News


  • A dozen US web servers are spreading 10 malware families, Necurs link suspected

    April 4, 2019

    Researchers have uncovered over a dozen servers, unusually registered in the United States, which are hosting ten different malware families spread through phishing campaigns potentially tied to the Necurs botnet. On Thursday, researchers from Bromium said they have monitored scams connected to this infrastructure during the May 2018 to March 2019 time period. Five families of banking ...

  • Pharma Giant Bayer ‘Contains’ Cyber Attack

    April 4, 2019

    German firm detected hacker code and covertly monitored it for over a year, before clearing it from network Security officials at the German multinational pharmaceutical and life sciences giant Bayer AG seem to be on the ball after they detected and then contained a cyber attack. It is reported that the Winnti hacking group had gained access ...

  • This new malware is scanning the internet for systems info on valuable targets

    April 3, 2019

    A new form of malware is scanning the internet for exposed web services and default passwords in what’s thought to be a reconnaissance operation – one which might signal a larger cyberattack is to come. Researchers at AT&T Alien Labs first spotted the malware in March and have named it Xwo after its primary module name. It’s thought that Xwo ...

  • 540 Million Facebook User Records Found On Unprotected Amazon Servers

    April 3, 2019

    It’s been a bad week for Facebook users. First, the social media company was caught asking some of its new users to share passwords for their registered email accounts and now… …the bad week gets worse with a new privacy breach. More than half a billion records of millions of Facebook users have been found exposed on unprotected Amazon cloud ...

  • Microsoft Edge and Internet Explorer Zero-Days Allow Access to Confidential Session Data

    April 2, 2019

    On March 30th, security researcher James Lee disclosed information on two zero-day vulnerabilities present in current versions of Microsoft Edge and Internet Explorer. These vulnerabilities make it possible for confidential information to be shared between websites. A flaw in the same-origin policy for these web browsers, called an Origin Validation Error (CWE-346), allows JavaScript embedded in a malicious ...

  • Hackers reveal how to trick a Tesla into steering towards oncoming traffic

    April 2, 2019

    A team of hackers has managed to trick the Tesla Autopilot feature into dive-bombing into the wrong lane remotely through root control and a few stickers. Researchers from Tencent Keen Security Lab published a report this week (.PDF) on their findings, which shows how the Tesla Autopilot system engine control unit (ECU) can be abused through root security ...

  • Mobile-First Phishing Kit Targets Verizon Customers

    April 2, 2019

    As people increasingly go mobile-first in their work and personal lives, cybercrime is keeping up: The latest is a phishing kit that specifically targets Verizon Wireless customers in the U.S. According to Jeremy Richards, a researcher at Lookout Security, the kit pushes phishing links to users via email, masquerading as messages from Verizon Customer Support. These ...

  • Mystery of the Chinese woman who allegedly tried to sneak into Trump’s Mar-a-Lago with a USB stick of malware

    April 2, 2019

    A Chinese woman was caught sneaking into President Trump’s Mar-a-Lago country club with a thumb drive of malware, it was claimed yesterday. Yujing Zhang, 32, was collared after possibly trying to slip into a bash at the swanky resort promoted by Li “Cindy” Yang, the former massage parlor boss who denies allegations she sold access to the president and his ...

  • Google Warns of Growing Android Attack Vector: Backdoored SDKs and Pre-Installed Apps

    April 1, 2019

    Google is reporting an uptick in efforts by bad actors to plant potentially harmful applications (PHAs) on Android devices via pre-installed apps and by bundling them with system updates delivered over the air. The technique is especially troubling, Google said, because PHAs are often malicious and users have no control over what comes pre-installed on their ...

  • AI infosec biz Darktrace boasts near-doubled revenues as firm alumni battle HPE in civil case

    April 1, 2019

    Darktrace, the security startup backed in part by Mike Lynch, the exec currently involved in a big civil fraud case being heard at the UK’s High Court, has nearly doubled turnover and reported deeper losses. The firm, started by Cambridge Uni maths boffins and folk with infosec experience gained at intelligence agencies, said in its latest results (PDF)that revenue ...

