Monthly Archives: September 2018

Russian Sednit APT used the first UEFI rootkit of ever in attacks in the wild

Security experts from ESET have spotted the first UEFI rootkit of ever, the code tracked as LoJax was used in attacks in the wild. Security researchers from ESET have discovered a […]

Posted in Cyber Security News | Comments Off on Russian Sednit APT used the first UEFI rootkit of ever in attacks in the wild

50 million Facebook user accounts affected by security breach

According to Facebook, today, it discovered a security breach that affects nearly 50 million user accounts. The issue was found by its engineering team on Tuesday afternoon. “We’re taking this […]

Posted in Cyber Security News | Comments Off on 50 million Facebook user accounts affected by security breach

Hide and Seek (HNS) IoT Botnet targets Android devices with ADB option enabled

The latest samples of the HNS bot were designed to target Android devices having the wireless debugging feature ADB enabled. The Hide and Seek (HNS) IoT botnet was first spotted early this […]

Posted in Cyber Security News | Comments Off on Hide and Seek (HNS) IoT Botnet targets Android devices with ADB option enabled

The Evolving State of Enterprise Security, From Endpoint to Network

The “traditional” enterprise network died a long time ago. The modern network is open, with access to — and creation and consumption of — corporate data everywhere. It includes public […]

Posted in Cyber Security News | Comments Off on The Evolving State of Enterprise Security, From Endpoint to Network

Bitcoin Core Team fixes a critical DDoS flaw in wallet software

Bitcoin Core Software fixed a critical DDoS attack vulnerability in the Bitcoin Core wallet software tracked as CVE-2018-17144. The Bitcoin Core team urges miners to update client software with the […]

Posted in Cyber Security News | Tagged , , , , , , , , , , , | Comments Off on Bitcoin Core Team fixes a critical DDoS flaw in wallet software

Operator of Scan4You Malware-Scanning sentenced to 14 Years in prison

The Latvian expert Ruslans Bondars (37), who developed and run the counter antivirus service Scan4You has been sentenced to 14 years in prison. Bondars was convicted of conspiracy to violate […]

Posted in Cyber Security News | Comments Off on Operator of Scan4You Malware-Scanning sentenced to 14 Years in prison

Hackers stole $60 Million worth of cryptocurrencies from Japanese Zaif exchange

Cybercriminals have stolen 6.7 billion yen ($60 million) worth of cryptocurrencies from the Japanese digital currency exchange Zaif exchange. According to the Tech Bureau Corp., a Japanese cryptocurrency firm, hackers […]

Posted in Cyber Security News | Comments Off on Hackers stole $60 Million worth of cryptocurrencies from Japanese Zaif exchange

The Airport Security Nightmare

While airlines find increasingly ingenious ways to inconvenience their customers in the name of security, the real threats are now coming from cyberspace. by Tony Glover, Senior Consultant, Tony Glover […]

Posted in Cyber Security News | Comments Off on The Airport Security Nightmare

Flaw in Western Digital My Cloud exposes the content to hackers

An authentication bypass vulnerability in Western Digital My Cloud NAS could allow hackers to access the content of the storage Researchers at security firm Securify have discovered an elevation of privilege vulnerability in […]

Posted in Cyber Security News | Comments Off on Flaw in Western Digital My Cloud exposes the content to hackers

Breaking News: White House Launches National Cyber Strategy

Today, the Trump Administration released its new cyber security strategy. “We must protect the American people, the homeland, and our great American way of life.” President Donald J. Trump There […]

Posted in Cyber Security News | Comments Off on Breaking News: White House Launches National Cyber Strategy

New XBash malware combines features from ransomware, cryptocurrency miners, botnets, and worms

Palo Alto Network researchers discovered a new malware, tracked as XBash, that combines features from ransomware, cryptocurrency miners, botnets, and worms Security researchers at Palo Alto Networks have discovered a […]

Posted in Cyber Security News | Comments Off on New XBash malware combines features from ransomware, cryptocurrency miners, botnets, and worms

One year later BlueBorne disclosure, over 2 Billion devices are still vulnerable

One year after the discovery of the BlueBorne Bluetooth vulnerabilities more than 2 billion devices are still vulnerable to attacks. In September 2017, experts with Armis Labs devised a new […]

Posted in Cyber Security News | Comments Off on One year later BlueBorne disclosure, over 2 Billion devices are still vulnerable

Cyber attack took offline flight display screens at the Bristol Airport

The Bristol Airport was hit by a cyber attack that caused problems with operations, flight display screens were taken offline for two days. The Bristol Airport was hit by a […]

Posted in Cyber Security News | Comments Off on Cyber attack took offline flight display screens at the Bristol Airport

SPECIAL REPORT: Going Beyond HIPAA Compliance: A Case Study

A Case Study on how Black River Memorial Hospital Improved Security Posture HIPAA compliance is a big piece of any healthcare organization’s cybersecurity process. However, the goal of any compliance […]

Posted in Cyber Security News | Comments Off on SPECIAL REPORT: Going Beyond HIPAA Compliance: A Case Study

