Monthly Archives: September 2018
Russian Sednit APT used the first UEFI rootkit of ever in attacks in the wild
Security experts from ESET have spotted the first UEFI rootkit of ever, the code tracked as LoJax was used in attacks in the wild. Security researchers from ESET have discovered a […]
50 million Facebook user accounts affected by security breach
According to Facebook, today, it discovered a security breach that affects nearly 50 million user accounts. The issue was found by its engineering team on Tuesday afternoon. “We’re taking this […]
Hide and Seek (HNS) IoT Botnet targets Android devices with ADB option enabled
The latest samples of the HNS bot were designed to target Android devices having the wireless debugging feature ADB enabled. The Hide and Seek (HNS) IoT botnet was first spotted early this […]
The Evolving State of Enterprise Security, From Endpoint to Network
The “traditional” enterprise network died a long time ago. The modern network is open, with access to — and creation and consumption of — corporate data everywhere. It includes public […]
Bitcoin Core Team fixes a critical DDoS flaw in wallet software
Bitcoin Core Software fixed a critical DDoS attack vulnerability in the Bitcoin Core wallet software tracked as CVE-2018-17144. The Bitcoin Core team urges miners to update client software with the […]
Operator of Scan4You Malware-Scanning sentenced to 14 Years in prison
The Latvian expert Ruslans Bondars (37), who developed and run the counter antivirus service Scan4You has been sentenced to 14 years in prison. Bondars was convicted of conspiracy to violate […]
Hackers stole $60 Million worth of cryptocurrencies from Japanese Zaif exchange
Cybercriminals have stolen 6.7 billion yen ($60 million) worth of cryptocurrencies from the Japanese digital currency exchange Zaif exchange. According to the Tech Bureau Corp., a Japanese cryptocurrency firm, hackers […]
The Airport Security Nightmare
While airlines find increasingly ingenious ways to inconvenience their customers in the name of security, the real threats are now coming from cyberspace. by Tony Glover, Senior Consultant, Tony Glover […]
Flaw in Western Digital My Cloud exposes the content to hackers
An authentication bypass vulnerability in Western Digital My Cloud NAS could allow hackers to access the content of the storage Researchers at security firm Securify have discovered an elevation of privilege vulnerability in […]
Breaking News: White House Launches National Cyber Strategy
Today, the Trump Administration released its new cyber security strategy. “We must protect the American people, the homeland, and our great American way of life.” President Donald J. Trump There […]
New XBash malware combines features from ransomware, cryptocurrency miners, botnets, and worms
Palo Alto Network researchers discovered a new malware, tracked as XBash, that combines features from ransomware, cryptocurrency miners, botnets, and worms Security researchers at Palo Alto Networks have discovered a […]
One year later BlueBorne disclosure, over 2 Billion devices are still vulnerable
One year after the discovery of the BlueBorne Bluetooth vulnerabilities more than 2 billion devices are still vulnerable to attacks. In September 2017, experts with Armis Labs devised a new […]
Cyber attack took offline flight display screens at the Bristol Airport
The Bristol Airport was hit by a cyber attack that caused problems with operations, flight display screens were taken offline for two days. The Bristol Airport was hit by a […]
SPECIAL REPORT: Going Beyond HIPAA Compliance: A Case Study
A Case Study on how Black River Memorial Hospital Improved Security Posture HIPAA compliance is a big piece of any healthcare organization’s cybersecurity process. However, the goal of any compliance […]
New PyLocky Ransomware stands out for anti-machine learning capability
Security experts from Trend Micro have spotted a new strain of ransomware involved in attacks in July and August, the malicious code was posing as the Locky ransomware. Researchers at Trend […]
Microsoft Patch Tuesday updates for September 2018 also address recently disclosed Windows zero-day
Microsoft Patch Tuesday updates for September 2018 address over 60 vulnerabilities, including the recently disclosed zero-day flaw. Microsoft Patch Tuesday updates for September 2018 address 61 vulnerabilities in Internet Explorer […]
Hacking the Hacker – Free – Time Sensitive Offer
Cyber Defense Magazine Special Offer – Request Your Free eBook Now: “Hacking the Hacker ($13 Value) FREE For a Limited Time” Meet the world’s top ethical hackers and explore the tools of the […]
Mirai and Gafgyt target Apache Struts and SonicWall to hit enterprises
Security experts with Unit 42 at Palo Alto Networks have discovered new variants of the Mirai and Gafgyt IoT malware targeting enterprises. Both botnets appear very interesting for two main reasons: The […]
Patch Tuesday Update
September Brings Updates for Google Chrome, Adobe Flash Player; Microsoft Releases Fixes for 61 Unique CVEs Including ALPC Elevation of Privilege Vulnerability by Chris Goettl, director of product management, Security, […]
A growing number of iOS apps collect and sell location data
A growing number of iOS apps currently collect location data, WiFi network IDs and other data, from iPhone users and sell them to monetization firms. A group of security researchers that […]
Russian citizen behind JPMorgan Chase and Dow Jones attacks extradited to US
Andrei Tyurin, the man that is accused to be the responsible for major cyber attacks against financial institutions, including JPMorgan Chase, was extradited to the United States from Georgia. The Russian citizen […]
British Airways hacked, attackers stole details of 380,000 customers
Personal and payment card information of 380,000 British Airways customers were stolen by attackers, stolen data did not include travel or passport details. British Airways was hacked, customer personal and payment […]
6 Users to Put On Your Organization’s Security Watch List
Who are the most dangerous threats to your organization’s data security? Hackers and cybercriminals seem like the obvious choice. But even well-meaning employees can become security threats. Does this sound […]
Experts warn of 7,500+ MikroTik Routers that are hijacking owners’ traffic
The security firm Qihoo 360 Netlab discovered more than 7,500 MikroTik routers that have been compromised to enable Socks4 proxy maliciously Earlier August, experts uncovered a massive crypto jacking campaign that was […]
Parental control spyware app Family Orbit hacked, pictures of hundreds of monitored children were exposed
The company that sells the parental control spyware app Family Orbit has been hacked, pictures of hundreds of monitored children were left online. The company that sells the parental control […]
Critical remote code execution flaw patched in Packagist PHP package repository
Maintainers of Packagist, the largest PHP package repository, have recently addressed a critical remote code execution vulnerability. Packagist is the default package host behind Composer, it has over 435 million package installs. […]
Kaspersky warns of a new Loki Bot campaign target corporate mailboxes
Security experts from Kaspersky Lab have uncovered a new spam campaign leveraging the Loki Bot malware to target corporate mailboxes. The Loki Bot attacks started in July and aimed at stealing passwords from […]
Some of the world’s biggest crimes go unnoticed, until it’s too late
As the way we live and work becomes increasingly sophisticated, complex and connected, the benefits are clear to see as things get more streamlined and intuitive with every passing day. […]