September 30, 2016
The massive data breach that Yahoo! confirmed to the world last week is claimed by the company to have been carried out by a “state-sponsored actor” in 2014, which exposed the accounts of at least 500 Million Yahoo users.
September 29, 2016
A small, yet very sophisticated group of cyber-criminals named the Vendetta Brothers is behind numerous attacks on PoS systems and ATMs across the US and Scandinavian countries.
Cisco Sinkholes GozNym Banking Trojan Botnet
September 29, 2016
The Cisco Talos team has announced today that they’ve successfully managed to sinkhole one of GozNym’s botnets and are in the process of doing the same to three others.
Bounty for iOS jailbreak exploit jumps to $1.5 million
September 29, 2016
Zerodium is the same company that offered $1 million for an iOS jailbreak exploit last year
RIG Surpasses Neutrino to Become Today’s Most Active Exploit Kit
September 29, 2016
The exploit kit landscape is changing and according to multiple sources, activity from the Neutrino exploit kit service si waning, with the RIG crew moving in to take its place.
New Android Mobile Banking Trojan Emerges in South Korea
September 29, 2016
Zscaler has detected a new Android banking trojan that is currently only active in South Korea, where it infects users posing as a popular antivirus app and then stealing SMS messages and authentication certificates used for banking operations.
September 28, 2016
The European Commission proposed measures on Wednesday to increase controls on exports of cyber-surveillance goods and technologies that can be used to violate human rights or threaten international security.
September 28, 2016
NHS Digital aims to put the UK’s healthcare sector on a firm cyber security footing, according to Rob Shaw, chief operating officer at NHS Digital’s Data Security Centre.
September 27, 2016
Israeli start-ups attracted total investments of $2.8bn in the first half of 2016. This is 35% more than in the first six months of 2015.
September 27, 2016
Despite billions in spending on cybersecurity, enterprise IT is less secure than it was 10 years ago, said Art Coviello, a venture partner at Rally Ventures.
September 26, 2016
Companies should face severe financial penalties if they fail to keep customers’ data safe, a majority of directors believe, amid a spate of cyber attacks on big businesses.
September 25, 2016
On Sunday, Swiss voters decided with a 66.5 percent majority to give their own government more spying powers over their daily lives.
Over 850,000 Devices Affected by Unpatched Cisco Zero-Day
September 25, 2016
A scan of Cisco networking devices from around the world has revealed that hundreds of thousands of devices are vulnerable to an unpatched security issue that allows attackers to retrieve data from the equipment’s memory.
Hacker Gets 10 Years in Prison for Using Malware to Steal Data from US Companies
September 25, 2016
A Romanian hacker received a ten-year prison sentence last week after he previously pleaded guilty to hacking several US companies and stealing data from their networks.
German Military Hacked Afghan Mobile Operator to Discover Hostage’s Whereabouts
September 24, 2016
A special cyber unit of the Bundeswehr carried out Germany’s first ever offensive cyber-operation by hacking into the network of an Afghan mobile operator to track the location of a group of kidnappers that had taken hostage a young German woman.
Yahoo Hit by First Lawsuit One Day After Announcing Huge Data Breach
September 24, 2016
It took one day for ambulance chasers to file lawsuits against Yahoo over its recently announced data breach that exposed the personal details of over 500 million of its users.
September 23, 2016
Tie-up marks the first step in the development of two world-class cyber innovation centres to receive £50m over five years to help keep the nation secure.
September 23, 2016
Data from at least 500 million Yahoo users was “stolen” during an attack in 2014, the internet company has said.
September 23, 2016
The OpenSSL Foundation has patched over a dozen vulnerabilities in its cryptographic code library, including a high severity bug that can be exploited for denial-of-service (DoS) attacks.
FAA Advisory Body Recommends Cybersecurity Measures
September 22, 2016
Manufacturers, carriers, maintenance facilities and even airports may eventually need to include cybersecurity factors in routine activities
Leaked NSA Hacking Tools Were ‘Mistakenly’ Left By An Agent On A Remote Server
September 22, 2016
The leaked hacking tools, which enable hackers to exploit vulnerabilities in systems from big vendors like Cisco Systems, Juniper, and Fortinet, were dumped publicly online by the group calling itself “The Shadow Brokers.”
Cyber attacks on satellites could spark global catastrophe, experts warn
September 22, 2016
The world is unprepared for how vulnerable it is to attack from the skies, argues a major new paper from Chatham House
iPhone 7 Jailbreak Has Already Been Achieved In Just 24 Hours!
September 22, 2016
It has only been a few days since the launch of Apple’s brand new iPhone 7 and iPhone 7 Plus, but it appears that the new iPhone has already been jailbroken.
