Month: December 2017

Cyber News Rundown: Edition 12/15/17

Read full post The Cyber News Rundown brings you the latest happenings in cyber news weekly. Who am I? I’m Connor Madsen, a Webroot Threat Research Analyst, and a guy with a passion for all things security. Any questions? Just...

/ December 15, 2017

TRITON Attacker Disrupts ICS Operations, While Botching Attempt to Cause Physical Damage

Read full post TRITON malware is discovered after an attack on a safety monitoring system accidentally triggered the shutdown of an industrial process at an undisclosed organization.

/ December 14, 2017

BlueBorne Attack Highlights Flaws in Linux, IoT Security

Read full post Bluetooth vulnerabilities let attackers control devices running Linux or any OS derived from it, putting much of the Internet of Things at risk, including popular consumer products.

/ December 14, 2017

What’s in your Android’s December security update?

Read full post Android has released two security bulletins for December containing mitigations and fixes for 47 vulnerabilities for all devices.

/ December 14, 2017

Starbucks Wi-Fi hijacked customers’ laptops to mine cryptocoins

Read full post A 10-second delay when customers connected to the “free” Wi-Fi was harnessed for secret cryptocoin mining

/ December 14, 2017

Mr. Robot season 3 finale: shutdown -r

Read full post This season’s final instalment of the Mr. Robot security review.

/ December 14, 2017

Why Hackers Are in Such High Demand, and How They’re Affecting Business Culture

Read full post White hat hackers bring value to organizations and help them defend against today’s advanced threats.

/ December 14, 2017

Mirai botnet authors plead guilty

Read full post The authors of the infamous Mirai botnet – used to launch record-breaking Distributed Denial of Service (DDoS) attacks last year that knocked major segments of the internet offline – have pleaded guilty to federal cybercrime charges.

/ December 14, 2017

Is a Good Offense the Best Defense Against Hackers?

Read full post A proposed new law could make it legal for companies to hack back against attacker. But will it work?

/ December 14, 2017

Cybersecurity Trends 2018: The costs of connection

Read full post To help the reader navigate through the maze of such threats, ESET’s thought leaders have zeroed in on several areas that top the priority list in our exercise in looking forward. The post Cybersecurity Trends 2018: The...

/ December 14, 2017

Bitfinex cryptocurrency exchange is back up after repeated DDoS

Read full post It’s been hit by two attacks in just over a week, as well as a third in November. Expect more as currency values continue to skyrocket.

/ December 14, 2017

Connected car security outfit Upstream Security snags $9m in funding

Read full post The company wants to use the cash to expand in the US and Europe.

/ December 14, 2017

2 Million Fake Net Neutrality Comments Stole American Identities

Read full post New York Attorney General Eric Schneiderman updates the investigation into fake content submitted during the net neutrality comment process.

/ December 13, 2017

Malware Decompiler Tool Goes Open Source

Read full post Avast’s RetDec machine-code decompiler now available for free on Github.

/ December 13, 2017

Google Sheds Light on Data Encryption Practices

Read full post Google explains the details of how it secures information in the cloud and encrypts data in transit.

/ December 13, 2017

Freeze your credit after the Equifax hack? Get ready to face Healthcare.gov hurdles

Read full post A surge in Americans enrolling in health insurance plans is expected before the Friday deadline.

/ December 13, 2017

Former Rutgers Student, Two Others Plead Guilty to Operating Mirai Botnet

Read full post Trio faces up to five years in federal prison and fines of up to $250,000

/ December 13, 2017

80% of Americans Admit to Risky Cybersecurity Behaviors

Read full post Nearly half of survey respondents use unsecured WiFi networks and a third open unsolicited email attachment, a report finds.

/ December 13, 2017

Healthcare Faces Poor Cybersecurity Prognosis

Read full post Experts say the healthcare industry is underestimating security threats as attackers continue to seek data and monetary gain.

/ December 13, 2017

Maker of sneaky Mac adware sends security researcher cease-and-desist letters

Read full post “If there’s code that’s mining data and hiding itself on a computer without any way of removing it, that’s malware, plain and simple.”

