Microsoft Office flaw exploited by suspected Iranian APT group

Microsoft Office flaw exploited by suspected Iranian APT group

Researchers believe a suspected Iranian APT group is responsible for a recent cyber-espionage operation that targeted a Middle Eastern government organisation.
By Bradley Barth Dec 12 2017, 10:36AM
Alleged HBO hacker, two others possibly linked to Iranian APT group

Alleged HBO hacker, two others possibly linked to Iranian APT group

Researchers with ClearSky Cyber Security believe with medium-level confidence that they've linked three individuals to the Iranian advanced persistent threat group Charming Kitten, including the man accused of hacking HBO.
By Bradley Barth Dec 7 2017, 11:02AM
Data breach at PayPal's TIO Networks unit affects 1.6 million customers

Data breach at PayPal's TIO Networks unit affects 1.6 million customers

PayPal Holdings on Friday acknowledged that a data breach at recently acquired payments processor TIO Networks compromised the personally identifiable information of roughly 1.6 million customers.
By Bradley Barth Dec 6 2017, 10:51AM
Fake WhatsApp update on Google Play promoted malware disguised as game

Fake WhatsApp update on Google Play promoted malware disguised as game

A fake WhatsApp application that was downloaded one million times from the Google Play Store was observed advertising a malicious game app that infects users with secondary malware.
By Bradley Barth Nov 30 2017, 10:57AM
Former internet troll reveals secrets of Russia's Internet Research Agency

Former internet troll reveals secrets of Russia's Internet Research Agency

A former insider at Russia's Internet Research Agency (IRA) has divulged details on the online troll factory's operations, stating that he "absolutely" believes the organisation is connected to the Kremlin.
By Bradley Barth Nov 21 2017, 10:53AM
Kaspersky offers alternate theory for how NSA hacking tools were stolen

Kaspersky offers alternate theory for how NSA hacking tools were stolen

Kaspersky Lab has released findings from its own internal probe into how Russian cyber spies identified and stole U.S. hacking tools from an NSA contractor's laptop - found evidence that the laptop had been infected with malware.
By Bradley Barth Nov 20 2017, 10:27AM
New IcedID banking trojan already rivals worst of its malware peers

New IcedID banking trojan already rivals worst of its malware peers

A banking trojan that's been targeting US financial institutions and services since at least September is already as advanced in its capabilities as its predecessors Zeus, Gozi, and Dridex, researchers from IBM have reported.
By Bradley Barth Nov 16 2017, 1:23PM
Bug in anti-malware defenses mistakenly blocks users' Google Docs files

Bug in anti-malware defenses mistakenly blocks users' Google Docs files

Google issued a public apology after a bug mistakenly caused its defences against malware, phishing, and spam to block some users' access to Google Docs files on 31 October.
By Bradley Barth Nov 7 2017, 1:23PM
LG patches app bug that can turn IoT vacuums into robotic spies

LG patches app bug that can turn IoT vacuums into robotic spies

LG patches holes in its IOT device range following cooperation with CheckPoint, including patching vacuum cleaners which could have become digital spies in the home.
By Bradley Barth Oct 31 2017, 10:38AM
Phishing campaigns used victim's location to determine whether to deliver Locky or Trickbot

Phishing campaigns used victim's location to determine whether to deliver Locky or Trickbot

Researchers at PhishMe recently detected two email-based phishing campaigns that infected users with either Lockyransomware or the Trickbot banking trojan based on the victim's geographical location.
By Bradley Barth Oct 23 2017, 12:01PM
Gambling machine guru Blaine Graboyes bets big on security

Gambling machine guru Blaine Graboyes bets big on security

Has the one-armed bandit met its match in the sophisticated cyber-thief?
By Bradley Barth Oct 23 2017, 10:21AM
Modified video games on Russian forum tainted with WaterMiner cryptominer

Modified video games on Russian forum tainted with WaterMiner cryptominer

A Russian hacker implanted a stealth cryptominer in his creations, including a mod of Grand Theft Auto that was recently found on a Russian-speaking forum, available for download.
By Bradley Barth Oct 19 2017, 10:08AM
Kaspersky Lab renews threat sharing relationship with INTERPOL

Kaspersky Lab renews threat sharing relationship with INTERPOL

Kaspersky Lab and Interpol announced on Thursday that they have signed a new cyber-crime threat sharing pact that will strengthen the two organisations' collaborative relationship.
By Bradley Barth Oct 16 2017, 1:16PM
Apple kills bugs in iCloud for Windows, macOS High Sierra, macOS Server

Apple kills bugs in iCloud for Windows, macOS High Sierra, macOS Server

Apple has issued security updates for its macOS operating system, macOS Server, and iCloud for Windows products, fixing 67 vulnerabilities.
By Bradley Barth Sep 28 2017, 9:58AM
BlueBorne shows Bluetooth protocol's security inadequately researched

BlueBorne shows Bluetooth protocol's security inadequately researched

The highly eclectic and fragmented nature of devices relying on Bluetooth means that some may never issue secure updates.
By Bradley Barth Sep 15 2017, 12:20PM
Malicious replacement touchscreens could completely compromise phones

Malicious replacement touchscreens could completely compromise phones

Mobile users who substitute their damaged phone touchscreens or other hardware components with third-party replacements could be infecting their phones with malicious components.
By Bradley Barth Aug 28 2017, 12:56PM
Mac users under attack as never before, and android ransomeware up 138%

Mac users under attack as never before, and android ransomeware up 138%

In the first half of 2017, incidences of Android malware increased more than five percent since the start of the year.
By Bradley Barth Aug 28 2017, 10:51AM
New fileless cryptocurrency miner abuses WMI, leverages EternalBlue

New fileless cryptocurrency miner abuses WMI, leverages EternalBlue

This is not the way you want to be mining bitcoins.
By Bradley Barth Aug 23 2017, 10:50AM
Malicious PowerPoint slide show files deliver REMCOS RAT

Malicious PowerPoint slide show files deliver REMCOS RAT

Malware distributors are now maliciously crafting PowerPoint Open XML Slide Show (PPSX) files to take advantage of a Microsoft Office vulnerability.
By Bradley Barth Aug 17 2017, 11:16AM
Microsoft overseas data: US judges claim extra-territorial jurisdiction

Microsoft overseas data: US judges claim extra-territorial jurisdiction

Two US judges rule against Microsoft Ireland decision in cases pitting Google against DOJ
By Bradley Barth Aug 15 2017, 11:59AM