Cybersecurity is threatening America’s military supremacy
September 22, 2016
Targeted Chinese cyber attacks designed to impact America’s physical military systems in the South China Sea are the most substantial evidence that we may be on the brink of a more tangible cyber threat to American military power.
Cyber-Security researchers hack into Tesla Model S, company issues security patch
September 21, 2016
Tesla Motors Inc has rolled out a security patch for its electric cars after Chinese security researchers uncovered vulnerabilities they said allowed them to remotely attack a Tesla Model S sedan.
HKMA to add cyber security, anti-money laundering knowledge to bankers’ certification
September 19, 2016
Starting in December, new programmes will be added to the HKMA’s Enhanced Competency Framework (ECF) for local banker
Mitigating cyber security threats within the energy sector
September 19, 2016
As the energy sector seeks to improve its efficiency and reliability, infrastructure operators must be aware that the increased use of hyper connectivity, including Supervisory Control And Data Acquisition (SCADA) and Industrial Control System (ICS), can increase exposure to cyber-attacks across the energy value chain.
Zero-percent cybersecurity unemployment, 1 million jobs unfilled
September 19, 2016
The numbers haven’t changed much since then. There’s still roughly 1 million job openings in 2016 — which is expected to reach 1.5 million by 2019.
The Biggest Cybersecurity Threats Are Inside Your Company
September 19, 2016
When security breaches make headlines, they tend to be about nefarious actors in another country or the catastrophic failure of technology
September 18, 2016
A massive email-based attack occurred over the weekend of August 13 and 14, which resulted in the flooding of 100+ email inboxes for various government accounts, and other smaller targets.
Nearly 800,000 FTP Servers Accessible Online Without Authentication
September 18, 2016
A recent brute-force scan of FTP servers available online via an IPv4 address revealed that 796,578 boxes can be accessed without the need for any credentials.
Firefox Browser vulnerable to Man-in-the-Middle Attack
September 18, 2016
The vulnerability could allow a man-in-the-middle attacker who is able to obtain a forged certificate for addons.mozilla.org to impersonate Mozilla servers and as a result, deliver a malicious update for NoScript, HTTPS Everywhere or other Firefox extensions installed on a targeted computer.
Wall Street Software Firm Sued After Losing $6 Million in Email Scam
September 17, 2016
Tillage Commodities Fund, a US investment firm, is suing SS&C Technologies, a Wall Street technology firm, after the latter lost $6 million of the former’s money, forcing it to shut down operations temporarily
Fancy Bears Hackers Leak Another Batch of Useless WADA Files
September 15, 2016
Russian hackers using the name Fancy Bears and posing as an offshoot of the Anonymous hacker collective have released more files they stole from WADA servers this past summer.
Cyber security awareness growing within business sector, research shows
September 15, 2016
While awareness of cyber security risks is improving, fewer firms know how much an attack is likely to cost them
September 14, 2016
Linux users have yet another trojan to worry about, and as always, crooks are deploying it mostly to hijack devices running Linux-based operating systems and use them to launch DDoS attacks at their behest.
Massive Data Breach Exposes 6.6 Million Plaintext Passwords from Ad Company
September 14, 2016
The data breach has exposed plaintext passwords, usernames, email addresses, and a large trove of other personal information of more than 6.6 Million ClixSense users.
Volkswagen sets up cyber security firm with ex-Israeli spy chief
September 14, 2016
Volkswagen is forming a company with the former head of Israel’s Shin Bet intelligence agency to develop cyber security systems for Internet-connected cars and self-driving vehicles
September 14, 2016
International conference CYBER TRENDS accompanying with CYBER WORKSHOPS, live demostration and simulation test areas aims to deepen close cooperation in European cyber security.
September 13, 2016
Ciaran Martin warned that far too many unsophisticated cyber attacks are succeeding, going on to discuss the government’s new more pro-active cyber security strategy — including looking into large scale DNS filtering as a potential method to automate blocking malware at scale.
September 13, 2016
The cybersecurity risks that oil and gas companies face continue to grow, according to the 2016 BDO “Oil & Gas Risk Factor” report.
Central Bank warns financial firms over cybersecurity risks
September 13, 2016
The Central Bank of Ireland has warned that regulated financial firms here are not implementing “sufficiently robust” IT systems and controls and must increase their resilience to technology failures to “minimise the potential impact on their business, reputations and the wider financial system”.
Stopping Hackers from Turning off the Lights
September 13, 2016
According to a U.S. Department of Homeland Security report, although “the energy sector only represents 5-6 percent of U.S. GDP, the energy industry is subject to roughly 32 percent of all cyberattacks.”
