Low-cost wireless keyboards open to keystroke sniffing and injection attacks

Zeljka Zorz

https://www.helpnetsecurity.com/2016/07/26/keystroke-sniffing-wireless-keyboards/

Excerpt:

“Bastille Networks researcher Marc Newlin has discovered a set of security vulnerabilities in low-cost wireless keyboards that could be exploited to collect all passwords, security questions, sensitive personal, bank account and payment card info users input through them.”


DDoS attacks increase 83%, Russia top victim

https://www.helpnetsecurity.com/2016/07/27/ddos-attacks-increase-russia-top-victim/

Excerpt:

“DDoS attacks increased 83 percent to more than 182,900 attacks in the second quarter of the year, according to Nexusguard.”


88% of all ransomware is detected in the healthcare industry

https://www.helpnetsecurity.com/2016/07/27/ransomware-healthcare-industry/

Excerpt:

“Solutionary found that companies in the healthcare industry had the most ransomware present, accounting for 88 percent of all ransomware detections in Q2. In addition, Cryptowall was the top ransomware variant detected during the quarter, accounting for nearly 94 percent of detections.”


Sophisticated ransomware: New tactics to maximize profit

https://www.helpnetsecurity.com/2016/07/27/sophisticated-ransomware/

Excerpt:

“Organizations are unprepared for future strains of more sophisticated ransomware, according to the Cisco 2016 Midyear Cybersecurity Report. Fragile infrastructure, poor network hygiene, and slow detection rates are providing ample time and air cover for adversaries to operate.”


Law enforcement and IT security companies join forces to fight ransomware

https://www.helpnetsecurity.com/2016/07/25/no-more-ransom/

Excerpt:

“Today, the Dutch National Police, Europol, Intel Security and Kaspersky Lab launched the No More Ransom initiative, a new step in the cooperation between law enforcement and the private sector to fight ransomware together.”


Snowden wants you to know when your phone is revealing your location

Zeljka Zorz

https://www.helpnetsecurity.com/2016/07/22/snowden-phone-location/

Excerpt:

“NSA whistleblower Edward Snowden and hardware hacker Andrew “Bunnie” Huang have possibly come up with a solution for warning users when their phones are revealing their location via radio transmissions.”


Alleged Kickass Torrents owner arrested, site taken down

https://www.helpnetsecurity.com/2016/07/21/kickass-torrents-owner-arrested/

Excerpt:

“Artem Vaulin, a 30-year-old Ukrainian that is believed to be the creator and owner of Kickass Torrents, currently the most popular and most visited illegal file-sharing website, has been arrested in Poland on Wednesday.”


Companies are unprepared to protect key assets

https://www.helpnetsecurity.com/2016/07/22/protect-key-assets/

Excerpt:

“Knowledge assets are confidential information critical to a company’s core business – other than personal information that would trigger notice requirements under law – including trade secrets and corporate confidential information such as product design, development or pricing; other non-public information about the organization, its plans or relationships; or other crucial customer information.”


Anonymous Launches DDoS Attack Against Rio Court That Blocked WhatsApp in Brazil

Catalin Cimpanu

http://news.softpedia.com/news/anonymous-launches-ddos-attack-against-rio-court-that-blocked-whatsapp-in-brazil-506468.shtml

Excerpt:

“The Brazil branch of the Anonymous hacker collective has launched a DDoS attack against the website (tjrj.jus.br) of the Rio court that banned WhatsApp usage across the country.”


Overreliance on perimeter-based defense creates opportunities for attackers

https://www.helpnetsecurity.com/2016/07/21/perimeter-based-defense/

Excerpt:

“RSA has announced the results of research that demonstrates organizations in Asia Pacific & Japan (APJ) investing in detection and response technologies are better poised to defend against today’s advanced threats, in comparison to those primarily utilizing perimeter-based solutions.”


Taiwan ATMs 'robbed of $2.5m by European hackers'

http://www.bbc.co.uk/news/world-asia-36824507

Excerpt:

“Three foreign suspects have been arrested in Taiwan in connection with the theft of $2.5m (£1.9m) from cash machines around the country.”


UK rail network hit by multiple cyber attacks last year

Cara McGoogan and Lydia Willgress 

http://www.telegraph.co.uk/technology/2016/07/12/uk-rail-network-hit-by-multiple-cyber-attacks-last-year/

Excerpt:

“The UK railway network was the victim of at least four major cyber attacks in the last 12 months, according to a private security company that works with the network.”


Carbanak Gang Tied to Russian Security Firm?

Brian Krebs

http://www.krebsonsecurity.com/2016/07/carbanak-gang-tied-to-russian-security-firm/

Excerpt:

“Among the more plunderous cybercrime gangs is a group known as “Carbanak,” Eastern European hackers blamed for stealing more than a billion dollars from banks. Today we’ll examine some compelling clues that point to a connection between the Carbanak gang’s staging grounds and a Russian security firm that claims to work with some of the world’s largest brands in cybersecurity.”


DDoS attacks continue to escalate in both size and frequency

https://www.helpnetsecurity.com/2016/07/19/ddos-attacks-escalate/

Excerpt:

“Arbor Networks released global DDoS attack data for the first six months of 2016 that shows a continuing escalation in the both the size and frequency of attacks.”


Chinese Hackers Deface Two Philippines Government Websites

Catalin Cimpanu

http://news.softpedia.com/news/chinese-hackers-deface-two-philippines-government-websites-506385.shtml

Excerpt:

“Hackers claiming to be Chinese have defaced official government portals for two local government units (LGUs) from the Philippines.”


