News – August 2017


  • FDA Recalls Nearly Half a Million Pacemakers Over Hacking Fears

    August 31, 2017

    Almost half a million people in the United States are highly recommended to get their pacemakers updated, as they are vulnerable to hacking. The Food and Drug Administration (FDA) has recalled 465,000 pacemakers after discovering security flaws that could allow hackers to reprogram the devices to run the batteries down or even modify the patient’s heartbeat, ...

  • Intel ME controller chip has secret kill switch

    August 29, 2017

    Security researchers at Moscow-based Positive Technologies have identified an undocumented configuration setting that disables Intel Management Engine 11, a CPU control mechanism that has been described as a security risk. Intel’s ME consists of a microcontroller that works with the Platform Controller Hub chip, in conjunction with integrated peripherals. It handles much of the data travelling between ...

  • Russia to Promote Cybersecurity at UNGA, BRICS

    August 28, 2017

    The Russian special presidential representative for international cooperation in information security says that Russia is going to advance the issue of cybersecurity at the UN General Assembly and at the BRICS Summit. Russia intends to promote the issue of cybersecurity at the United Nations General Assembly as well as through regional platforms, such as BRICS summit, Andrei Krutskikh, a special presidential representative ...

  • WireX DDoS Botnet: An Army of Thousands of Hacked Android SmartPhones

    August 28, 2017

    Do you believe that just because you have downloaded an app from the official app store, you’re safe from malware? Think twice before believing it. A team of security researchers from several security firms have uncovered a new, widespread botnet that consists of tens of thousands of hacked Android smartphones. Dubbed WireX, detected as “Android Clicker,” the botnet ...

  • Holiday cyber threat: GCHQ says take extra steps to secure smartphones

    August 26, 2017

    British holidaymakers should take extra measures to secure smartphones and laptops abroad following a series of cyber attacks on hotel Wi-Fi networks across Europe, GCHQ has warned. The agency’s National Cyber Security Centre (NCSC) said travellers should avoid “insecure” WiFi networks and set up “two-step verification” for emails, typically meaning that accounts can only be accessed using a ...

  • Beware of Windows/MacOS/Linux Virus Spreading Through Facebook Messenger

    August 24, 2017

    If you came across any Facebook message with a video link sent by anyone, even your friend — just don’t click on it. Security researchers at Kaspersky Lab have spotted an ongoing cross-platform campaign on Facebook Messenger, where users receive a video link that redirects them to a fake website, luring them to install malicious software. Although it is ...

  • Cybersecurity world faces ‘chronic shortage’ of qualified staff

    August 24, 2017

    The number one issue facing cybersecurity firms is a “chronic shortage” of qualified staff. That’s according to the founder of market analyst Cybersecurity Ventures, Steve Morgan. “The single biggest trend, globally, is that there are chronic work shortages of qualified cyber security staff. It’s an absolute epidemic,” Morgan told supply-chain blog Channelnomics. Morgan’s company in 2016 gathered feedback from executives listed ...

  • A Company Offers $500,000 For Secure Messaging Apps Zero-Day Exploits

    August 23, 2017

    How much does your privacy cost? It will soon be sold for half a Million US dollars. A controversial company specialises in acquiring and reselling zero-day exploits is ready to pay up to US$500,000 for working zero-day vulnerabilities targeting popular secure messenger applications, such as Signal, Telegram and WhatsApp. Zerodium announced a new pricing structure on Wednesday, paying out $500,000 ...

  • VoIP bods Fuze defuse triple whammy of portal security vulnerabilities

    August 23, 2017

    Messaging provider Fuze has resolved a trio of vulnerabilities in its TPN Handset Portal. The access controls and authentication flaws, discovered by security tools firm Rapid7, created a means for hackers to obtain personal data about Fuze users ranging from phone numbers to email addresses and access credentials. Once seized through brute-force attacks, this sensitive data could ...

  • Simple Exploit Allows Attackers to Modify Email Content — Even After It’s Sent!

