News


  • Brazilian Banking Trojan Communicates Via Microsoft SQL Server

    May 29, 2018

    Researchers have discovered a banking trojan making waves in Brazil with an array of tricks up its sleeve, including using an unusual command and control (C&C) server and a full-screen social-engineering overlay form. Researchers at IBM X-Force research on Tuesday revealed that attackers are using the malware – dubbed MnuBot –mainly in Brazil to perform illegal ...

  • Estonia delivers a cybersecurity training to Singapore

    May 28, 2018

    The Estonian ministry of defence has delivered a cybersecurity training and a range exercise to cyber defenders in the Singapore’s ministry of defence and the country’s armed forces. The training took place at Singapore’s Cyber Defence Test and Evaluation Centre (CyTEC) and was delivered by the Estonian Defence Forces Cyber Range that provides training opportunities from ...

  • We need to be better at balancing national security and Chinese investment

    May 28, 2018

    Last week, the Canadian government rejected the takeover of Aecon Group Inc. – a major construction firm that contributes to the building of critical infrastructure in Canada – by China Communications Construction Co. Ltd, a state-owned infrastructure firm. This was the correct decision, albeit surely a difficult one that had to balance Canada’s need for ...

  • Researchers Defeat AMD’s SEV Virtual Machine Encryption

    May 27, 2018

    German security researchers claim to have found a new practical attack against virtual machines (VMs) protected using AMD’s Secure Encrypted Virtualization (SEV) technology that could allow attackers to recover plaintext memory data from guest VMs. AMD’s Secure Encrypted Virtualization (SEV) technology, which comes with EPYC line of processors, is a hardware feature that encrypts the memory ...

  • GDPR: US news sites blocked to EU users over data protection rules

    May 25, 2018

    A number of high-profile US news websites are temporarily unavailable in Europe after new European Union rules on data protection came into effect. The Chicago Tribune and LA Times were among those posting messages saying they were currently unavailable in most European countries. The General Data Protection Regulation (GDPR) gives EU citizens more rights over how their ...

  • DNV GL launches cyber security recommended practice

    May 25, 2018

    DNV GL has published a ‘recommended practice on cyber security’ for the oil and gas industry, looking at ‘operational technology’ – such as control and automation systems. The recommended practice addresses how oil and gas companies, together with system integrators and vendors, can manage the cyber threat. The recommended practice is the result of a two-year joint ...

  • Z-Wave Downgrade Attack Left Over 100 Million IoT Devices Open to Hackers

    May 24, 2018

    Researchers have found that even after having an advanced encryption scheme in place, more than 100 million Internet-of-Things (IoT) devices from thousands of vendors are vulnerable to a downgrade attack that could allow attackers to gain unauthorized access to your devices. The issue resides in the implementation of Z-Wave protocol—a wireless, radio frequency (RF) based communications technology ...

  • U.S. raises concerns about Vietnam’s proposed cybersecurity law

    May 24, 2018

    The United States has raised concerns with Vietnam about its proposed cybersecurity law, the U.S. Embassy said on Thursday, amid activists’ fears the new legislation will cause economic harm and crackdown on online dissent in the communist-ruled country. The concerns were conveyed by Deputy U.S. Trade Representative Jeffrey Gerrish in a meeting with Vietnam’s Deputy Prime ...

  • VPNFilter Malware Infects 500k Routers Including Linksys, MikroTik, NETGEAR

    May 23, 2018

    Malware called VPNFilter has infected 500,000 router brands ranging from Linksys, MikroTik, NETGEAR and TP-Link that are mostly used in home offices. Researchers at Cisco Talos said they decided to warn the public of the threat despite the fact the infected devices and malware are still under investigation. Researchers said their investigation into VPNFilter has been ...

  • Revealed: Pentagon Push to Hack Nuke Missiles Before They Launch

    May 22, 2018

    The Pentagon has embraced a controversial policy of destroying enemy nuclear missiles before they launch, an internal policy document from May 2017 shows. It’s an effort that appears to include executing cyberattacks against missile control systems or components. The Pentagon document does not name adversaries. But experts who reviewed it for The Daily Beast considered it ...

