Month: April 2017

Ransomware hidden inside a Word document that’s hidden inside a PDF

Read full post Spam campaign delivers Locky ransomware that, like a Russian matryoshka doll, is nested inside not one but two layers

/ April 24, 2017

Monday review – the hot 18 stories of the week

Read full post From Burger King’s Google Home trigger and how tech scammer have made millions to the many vulnerabilities found in Linksys routers, & more!

/ April 24, 2017

Son of Russian MP thrown in US jail for hacking crimes

Read full post The 32-year-old specialized in stealing credit card data for sale on the Dark Web.

/ April 24, 2017

Twitter has a spam bot problem — and it’s getting worse

Read full post A Romanian spammer is in part behind a sudden surge in fake Twitter followers in recent weeks. But it’s not something Twitter seems to want to deal with.

/ April 23, 2017

US court hits Russian PoS hacker with record 27 year jail sentence

Read full post Russian hacker receives the longest sentence ever handed down for hacking-related charges in the United States. The post US court hits Russian PoS hacker with record 27 year jail sentence appeared first on WeLiveSecurity

/ April 22, 2017

Russian Citizen Gets Record 27-Year Sentence for Hacking, Fraud Scheme

Read full post Roman Valeryevich gets 27 years for hacking PoS machines. Meanwhile, spam master Pyotr Levashov’s indictment is unsealed.

/ April 21, 2017

Android Geo-Location Spyware Installed By Up To 5 Million Users

Read full post SMSVova, disguised itself as a system update app and duped between 1 million and 5 million users into downloading it from the Google Play store.

/ April 21, 2017

Machine Learning in Security: 4 Factors to Consider

Read full post Key factors to consider before adding machine learning to your security strategy.

/ April 21, 2017

News in brief: Google Home gets smarter; Hackers target South Korean missiles; Harry Huskey dies

Read full post Your daily round-up of some of the other stories in the news

/ April 21, 2017

Multiple security holes discovered in Linksys routers

Read full post As with every router vulnerability, a key issue is, “How many owners will hear about the issue and bother to update?”

/ April 21, 2017

Surprise! Your online banking password might not be as secure as you thought

Read full post Several major banks don’t use case-sensitive passwords.

/ April 21, 2017

Nigerian Convicted in Passport Wire Fraud and Internet Scam

Read full post A Nigerian man set up a number of U.S. bank accounts with bogus passports over a one year period, in which he managed to steal at least $500,000 through wire fraud and Internet scams.

/ April 21, 2017

The Hidden Dangers of Component Vulnerabilities

Read full post Dangerous flaws in open source components and dependencies lurk within most applications today.

/ April 21, 2017

Young cybercriminals ‘more motivated by peer respect than financial gain’

Read full post A new report suggests young cybercriminals are often motivated by the possibility of notoriety, rather than financial gain. The post Young cybercriminals ‘more motivated by peer respect than financial gain’ appeared first on WeLiveSecurity

/ April 21, 2017

Exploits Targeting Corporate Users Surged Nearly 30% In 2016

Read full post At same time, number of attacks targeting software vulnerabilities in systems used by consumers declined over 20%, Kaspersky Lab says in new report.

/ April 21, 2017

Best Practices for Securing Open Source Code

Read full post Attackers see open source components as an obvious target because there’s so much information on how to exploit them. These best practices will help keep you safer.

/ April 21, 2017

Cyber News Rundown: Edition 4/21/17

Read full post The Cyber News Rundown brings you the latest happenings in cyber news weekly. Who am I? I’m Connor Madsen, a Webroot Threat Research Analyst, and a guy with a passion for all things security. Any more questions?...

/ April 21, 2017

UK government reports on business breaches and it’s not pretty

Read full post Almost half have experienced a cyber attack while a third do not have anyone at board level tasked with cyber security.

/ April 21, 2017

Navy and Marines crack down on nude photo sharing

Read full post The crackdown on nonconsensual nudes follows the discovery of the private Facebook group “Marines United”

/ April 21, 2017

6 Times Hollywood Got Security Right

Read full post Hollywood has struggled to portray cybersecurity in a realistic and engaging way. Here are films and TV shows where it succeeded.

