News – April 2017


  • Russian-controlled telecom hijacks financial services’ Internet traffic

    April 28, 2017

    On Wednesday, large chunks of network traffic belonging to MasterCard, Visa, and more than two dozen other financial services companies were briefly routed through a Russian government-controlled telecom under unexplained circumstances that renew lingering questions about the trust and reliability of some of the most sensitive Internet communications. Anomalies in the border gateway protocol—which routes large-scale ...

  • Anti-Virus Still Has An Important Role to Play In Cybersecurity

    April 28, 2017

    As Spring approaches, not only do the flowers begin to blossom and the winter clouds disperse, the tech industry begins to understand what the rest of 2017 may bring. In the cybersecurity world, the dangers lurking in the Smart Home because of glaring holes in device security have been widely publicised. The CES show in Vegas showcased ...

  • TalkTalk hack attack: Two men plead guilty to customer data theft

    April 27, 2017

    Two men have pleaded guilty to hacking into TalkTalk’s website in October 2015 and stealing thousands of customer records containing sensitive data. Matthew Hanley, 22, of Devonshire Drive, Tamworth admitted to three offences under the Computer Misuse Act. The Metropolitan Police said that he confessed to breaching TalkTalk’s site, had obtained files that would enable the ...

  • Pentagon Challenges White Hats with New “Hack the Air Force” Bug Bounty Program

    April 27, 2017

    The Pentagon is launching its largest bug bounty project thus far, this time asking hackers to find flaws in the Air Force’s platforms. “Hack the Air Force” will be open not only to experts in the United States but also from the United Kingdom, Canada, Australia, and New Zealand, or, in other words, what we’ve come ...

  • ​FalseGuide malware victim count jumps to 2 million

    April 26, 2017

    An estimated 2 million Android users have now fallen victim to malware mistakenly downloaded from Google Play, which was initially reported to have affected approximately 600,000 users. The malware, dubbed FalseGuide, was hidden in more than 40 guide apps for games, the oldest of which was uploaded to Google Play as early as November last year, ...

  • International Cyber Security and Intelligence Conference (ICSIC), 7-8 November 2017, Toronto, Canada

    April 26, 2017

    The Ontario College of Management and Technology (OCMT) is proud to host the 2017 International Cyber Security and Intelligence Conference (ICSIC) on November, 7th-8th 2017, at the Allstream Centre in Downtown Toronto, Canada. The very first ICSIC started off with an amazing welcome letter from the Canadian Prime Minister Justin Trudeau. This year the conference will ...

  • Fancy Bear Hackers Target French Presidential Candidate

    April 25, 2017

    A phishing campaign is targeting the emails of French presidential candidate Emmanuel Macron’s campaign staff. All fingers are pointing towards Russia once more. According to security firm Trend Micro who published a new report today, there are signs of a phishing attack targeting Macron, in what feels like deja-vu. The sites that are trying to trick ...

  • Hard Target: Fileless Malware

    April 25, 2017

    The future of client-side malware attacks is fileless. And it would appear the future has arrived with a growing number of attacks using fileless or in-memory malware to pose a threat to business that’s increasingly difficult to neutralize. “There has been an unequivocal uptick in the use of fileless malware as a threat vector,” said Kevin Epstein, ...

  • DOE releases results of energy cybersecurity emergency exercise

    April 25, 2017

    The U.S. Department of Energy (DOE) recently released the findings and recommendations from Liberty Eclipse, a multi-state cyber-energy preparedness exercise hosted by DOE and the National Association of State Energy Officials (NASEO) in December 2016. The exercise simulated a cyber attack on the energy infrastructure, including electricity, gasoline, jet fuel, heating oil, and other energy services, ...

  • Fortinet Supports INTERPOL-led Cybercrime Operation across the Association of Southeast Asian Nations (ASEAN)

    April 24, 2017

    Fortinet has partnered with INTERPOL over the past two years to assist in identifying and thwarting cybercrime. Today, INTERPOL announced that a new operation across the ASEAN region, built around threat intelligence provided by Fortinet and other public and private sector security organizations, has resulted in the identification of nearly 9,000 Command and Control (C2) ...