  • Microsoft, Google: We’ve found a fourth variant of Meltdown-Spectre CPU holes

    May 21, 2018

    A fourth variant of the data-leaking Meltdown-Spectre security flaws in modern processors has been found by Microsoft and Google researchers. These speculative-execution design blunders can be potentially exploited by malicious software running on a vulnerable device or computer, or a miscreant logged into the system, to slowly extract secrets, such as passwords, from protected kernel or application memory, ...

  • Wicked Botnet Uses Passel of Exploits to Target IoT

    May 21, 2018

    Yet another variant of the Mirai botnet has appeared on the scene, but this one has a twist: The code is integrated with at least three exploits that target unpatched IoT devices, including closed-circuit cameras and Netgear routers. It also has ties to a web of other botnets, made for DDoS attacks, which can all ...

  • DNS-Hijacking Malware Targeting iOS, Android and Desktop Users Worldwide

    May 21, 2018

    Widespread routers’ DNS hijacking malware that recently found targeting Android devices has now been upgraded its capabilities to target iOS devices as well as desktop users. Dubbed Roaming Mantis, the malware was initially found hijacking Internet routers last month to distribute Android banking malware designed to steal users’ login credentials and the secret code for two-factor authentication. Read more… Source: The ...

  • RedDawn Espionage Campaign Shows Mobile APTs on the Rise

    May 18, 2018

    A sophisticated and targeted mobile espionage campaign has been found targeting North Korean defectors. Mounted by a relatively new APT actor known as Sun Team, the offensive used Google Play and Facebook as attack vectors; and overall, it shows how quickly the mobile threat landscape is evolving as APTs shift tactics to focus on this ...

  • One Year After WannaCry: A Fundamentally Changed Threat Landscape

    May 17, 2018

    It’s been one year this week since the ransomware known as WannaCry infected more than 200,000 machines in 150 countries, causing billions of dollars in damages and grinding global business to a halt. The speed and scale of the attack – helped along by leaked National Security Agency hacking tools – was obviously notable, but ...

  • ​New Zealand gets NZ$3.9m ‘cyber’ boost in 2018 Budget

    May 17, 2018

    The New Zealand government has delivered its 2018 Budget, offering up NZ$3.9 million of new operating funding over the next four years to the Computer Emergency Response Team (CERT). CERT, established just over 12 months ago, responds to major cyber events and provides advice to businesses, organisations, and individuals who may be affected by cybersecurity incidents. The ...

  • DropBox To Pay 1.6 Million as Part of a California Auto-Renew Settlement

    May 17, 2018

    Alameda County District Attorney Nancy E. O’Malley announced yesterday a consumer protection settlement between DropBox and the Alameda, San Diego, San Francisco, and Sonoma Counties in California over auto-renewing of paid subscriptions. As part of this settlement and without admitting fault, DropBox has agreed to pay $1.6 million in civil penalties, $100 thousand to reimburse investigation costs, and $450,000 set ...

  • Airports are ill-equipped to deal with a major cyber-attacks

    May 16, 2018

    The report titled,‘Overcome the Silent Threat’, says that an increasing consumer demand for faster internet and digital engagement with airlines and retailers are providing cyber criminals with more opportunities to attack. According to the latest figures from the European Aviation Safety Agency, there are currently around 1,000 cyber-attacks each month on airport and aviation systems worldwide. Read more… Source: ...

  • Critical Linux Flaw Opens the Door to Full Root Access

    May 16, 2018

    Red Hat has patched a vulnerability affecting the DHCP client packages that shipped with Red Hat Enterprise Linux 6 and 7. A successful exploit could give an attacker root access and full control over enterprise endpoints. According to an alert issued Wednesday from US-CERT, the critical-rated flaw, first reported by Google researcher Felix Wilhelm, would “allow attackers to ...

  • Nethammer—Exploiting DRAM Rowhammer Bug Through Network Requests

    May 16, 2018

    Last week, we reported about the first network-based remote Rowhammer attack, dubbed Throwhammer, which involves the exploitation a known vulnerability in DRAM through network cards using remote direct memory access (RDMA) channels. However, a separate team of security researchers has now demonstrated a second network-based remote Rowhammer technique that can be used to attack systems using uncached memory or ...