/ December 13, 2017

Google Play Offered Fewer Blacklisted Mobile Apps in Q3

Read full post Third-party AndroidAPKDescargar store carried the most blacklisted mobile apps.

/ December 13, 2017

8 Steps for Building an IT Security Career Path Program

Read full post A cybersecurity career-path program can help with talent retention and recruitment.

/ December 13, 2017

8 Steps for Building an IT Security Career Path Program

Read full post A cybersecurity career-path program can help with talent retention and recruitment.

/ December 13, 2017

Security researcher says DirecTV hardware can be easily hacked

Read full post The flaw was privately disclosed to the device maker in June, but six months later, there’s still no patch.

/ December 13, 2017

Break the Internet: a last ditch attempt to save net neutrality

Read full post Fight the Future activists say get creative: call lawmakers, change your Facebook status to married and list your partner as net neutrality.

/ December 13, 2017

The risky business of bitcoin: High-profile cryptocurrency catastrophes of 2017

Read full post As Bitcoin lurches toward mainstream acceptance, ZDNet reviews the high-profile disasters, data breaches, vulnerabilities, and criminal cases that shook up digital currency in 2017.

/ December 13, 2017

Automation Could Be Widening the Cybersecurity Skills Gap

Read full post Sticking workers with tedious jobs that AI can’t do leads to burnout, but there is a way to achieve balance.

/ December 13, 2017

Netflix sparks privacy row after making fun of users of Twitter

Read full post “To the 53 people who’ve watched A Christmas Prince every day for the past 18 days: Who hurt you?”

/ December 13, 2017

Massive Uber data scraping and secret servers exposed in Waymo suit

Read full post It’s old news that Uber has legal troubles on its plate – but the plot has thickened considerably in recent weeks.

/ December 13, 2017

Mirai botnet attacker pleads guilty to federal US charges

Read full post The Mirai botnet threw vast swathes of the US internet offline in a cyberattack last year.

/ December 13, 2017

5 ransomware as a service (RaaS) kits – SophosLabs investigates

Read full post A look at five RaaS kits and how each is marketed and priced

/ December 13, 2017

Black Hat Asia 2018: First Briefings Announced

Read full post Black Hat Asia returns to Singapore, March 20-23, 2018 with hands-on technical Trainings, cutting-edge Briefings, Arsenal open-source tool demonstrations, top-tier solutions and service providers in the Business Hall, and more.

/ December 13, 2017

Memes: the explanation of nearly everything – including computer viruses

Read full post We still don’t have a solid scientific theory of memes; nonetheless, they already allow us to understand why certain things happen the way they do. Memes are “alive”; they reproduce, mutate, and evolve according to Darwinian laws....

/ December 13, 2017

Apple plugs IoT HomeKit hole

Read full post Apple just can’t seem to get away from the theme of security flaws right now.

/ December 13, 2017

ROBOT exploit from 1998 resurrected, leaves top websites’ crypto vulnerable

Read full post The 19-year-old vulnerability impacts websites from Facebook to Paypal as well as popular software.

/ December 13, 2017

Almost one billion video stream users exposed to secret cryptocurrency mining

Read full post Popular video streaming and ripping services are secretly mining crypto through visitor PC power.

/ December 13, 2017

Adobe patches Business Logic error in Flash

Read full post This Patch Tuesday is minimal with only one bug resolved.

/ December 13, 2017

It’s time to patch your Microsoft and Adobe software again against vulnerabilities

Read full post It’s the second Tuesday of the month, and you know what that means… Yep, it’s time for another bundle of essential security updates from Microsoft. The post It’s time to patch your Microsoft and Adobe software again...

/ December 12, 2017

Security Compliance: The Less You Spend the More You Pay

Read full post The costs of complying with data protection requirements are steep, but the costs of non-compliance are even higher, a new study shows.

/ December 12, 2017

Microsoft Azure AD Connect Flaw Elevates Employee Privilege

Read full post An improper default configuration gives employees unnecessary administrative privilege without their knowledge, making them ideal targets for hackers.

/ December 12, 2017