New PyLocky Ransomware stands out for anti-machine learning capability

Security experts from Trend Micro have spotted a new strain of ransomware involved in attacks in July and August, the malicious code was posing as the Locky ransomware. Researchers at Trend […]

Posted in Cyber Security News | Comments Off on New PyLocky Ransomware stands out for anti-machine learning capability

Microsoft Patch Tuesday updates for September 2018 also address recently disclosed Windows zero-day

Microsoft Patch Tuesday updates for September 2018 address over 60 vulnerabilities, including the recently disclosed zero-day flaw. Microsoft Patch Tuesday updates for September 2018 address 61 vulnerabilities in Internet Explorer […]

Posted in Cyber Security News | Comments Off on Microsoft Patch Tuesday updates for September 2018 also address recently disclosed Windows zero-day

Hacking the Hacker – Free – Time Sensitive Offer

Cyber Defense Magazine Special Offer – Request Your Free eBook Now: “Hacking the Hacker ($13 Value) FREE For a Limited Time” Meet the world’s top ethical hackers and explore the tools of the […]

Posted in Cyber Security News | Comments Off on Hacking the Hacker – Free – Time Sensitive Offer

Mirai and Gafgyt target Apache Struts and SonicWall to hit enterprises

Security experts with Unit 42 at Palo Alto Networks have discovered new variants of the Mirai and Gafgyt IoT malware targeting enterprises. Both botnets appear very interesting for two main reasons: The […]

Posted in Cyber Security News | Comments Off on Mirai and Gafgyt target Apache Struts and SonicWall to hit enterprises

Patch Tuesday Update

September Brings Updates for Google Chrome, Adobe Flash Player; Microsoft Releases Fixes for 61 Unique CVEs Including ALPC Elevation of Privilege Vulnerability by Chris Goettl, director of product management, Security, […]

Posted in Cyber Security News | Comments Off on Patch Tuesday Update

A growing number of iOS apps collect and sell location data

A growing number of iOS apps currently collect location data, WiFi network IDs and other data, from iPhone users and sell them to monetization firms. A group of security researchers that […]

Posted in Cyber Security News | Comments Off on A growing number of iOS apps collect and sell location data

Russian citizen behind JPMorgan Chase and Dow Jones attacks extradited to US

Andrei Tyurin, the man that is accused to be the responsible for major cyber attacks against financial institutions, including JPMorgan Chase, was extradited to the United States from Georgia. The Russian citizen […]

Posted in Cyber Security News | Comments Off on Russian citizen behind JPMorgan Chase and Dow Jones attacks extradited to US

British Airways hacked, attackers stole details of 380,000 customers

Personal and payment card information of 380,000 British Airways customers were stolen by attackers, stolen data did not include travel or passport details. British Airways was hacked, customer personal and payment […]

Posted in Cyber Security News | Comments Off on British Airways hacked, attackers stole details of 380,000 customers

6 Users to Put On Your Organization’s Security Watch List

Who are the most dangerous threats to your organization’s data security? Hackers and cybercriminals seem like the obvious choice. But even well-meaning employees can become security threats. Does this sound […]

Posted in Cyber Security News | Comments Off on 6 Users to Put On Your Organization’s Security Watch List

Experts warn of 7,500+ MikroTik Routers that are hijacking owners’ traffic

The security firm Qihoo 360 Netlab discovered more than 7,500 MikroTik routers that have been compromised to enable Socks4 proxy maliciously Earlier August, experts uncovered a massive crypto jacking campaign that was […]

Posted in Cyber Security News | Comments Off on Experts warn of 7,500+ MikroTik Routers that are hijacking owners’ traffic

Parental control spyware app Family Orbit hacked, pictures of hundreds of monitored children were exposed

The company that sells the parental control spyware app Family Orbit has been hacked, pictures of hundreds of monitored children were left online. The company that sells the parental control […]

Posted in Cyber Security News | Comments Off on Parental control spyware app Family Orbit hacked, pictures of hundreds of monitored children were exposed

Critical remote code execution flaw patched in Packagist PHP package repository

Maintainers of Packagist, the largest PHP package repository, have recently addressed a critical remote code execution vulnerability. Packagist is the default package host behind Composer, it has over 435 million package installs. […]

Posted in Cyber Security News | Comments Off on Critical remote code execution flaw patched in Packagist PHP package repository

Kaspersky warns of a new Loki Bot campaign target corporate mailboxes

Security experts from Kaspersky Lab have uncovered a new spam campaign leveraging the Loki Bot malware to target corporate mailboxes. The Loki Bot attacks started in July and aimed at stealing passwords from […]

Posted in Cyber Security News | Comments Off on Kaspersky warns of a new Loki Bot campaign target corporate mailboxes

Some of the world’s biggest crimes go unnoticed, until it’s too late

As the way we live and work becomes increasingly sophisticated, complex and connected, the benefits are clear to see as things get more streamlined and intuitive with every passing day. […]

Posted in Cyber Security News | Comments Off on Some of the world’s biggest crimes go unnoticed, until it’s too late

12th Anniversary Top InfoSec Innovator & Black Unicorn Awards for 2024 are now Open! Finalists Notified Before BlackHat USA 2024...

X