  • Fake Delta Airline Receipts Spread Financial Malware

    April 24, 2017

    Spam emails posing as Delta Air payment confirmation emails are spreading financial and banking malware to computers. According to Heimdal Security firm, a new campaign trying to get access to your financial information was noticed in the wild. Users are receiving spam emails posing as payment confirmations from Delta Air. As the researchers point out, this is ...

  • NSA’s DoublePulsar Kernel Exploit In Use Internet-Wide

    April 24, 2017

    If you’re on a red team or have been on the receiving end of a pen-test report from one, then you’ve almost certainly encountered reports of Windows servers vulnerable to Conficker (MS08-067), which has been in the wild now for nearly 10 years since the bug was patched. A little more than two weeks after the ...

  • Cardiff cyber security research centre ‘first in Europe’

    April 24, 2017

    A new research centre to tackle cyber attacks has been set up in Cardiff. Launching the Centre of Excellence in Cyber Security Analytics, Cardiff University and Airbus said it was the first of its kind in Europe. Their research will aim to protect corporate IT networks, intellectual property and critical national infrastructure. The university has also been awarded ...

  • INTERPOL World 2017 Congress to lead industry dialogue for a unified approach to combat future crime

    April 24, 2017

    SINGAPORE, 24 April 2017 – INTERPOL World 2017 is set to bring law enforcement agencies, government bodies, academia, security professionals and solution providers together over three days of networking and information exchange this July. The global exhibition and congress aim to stimulate collaborations between stakeholders to address crimes in the future. This year, the INTERPOL World ...

  • Kaspersky Lab to provide insurance policy holders with it forensics in cyber attacks

    April 24, 2017

    Kaspersky Lab will provide IT forensics and incident response services to Allianz Global Corporate Specialty SE (AGCS) cyber insurance customers in Germany, Austria and Switzerland. In a cyber crisis, businesses can now benefit from Kaspersky Lab’s expertise, helping them to limit the damage of security incidents through fast access to Next-Gen services and the ability ...

  • US Court Sentences Russian Lawmaker’s Son to 27 Years in Jail for Hacking

    April 21, 2017

    The son of a prominent Russian lawmaker was sentenced on Friday by a US federal court to 27 years in prison after being convicted of stealing millions of US credit card numbers and causing some $170 million in damages to businesses and individuals. This sentence is so far the longest sentence ever imposed in the United ...

  • Improved cyber security for General Election after Russian hacking scandal

    April 21, 2017

    Cyber security chiefs are to give fresh guidance to protect the general election from being disrupted by hackers. Just weeks ago, Ciaran Martin, chief executive of the National Cyber Security Centre, briefed political party bosses on how they can defend their organisations from online attacks. They were given an overview of threats, case studies on recent cyber ...

  • Six big vendors dominate a fragmented federal cyber market, numbers show

    April 20, 2017

    Federal procurement of cybersecurity goods and services is highly fragmented, according to new research published this week, with more than 7,600 different companies winning U.S. government contracts during the past six years. But despite this long tail of small awards, the market space is dominated by a handful of familiar names. Only six contractors — Leidos, Northrup Grumman, Booz Allen ...

  • Hong Kong to tighten cyber security rules after broker hacks

    April 20, 2017

    Hong Kong plans to toughen information security rules after a series of embarrassing hacks at the city’s brokers, the securities regulator said on Thursday. The draft rules would likely include requirements for two-step authentication for account log-in and for brokers to notify clients when a transaction had been made, a Hong Kong Securities and Futures Commission ...

  • Australia’s bold plan for cybersecurity growth

    April 20, 2017

    The Australian Cyber Security Growth Network (ACSGN) aims to triple the size of the nation’s cybersecurity industry sector, from just over AU$2 billion in revenues today, to AU$6 billion. The goal was announced in Sydney on Thursday at the launch of the ACSGN’s Cyber Security Sector Competitiveness Plan (SCP), their roadmap for reaching that goal. The SCP ...