Cyber attacks raise questions about blockchain security
September 12, 2016
Flaws in the code and storage problems are headaches for the financial industry
Former CIA CTO Gus Hunt to Lead Accenture Federal Services’ Cybersecurity Practice
September 12, 2016
Ira “Gus” Hunt, former chief technology officer for the CIA, has joined Accenture Federal Services (AFS) to lead its cybersecurity practice.
September 12, 2016
The International Air Transport Association (IATA), The International Civil Aviation Organization (ICAO) and Airports Council International (ACI) have joined forces to address evolving aviation security risks with integrated solutions.
September 12, 2016
Attackers only need to tweak their smartphone’s software and place the device up to 30 centimeters away from a 3D printer.
Cybersecurity and the hospitality industry
September 11, 2016
Cybercriminals are now finding it easier to target multiple small restaurants. In fact, nearly half of cyberattacks worldwide in 2015 were against small businesses with fewer than 250 workers.
Israeli Police Arrest Owners of vDos DDoS-for-Hire Service
September 11, 2016
Israeli police arrested on Thursday two 18-year-olds, Itay Huri and Yarden Bidani, the alleged owners of a DDoS-for-Hire service named vDos, recently exposed by infosec journalist Brian Krebs.
New USB Kill 2.0 Thumb Drive Can Kill Your Laptop or PC in a Second
September 9, 2016
A Hong Kong company is selling a USB thumb drive called USB Kill 2.0 that can fry any computer it’s plugged into by introducing a power surge via the USB port.
White House names retired Air Force general as first cyber security chief
September 9, 2016
Gregory Touhill’s job will be to protect government networks and critical infrastructure from cyber threats as federal chief information security officer, according to a statement.
FBI Arrests Two Hackers Who Hacked US Spy Chief, FBI and CIA Director
September 8, 2016
US authorities have arrested two North Carolina men on charges that they were part of the notorious hacking group “Crackas With Attitude.”
ISPs: UK Police Need to “Up Their Game” on Following Cybercrime Leads
September 8, 2016
Law enforcement bodies in the UK “need to up their game” when taking leads on cybercrime from internet service providers (ISPs), according to the Internet Service Providers Association (ISPA), which published a report this week.
NHS Digital to expand CareCERT cyber security focus
September 8, 2016
NHS Digital is to begin expanding its Care Computer Emergency Response Team (CareCERT) cyber security service as a means to improve the resilience of systems used in both health and social care provision.
Why corporate security fails – A focus on leadership
September 8, 2016
For too many organisations, cyber-security is seen as the sole responsibility of the company CIO or CISO, when the reality is that everyone now needs a sound appreciation of cyber-security best-practices.
Intel to spin out cybersecurity unit, sell stake in business to TPG
September 7, 2016
Intel said it would spin out its cyber security division, formerly known as McAfee, and sell a majority stake in it to investment firm TPG for $3.1 billion in cash.
Just an Image Can Hack Your Android Phone — Patch Now
September 6, 2016
Along with the dangerous Quadrooter vulnerabilities that affected 900 Million devices and other previously disclosed issues, Google has patched a previously-unknown critical bug that could let attackers deliver their hack hidden inside an innocent looking image via social media or chat apps.
DC’s Cybersecurity Startup Scene Is Hot. Can It Get Hotter?
September 6, 2016
Cybersecurity startups around Washington have been on fire this summer. A handful of companies collectively have raised more than $100 million in the last six weeks or so, all approaching cybersecurity from different angles despite similar goals.
Global Risk Institute calls emerging quantum computing technology major threat to cybersecurity systems
September 6, 2016
Acording to a report from Toronto-based Global Risk Institute, emerging quantum computing technology threaten to undermine cybersecurity systems installed by businesses and governments.
Obama touts U.S. cybersecurity strength after meeting with Putin
September 5, 2016
Obama said the United States has strong offensive and defensive cybersecurity capabilities.
September 5, 2016
A hacker that uses the name Pahan has had a prodigious streak of infecting fellow hackers with all sorts of malware, presumably for his own gain.
September 2, 2016
The company warns users of OS X El Capitan and Yosemite software to install updates as soon as possible.
Florida Man Arrested for Hacking Linux Kernel Organization
September 2, 2016
According to a four-count indictment, Donald Ryan Austin, 27, of El Portal, Florida, gained access to server credentials used by an individual associated with the Linux Kernel Organization.
Romanian Hacker Guccifer Sentenced to 52 Months in a US Prison
September 1, 2016
Marcel Lehel Lazar, 44, of Arad, Romania, a former cab driver turned hacker who used the name Guccifer, was sentenced to 52 months (4 years 4 months) in prison by a US court.