News


  • Senior Defence figure raises concerns about future cyber attacks

    February 19, 2019

    One of Australia’s senior military figures says the threat of cyber attacks against the nation’s infrastructure and military networks is on the rise. Major General Marcus Thompson leads the Information Warfare Division, which was set up in mid-2017 with the aim of providing both defensive and offensive cyber capabilities. In his first media major interview, he told ...

  • Platinum Security Exhibition 2019: The response to important security needs of the private sector

    February 19, 2019

    Press Release  – Paris Placed under The High Patronage of H.S.H. Prince Albert II of Monaco, the first edition of the Platinum Security Exhibition, the international exhibition of security for the private sector, will be held from 10 to 12 April 2019 in Monaco. The trade fair will meet the growing needs of security for the ...

  • When Cyberattacks Pack a Physical Punch

    February 18, 2019

    Physical security goes hand in hand with cyberdefense. What happens when – as we see all too often – the physical side is overlooked? More than one in 10 data breaches now involve “physical actions,” according to a recent report. These include leveraging physical  devices to aid an attack, but also hacks that involve breaking into hardware ...

  • Multi-Stage Rietspoof Malware Drops Multiple Malicious Payloads

    February 18, 2019

    Rietspoof is a new malware family which uses a multi-stage delivery system, is designed to drop multiple payloads on the systems it infects, and offers very little to no information on what audience it targets. Avast’s Threat Intelligence Team first encounter with Rietspoof took place in the summer of 2018, during August, and while the researchers have been keeping ...

  • Australia accuses foreign government of cyber attack on lawmakers

    February 18, 2019

    A cyber attack on Australian lawmakers that breached the networks of major political parties was probably carried out by a foreign government, Prime Minister Scott Morrison said on Monday, but did not name any suspects. As Australia heads for an election due by May, lawmakers were told this month told to urgently change their passwords after ...

  • Germany sees big rise in security problems affecting infrastructure

    February 17, 2019

    Germany has experienced a big increase in the number of security incidents hitting critical infrastructure such as power grids and water suppliers, the BSI cybersecurity agency said on Sunday, adding however that they were not all due to hacking. The Welt am Sonntag weekly had reported on Sunday that Germany had learned of 157 hacker attacks ...

  • Ex-US Air Force intelligence officer charged with spying for Iran

    February 14, 2019

    U.S. authorities on Wednesday charged former Air Force intelligence officer Monica Witt with helping Iran launch a cyber-spying operation that targeted her former colleagues after she defected from the United States. The U.S. Justice Department said Witt, 39, assembled dossiers on eight U.S. military intelligence agents she had worked with for Iranian hackers, who then used Facebook and ...

  • FBI arrests second Apophis Squad hacker in the US

    February 13, 2019

    The FBI arrested yesterday a hacker part of a hacking team known as Apophis Squad. This is the second arrest of an Apophis Squad member after UK cops arrested a teenager in August 2018. The two, US and UK citizens, respectively, have been charged in an indictment unsealed by the US Department of Justice yesterday. They stand ...

  • Cisco’s warning: Patch this default Network Assurance Engine password bug

    February 13, 2019

    Cisco is urging customers to install an update that fixes a high-severity issue affecting its Network Assurance Engine (NAE) for managing data-center networks. The bug, tracked as CVE-2019-1688, could allow an attacker to use a flaw in the password-management system of NAE to knock out an NAE server and cause a denial of service. NAE is an ...

  • New Astaroth Trojan Variant Exploits Anti-Malware Software to Steal Info

    February 13, 2019

    A new Astaroth Trojan campaign targeting Brazil and European countries is currently exploiting the Avast antivirus and security software developed by GAS Tecnologia to steal information and load malicious modules. According to Cybereason’s Nocturnus team which discovered the new Astaroth strain, just like previous instalments, the malware uses “legitimate, built-in Windows OS processes to perform malicious activities and deliver a payload without being ...