/ April 20, 2017

In Obama’s final year, US secret court denied record number of surveillance requests

Read full post It’s an unprecedented spike given that the FISA court has only turned down 21 government requests in three decades.

/ April 20, 2017

Kill Chain & the Internet of Things

Read full post IoT “things” such as security cameras, smart thermostats and wearables are particularly easy targets for kill chain intruders, but a layered approach to security can help thwart an attack.

/ April 20, 2017

News in brief: Google ‘plans native adblocker’; Facebook seeks fake news lead; near miss for Earth

Read full post Your daily round-up of some of the other stories in the news

/ April 20, 2017

Fake Delta Airlines Receipt Packs Malware

Read full post Phishing emails, disguised as receipts from Delta Airlines, trick victims into downloading malware.

/ April 20, 2017

Nearly half of UK businesses experienced a cybersecurity incident in the last 12 months

Read full post Nearly half of all UK businesses have experienced a cybersecurity incident over the last 12 months, according to a new government paper. The post Nearly half of UK businesses experienced a cybersecurity incident in the last 12...

/ April 20, 2017

Locked out of your accounts? Facebook wants to hold the key

Read full post Facebook’s planned password recovery process might make some uncomfortable, but the good news is that it won’t involve giving the social media giant access to everything

/ April 20, 2017

Cutting through the Noise: Is It AI or Pattern Matching?

Read full post Many vendors are fudging terms when trying to sell their artificial intelligence security systems. Here’s what you need to know when you buy.

/ April 20, 2017

Mastercard debuts a credit card with a fingerprint sensor to fight fraud

Read full post The fingerprint reader aims to target in-store fraud by reducing the need of PIN codes and signatures.

/ April 20, 2017

APT Attack Activity Occurs at ‘Low, Consistent Hum,’ Rapid7 Finds

Read full post Organizations in industries aligned to nation-state interests are main targets of nation-state attack threats, new quarterly threat report shows.

/ April 20, 2017

Users Overshare Sensitive Enterprise Data

Read full post Survey finds nearly half of the employees trained to protect sensitive data engage in risky security practices.

/ April 20, 2017

Linksys Smart Wi-Fi routers a hotbed of unpatched security flaws

Read full post Over 20 models are impacted, exposing thousands of household devices online to exploit.

/ April 20, 2017

The IoT malware that plays cat and mouse with Mirai

Read full post A botnet dubbed Hajime uses much the same tactics as Mirai – but to neutralise the damage done. Is this a good thing, though?

/ April 20, 2017

AI could be better than your doctor at predicting a heart attack

Read full post In one study, predictive models seem to have done rather better than carbon-based medics at spotting the potential for heart disease, one of the world’s biggest killers

/ April 20, 2017

Millions of game accounts exposed in data breach, responsibility thrown to the wind

Read full post If vendor data breach apathy has set in, we’re all in trouble.

/ April 20, 2017

3 Tips for Updating an Endpoint Security Strategy

Read full post How to face the process of navigating new threats, tools, and features to build an effective endpoint security strategy.

/ April 19, 2017

Google Won’t Trust Symantec and Neither Should You

Read full post As bad as this controversy is for Symantec, the real damage will befall the company and individual web sites deemed untrustworthy by a Chrome browser on the basis of a rejected Symantec certificate.

/ April 19, 2017

Snowden Says Mass Surveillance Programs ‘Are About Power’

Read full post Edward Snowden shared his views of the implications of mass surveillance programs and the government’s objective in implementing them.

/ April 19, 2017

Phishing with ‘punycode’ – when foreign letters spell English words

Read full post Many letters in English come from Greek, so they look the same even if they don’t sound the same. Phishers could use this to trick you…

/ April 19, 2017

News in brief: Bose ‘spying’ on users via app; Samsung annoys users over Bixby; Microsoft raps gag orders

Read full post Your daily round-up of some of the other stories in the news

/ April 19, 2017

InterContinental Hotels Group Breach Checks In at 1,200 Locations

Read full post IHG franchises in its Americas region were hit with a point-of-sale malware breach, affecting 1,200 hotels ranging from its Crowne Plaza to Holiday Inn Express.

/ April 19, 2017