News – September 2018


  • Britain to create 2,000-strong cyber force to tackle Russia threat

    September 21, 2018

    Britain is significantly increasing its ability to wage war in cyberspace with the creation of a new offensive cyber force of up to 2,000 personnel, Sky News understands. The plan by the Ministry of Defence and GCHQ comes amid a growing cyber threat from Russia and after the UK used cyber weapons for the first time ...

  • New Virobot malware works as ransomware, keylogger, and botnet

    September 21, 2018

    A newly discovered malware strain is a multi-tasking threat that besides working as ransomware and encrypting users’ files, it can also log and steal their keystrokes, and add infected computers to a spam-sending botnet. This new threat is named Virobot and appears to be under development, and comprised of multiple components that allow it to work ...

  • British spies ‘hacked into Belgian telecoms firm on ministers’ orders’

    September 21, 2018

    British spies are likely to have hacked into Belgium’s biggest telecommunications operator for at least a two-year period on the instruction of UK ministers, a confidential report submitted by Belgian prosecutors is said to have concluded. The finding would support an allegation made by the whistleblower Edward Snowden five years ago when he leaked 20 slides exposing the ...

  • Equifax fined £500,000 for failing to protect customer details in cyber attack

    September 20, 2018

    A credit reference agency that failed to protect the details of 15 million people in the UK during a cyber attack has been fined £500,000. The personal information lost or compromised during the incident between 13 May and 30 July 2017 ranged from names and dates of birth to addresses, passwords, driving licence and financial details. The Information Commissioner’s ...

  • Major Irish utility networks vulnerable to cyber attacks set to have security increased

    September 19, 2018

    Our water supplies, electricity and gas grids and phone networks are all vulnerable to cyber-attacks from tech-terrorists and are about to have their security beefed-up. That is because all of our utilities and essential State services are in some way or another reliant on digital technology, which in turn makes them vulnerable to digital attack. Minister Denis ...

  • Mirai Botnet Creators Helping FBI Fight Cybercrime to Stay Out of Jail

    September 19, 2018

    Three young hackers who were sentenced late last year for creating and spreading the notorious Mirai botnet are now helping the FBI to investigate other “complex” cybercrime cases in return to avoid their lengthy prison terms. Paras Jha, 21 from New Jersey, Josiah White, 20 from Washington, and Dalton Norman, 21 from Louisiana, plead guilty in December 2017 to multiple ...

  • Cybercrime: Ransomware remains a ‘key’ malware threat says Europol

    September 18, 2018

    Targeted attacks replace spam campaigns, but Europol’s annual cybercrime report also warns that cryptojacking malware “may overtake ransomware as a future threat”. Ransomware remains the top malware threat to organisations, causing millions of dollars of damage and remaining a potent tool for cyber criminals and nation-state attackers. The rise of highly targeted file-locking malware campaigns and the ...

  • US State Department confirms: Unclassified staff email boxes hacked

    September 18, 2018

    The US State Department has confirmed one of its email systems was attacked, potentially exposing the personal information of some of its employees. Uncle Sam’s officials said in a statement to The Register on Tuesday that “suspicious activity” in its email system led it to send out warnings to a number of employees whose personal information may have ...

  • Dangerous Pegasus Spyware Has Spread to 45 Countries

    September 18, 2018

    The malicious spyware has also been found in use in countries known for targeting human rights. The infamous Pegasus spyware, which targets iPhones and Android devices, has allegedly infiltrated 45 different countries across the globe — and six of those countries have used surveillance malware in the past to abuse human rights, a group of researchers ...

  • Zero-Day Bug Allows Hackers to Access CCTV Surveillance Cameras

    September 17, 2018

    Firmware used in up to 800,000 CCTV cameras open to attack thanks to buffer overflow zero-day bug. Between 180,000 and 800,000 IP-based closed-circuit television cameras are vulnerable to a zero-day vulnerability that allows hackers to access surveillance cameras, spy on and manipulate video feeds or plant malware. According to a Tenable Research Advisory issued Monday, the bugs are ...

