic Policy Institute (ASPI). “It is telling that Prime Minister Theresa May made public attribution of the Salisbury poisonings in a matter of days ...

  • Nocturnal Stealer Lets Low-Skilled Cybercrooks Harvest Sensitive Info

    May 31, 2018

    The Nocturnal Stealer malware has crept into the Dark Web like a thief in the night, offering criminals a lucrative payday for a small price — and little effort. It’s a commodity malware, debuting on an underground forum in March for the low price of $25. It steals things, including 28 different kinds of cryptocurrency wallets, ...