  • U.S. hackers helped UAE spy on Al Jazeera chairman, BBC host

    April 1, 2019

    A group of American hackers who once worked for U.S. intelligence agencies helped the United Arab Emirates spy on a BBC host, the chairman of Al Jazeera and other prominent Arab media figures during a tense 2017 confrontation pitting the UAE and its allies against the Gulf state of Qatar. The American operatives worked for Project ...

  • Jeff Bezos: Saudi Arabia accused of gaining access to Amazon chief’s phone

    March 31, 2019

    Saudi Arabia has accessed the phone of Amazon boss Jeff Bezos and obtained private data from it, his security officer has said. Gavin De Becker launched an investigation after the National Enquirer published intimate texts that Mr Bezos had sent to his mistress, television anchor Lauren Sanchez. Shortly before their publication, Mr Bezos had become the subject ...

  • Critical Rockwell Automation Bug in Drive Component Puts IIoT Plants at Risk

    March 29, 2019

    A critical Rockwell Automation flaw could be exploited to manipulate an industrial drive’s physical process and or even stop it. A critical denial-of-service (DoS) vulnerability has been found in a Rockwell Automation industrial drive, which is a logic-controlled mechanical component used in industrial systems to manage industrial motors. The vulnerability was identified in Rockwell Automation’s PowerFlex 525 ...

  • Landmark terror finance resolution adopted by Security Council

    March 28, 2019

    Speaking via video-link from Rome, where he has been meeting specialist Italian law enforcement officials to discuss building closer ties to tackle the problem; The UN’s counter-terrorism chief, Vladimir Voronkov, said that the adoption comes at a “critical time,” with recent attacks demonstrating that terror groups continue to have access to both legal and illegal ...

  • Elfin: Relentless Espionage Group Targets Multiple Organizations in Saudi Arabia and U.S.

    March 27, 2019

    Although heavily focused on the Middle East, Elfin (aka APT33) has also targeted a range of organizations in the U.S. including a number of major corporations. The Elfin espionage group (aka APT33) has remained highly active over the past three years, attacking at least 50 organizations in Saudi Arabia, the United States, and a range of ...

  • Grindr Poses National Security Risk, U.S. Gov Says

    March 27, 2019

    The Committee on Foreign Investment in the United States (CFIUS) has named the ownership of popular gay dating app Grindr a national security risk, according to a report. Grindr describes itself as “the world’s largest social networking app for gay, bisexual, transgender and queer people.” As of 2018, it said that Grindr app reaches 196 countries ...

  • Ransomware Behind Norsk Hydro Attack Takes On Wiper-Like Capabilities

    March 27, 2019

    Researchers are still looking for answers when it comes to LockerGoga’s initial infection method – and what the attackers behind the ransomware really want. LockerGoga, the malware that took down Norsk Hydro last week, has taken the industrial world by storm, as researchers race to uncover more about the mysterious ransomware that crippled several of the ...

  • The latest dark web cyber-criminal trend: Selling children’s personal data

    March 27, 2019

    Imagine you’re a teenager, applying for credit to buy your first car or maybe a loan to go to university. You don’t remember taking out a credit card when you were six years old, but the bank is adamant, and now you have a poor credit rating and in their eyes, you’re persona non grata. ...

  • Threat Landscape for Industrial Automation Systems in H2 2018

    March 27, 2019

    All statistical data used in this report was collected using the Kaspersky Security Network (KSN), a distributed antivirus network. The data was received from those KSN users who gave their consent to have data anonymously transferred from their computers. We do not identify the specific companies/organizations sending statistics to KSN, due to the product limitations and regulatory ...

  • Malware Payloads Hide in Images: Steganography Gets a Reboot

    March 25, 2019

    Low-key but effective, steganography is an old-school trick of hiding code within a normal-looking image, where many cybersecurity pros may not think to look. One of the challenges of cybersecurity is that overfocusing on one threat trend means that another one can sneak up on you. This is especially problematic as our networks and the attack ...