  • Critical infrastructure will have to operate if there’s malware on it or not

    September 16, 2018

    As threats and cyber-attacks on critical infrastructure are expected to intensify in the near future, cyber-security experts believe that companies and government agencies should be prepared to operate networks even if there’s malware or a threat actor on the network or not. The idea is that cyber-attacks should not cause downtime of any form, and networks should be designed in a way ...

  • Bristol Airport blames hackers for three day technical meltdown

    September 16, 2018

    A cyber attack was the cause behind a three day technical meltdown, according to Bristol Airport. The airport’s information screens were out of service on both Friday and Saturday, with holidaymakers having to read departure times off whiteboards scattered around the airport. An airport spokesman said several systems were taken offline on Friday in a bid to ...

  • New CSS Attack Restarts an iPhone or Freezes a Mac

    September 15, 2018

    A new attack has been discovered that will cause iOS to restart or respring and macOS to freeze simply by visiting a web page that contains certain CSS & HTML. Windows and Linux users are not affected by this bug. This new attack was discovered by Sabri Haddouche, a security researcher at Wire, who was able to devise a ...

  • Keeping up with the changing face of security

    September 14, 2018

    Press Release By Philip Ingram MBE, Grey Hare Media Ltd We have been lucky in 2018 after the terror that tore across Europe and the UK in 2016 – 2017 with vehicle, knife and bomb attacks happening in Nice, London Bridge, Westminster, Manchester and Barcelona. These are just a few of the places left reeling from a wave ...

  • New Cold Boot Attack Unlocks Disk Encryption On Nearly All Modern PCs

    September 13, 2018

    Security researchers have revealed a new attack to steal passwords, encryption keys and other sensitive information stored on most modern computers, even those with full disk encryption. The attack is a new variation of a traditional Cold Boot Attack, which is around since 2008 and lets attackers steal information that briefly remains in the memory (RAM) after ...

  • Government mass surveillance breached human rights, says European court

    September 13, 2018

    Mass surveillance and data collection programs used by the UK government breached privacy and don’t meet the necessary legal requirements to guarantee rights will be upheld, the European Court of Human Rights (ECHR) has ruled. The court has concluded that the UK’s mass interception programmes breached the European Convention on Human Rights. The case of ‘Big ...

  • OilRig APT Continues Its Ongoing Malware Evolution

    September 13, 2018

    The Iran-linked APT appears to be in a state of continuous tool development, analogous to the DevOps efforts seen in the legitimate software world. OilRig, an APT group believed to have ties to Iran, has been spotted in yet another campaign in the Middle East – this time targeting victims within an undisclosed government using an ...

  • Crooks Combine Phishing and Impersonation For Higher Success Rate

    September 12, 2018

    While phishing continues to be the prevalent threat in malware-less email-based attacks, cybercriminals refine their methods by adding an impersonation component to increase the success rate against company employees. Phishing emails are easy to deploy and do not require other preparation from the attacker than crafting a vague message that is sufficiently convincing for a large ...

  • Data management firm Veeam mismanages own data, leaks 445m records

    September 12, 2018

    A company which has built its reputation on global data management services appears to have left a treasure trove of data open to the prying eyes of the public. Baar, Switzerland-based Veeam calls itself the “global leader in intelligent data management” and offers “Hyper-Available” data management solutions able to merge traditional data backup and recovery tools with modern ...

  • Osiris Banking Trojan Displays Modern Malware Innovation

    September 12, 2018

    Osiris’ fundamental makeup positions it in the fore of malware trends, despite being based on old source code that’s been knocking around for years. After staying dormant for few years, the Kronos banking trojan resurfaced in July in a form dubbed Osiris. A wider analysis of how the banking trojan is evolving shows innovative development on ...