    August 23, 2017

    Security researchers are warning of a new, easy-to-exploit email trick that could allow an attacker to turn a seemingly benign email into a malicious one after it has already been delivered to your email inbox. Dubbed Ropemaker (stands for Remotely Originated Post-delivery Email Manipulation Attacks Keeping Email Risky), the trick was uncovered by Francisco Ribeiro, the researcher at email and ...

  • Over 500 Android Apps On Google Play Store Found Spying On 100 Million Users

    August 22, 2017

    Over 500 different Android apps that have been downloaded more than 100 million times from the official Google Play Store found to be infected with a malicious ad library that secretly distributes spyware to users and can perform dangerous operations. Since 90 per cent of Android apps is free to download from Google Play Store, advertising ...

  • Anonymous Hacks NHS System, Data of 1.2 Million Patients Allegedly Exposed

    August 21, 2017

    The NHS has once again been the target of hackers, this time with a member of the famous group Anonymous managing to breach the appointment booking system and expose details of 1.2 million patients. SwiftQueue, who handles appointments of eight NHS trusts, confirmed the hack, but said that only some 32,500 “lines of administrative data” had ...

  • Pentagon Thinks Blockchain Technology Can be Used as Cybersecurity Shield

    August 20, 2017

    Just like any currency, Bitcoin has been involved in cases of money-laundering, drug transactions, and terrorism in previous years. However, it has also caught the Pentagon’s eyes as a potential cybersecurity shield. Why Blockchain technology? The US military has been open about their interest in Blockchain technology, so it’s no surprise that they may soon develop their own applications.. US defence analysts have previously ...

  • For UK CEOs, cyber-security is an investment opportunity

    August 19, 2017

    CEOs across the UK are increasingly seeing cyber-security not as a burden, but rather an investment opportunity, a new study has claimed. The KPMG CEO Outlook 2017 report, based on a poll of 150 CEOs in the UK,  found that 70 per cent considered investing in cyber-security an opportunity to find new streams of revenue. The report also found ...

  • China pumping MILLIONS into developing ‘cyber army with world famous web security schools’

    August 18, 2017

    The Cyberspace Administration of China and China’s education ministry announced plans to “build four to six world-famous cyber-security schools in ten years ”. A statement claimed select colleges and universities will implement “comprehensive” interdisciplinary programs that blend engineering expertise with legal and management studies, to “train cyber-security personnel”. Critics have argued that China “aims ...

  • Telco sector’s new cyber regulation

    August 17, 2017

    The Federal Government has got new legislation through the Senate that will compel telcos to notify authorities when they make changes to their networks after a range of amendments were made that increase dialogue and decrease government over-reach. The Telecommunications Sector Security Reforms (TSSR) Bill passed through the Senate earlier this week and has been generally accepted ...

  • 8 More Chrome Extensions Hijacked to Target 4.8 Million Users

    August 16, 2017

    Google’s Chrome web browser Extensions are under attack with a series of developers being hacked within last one month. Almost two weeks ago, we reported how unknown attackers managed to compromise the Chrome Web Store account of a developer team and hijacked Copyfish extension, and then modified it to distribute spam correspondence to users. Just two days after ...

  • NHS Digital does new cyber security deal with Microsoft

    August 16, 2017

    NHS Digital has set up an agreement with Microsoft that will provide support in detecting cyber threats to IT systems relying on outdated operating systems until the middle of next year The provider of data and IT services for health and social care bodies has reached a custom support agreement with the software giant that will ...

  • Backdoor Found in Popular Server Management Software used by Hundreds of Companies

    August 15, 2017

    Cyber criminals are becoming more adept, innovative, and stealthy with each passing day. They are now adopting more clandestine techniques that come with limitless attack vectors and are harder to detect. Recently, cyber crooks managed to infiltrate the update mechanism for a popular server management software package and altered it to include an advanced backdoor, which ...

  • Former Military Cybersecurity Platform to Be Applied in Money Services Business (MSB) Sector

    August 13, 2017

    Recent cyber attacks have increased awareness security on the net. The cyber security market is one of the fastest growing industries in the past few years, due to the increasing penetration of the internet and growing adoption of cloud computing. The global cyber security market is expected to reach $181.77 billion in 2021, according to a report ...