  • Snapd Flaw Lets Attackers Gain Root Access On Linux Systems

    February 13, 2019

    Ubuntu and some other Linux distributions suffer from a severe privilege escalation vulnerability that could allow a local attacker or a malicious program to obtain root privileges and total control over the targeted system. Dubbed “Dirty_Sock” and identified as CVE-2019-7304, the vulnerability was discovered by security researcher Chris Moberly, who privately disclosed it to Canonical, the maker ...

  • Siemens Warns of Critical Remote-Code Execution ICS Flaw

    February 12, 2019

    Siemens has released 16 security advisories for various industrial control and utility products, including a warning for a critical flaw in the WibuKey digital rights management (DRM) solution that affects the SICAM 230 process control system. SICAM 230 is used for a broad range of industrial control system (ICS) applications, including use as an integrated energy system for ...

  • Attackers Completely Destroy VFEmail’s Secure Mail Infrastructure

    February 12, 2019

    A catastrophic, smash-and-destroy cyberattack has eliminated the U.S. infrastructure for secure email service VFEmail. It’s a rare example of a purely destructive offensive, apparently unmotivated by financial gain or espionage goals. An attacker wiped out the company’s U.S. servers on Monday evening, including backups, destroying almost two decades worth of user data in just a few ...

  • Counter-Terrorism and Border Security Bill given Royal Assent

    February 12, 2019

    New laws which gives the give the UK greater powers to crackdown on hostile state activity, have today received Royal Assent. The Counter-Terrorism and Border Security Act 2019 also ensures sentencing for certain terrorism offences can properly reflect the severity of the crimes, as well as preventing re-offending and disrupting terrorist activity more rapidly. In addition, the act updates ...

  • Trickbot Adds Remote Application Credential-Grabbing Capabilities to Its Repertoire

    February 12, 2019

    In November 2018, we covered a Trickbot variant that came with a password-grabbing module, which allowed it to steal credentials from numerous applications. In January 2019, we saw Trickbot (detected as TrojanSpy.Win32.TRICKBOT.AZ and Trojan.Win32.MERETAM.AD) with new capabilities added to its already extensive bag of tricks. Its authors clearly aren’t done updating Trickbot — we recently found a ...

  • Windows App Runs on Mac, Downloads Info Stealer and Adware

    February 11, 2019

    EXE is the official executable file format used for Windows to signify that they only run on Windows platforms, and to serve as a security feature. By default, attempting to run an EXE file on a Mac or Linux OS will only show an error notification. However, we found EXE files in the wild delivering a ...

  • How your stolen personal data is sent to the dark web, and what hackers can do with it

    February 10, 2019

    “It’s 6.5 billion now,” the cybersecurity specialist says, standing in his office in Kowloon, Hong Kong, overlooking a control room where glowing computer screens display the pulse being taken of nefarious web activity. One dial acts as an algorithm-generated odometer for internet threat levels, while a pulsing world map shows regions from which cyberattacks and ...

  • Banks Under Attack: Tactics and Techniques Used to Target Financial Organizations

    February 8, 2019

    US$100 – 300 billion: That’s the estimated losses that financial institutions can potentially incur annually from cyberattacks. Despite the staggering amount, it’s unsurprising — over the past three years, several banks suffered $87 million in combined losses from attacks that compromised their SWIFT (Society for Worldwide Interbank Financial Telecommunication)infrastructures. That’s just the tip of the iceberg: A ...

  • Apple releases iOS 12.1.4, fixes iPhone FaceTime spying bug

    February 7, 2019

    Apple has released iOS 12.1.4. It’s a patch that fixes a bug that allowed users to spy on others by activating a group FaceTime call without the user’s consent. What made this bug so serious was how trivial it was to leverage, and it forced Apple to pull the plug on the feature at the server ...

  • Flaw in Multiple Airline Systems Exposes Passenger Data

    February 7, 2019

    Researchers have discovered that multiple airline e-ticketing systems do not encrypt check-in links. The security faux pas could allow bad actors on the same network as the victim to view – and in some cases even change – their flight booking details or boarding passes. Security researchers at Wandera said that eight airlines have been sending ...