Android Trojan prevents victims from calling their banks

Zeljka Zor

https://www.helpnetsecurity.com/2016/07/15/android-trojan-prevents-calls/

Excerpt:

“Some malware prevents victims to visit sites from which they could download antivirus software, or kills AV software found running on the infected machines and devices.”


US sentences Chinese hacker for stealing military information

http://www.bbc.com/news/world-us-canada-36791114

Excerpt:

“A Chinese businessman who pleaded guilty to hacking sensitive military information has been sentenced to nearly four years in prison in the US.”


Privacy row over FBI iris scan 'trial'

http://www.bbc.com/news/technology-36783515

Excerpt:

“The FBI has collected nearly 430,000 iris scans over the past three years, an investigation by technology website The Verge, has revealed.”


Hackers Steal Data from Polish Defence Ministry and Ask for $50,000 Ransom

Catalin Cimpanu

http://news.softpedia.com/news/hackers-steal-data-from-polish-defense-ministry-and-ask-for-a-50-000-ransom-506342.shtml

Excerpt:

“A group of hackers who call themselves "Pravyy Sector" [Right Sector] are extorting the Polish Government on Twitter, threatening to release data stolen from Poland's Defence Ministry if the government doesn't pay $50,000, either to a Ukrainian bank account or a Bitcoin address.”


76% of companies believe IoT is critical to success

https://www.helpnetsecurity.com/2016/07/15/iot-success/

Excerpt:

“Vodafone published its global survey of business sentiment regarding innovation and investment in the Internet of Things. The survey was conducted by Circle Research in April and May 2016 and involved more than 1,096 companies around the world.”


Cash Mules for Russian Cyber-Crime Syndicate Sent to Jail

Catalin Cimpanu

http://news.softpedia.com/news/cash-mules-for-russian-cyber-crime-syndicate-sent-to-jail-506293.shtml

Excerpt:

“British authorities sent to jail five Russian nationals living in the UK for money laundering operations involving funds stolen via banking malware.”


Russians and Malware Involved in $2 Million ATM Heist in Taiwan

Catalin Cimpanu

http://news.softpedia.com/news/russians-and-malware-involved-in-2-million-atm-heist-in-taiwan-506247.shtml

Excerpt:

“Taiwan's top eight banks have suspended operations on 900 ATMs after crooks stole NT$70 million ($2.18 million) from 20 branches across two cities over the weekend.”


EU to invest €450 million in cybersecurity research

https://www.helpnetsecurity.com/2016/07/06/eu-cybersecurity-investment/

Excerpt:

“The European Commission launched a new public-private partnership on cybersecurity that is expected to trigger €1.8 billion of investment by 2020. The EU cybersecurity investment will be €450 million. This is part of a series of new initiatives to better equip Europe against cyber-attacks and to strengthen the competitiveness of its cybersecurity sector.”


New Mac OS X backdoor disguised as document converter app

Zeljka Zorz

https://www.helpnetsecurity.com/2016/07/06/mac-os-x-backdoor/

Excerpt:

“Bitdefender researchers have discovered and analyzed a new, highly dangerous piece of malware targeting Mac systems and users.”


Irish government to ask for communications interception powers

Max Metzger

http://www.scmagazineuk.com/irish-government-to-ask-for-communications-interception-powers/article/507438/

Excerpt:

“Ireland's deputy prime minister, Frances Fitzgerald, is expected to propose new powers to intercept communications today.”


Using a Colleague's Willingly Shared Password Considered "Hacking" in the US

Catalin Cimpanu

http://news.softpedia.com/news/using-a-colleague-s-willingly-shared-password-considered-hacking-in-the-us-506021.shtml

Excerpt:

“The California 9th Circuit Court of Appeals ruled yesterday that if a person uses a password willingly shared by someone else, it still constitutes a "hacking" offense in certain circumstances, according to the ancient CFAA (Computer Fraud and Abuse Act) law.”


The many faces of ransomware

Mordechai Guri

https://www.helpnetsecurity.com/2016/07/06/ransomware-everywhere/

Excerpt:

“Ransomware has grabbed mainstream media attention recently but it’s nothing new – in fact, its origins can be traced back to floppy disk times. Part of ransomware’s new found notoriety is certainly due to the criminals’ latest target of choice, the healthcare industry, which is considered sacrosanct to most. And ransomware’s very nature lends itself to news-worthy headlines.”


United Nations says government disruption of internet is a human rights violation

Eric David

http://siliconangle.com/blog/2016/07/04/united-nations-says-government-disruption-of-internet-is-a-human-rights-violation/

Excerpt:

“The United Nations recently passed a non-binding resolution that condemns countries that intentionally disrupts their citizens’ internet access, arguing that “the same rights that people have offline must also be protected online, in particular freedom of expression, which is applicable regardless of frontiers and through any media of one’s choice.”


Hackers are coming for your healthcare records -- here’s why

Lucas Mearian

http://www.csoonline.com/article/3090553/security/hackers-are-coming-for-your-healthcare-records-heres-why.html

Excerpt:

“Data stolen from a bank quickly becomes useless once the breach is discovered and passcodes are changed. But data from the healthcare industry, which includes both personal identities and medical histories, can live a lifetime.”


Android Keyboard App with over 50 Million Installs Secretly Collects Your Data

Catalin Cimpanu

http://news.softpedia.com/news/android-keyboard-app-with-over-50-million-installs-secretly-collects-your-data-505935.shtml

Excerpt:

“Google removed one of its Top 20 most popular Android apps from the Play Store after an investigation from Pentest, a UK-based cyber-security firm who discovered that the application violated the Mountain View-based giant's policies by showing a deceptive behavior.”


As threats evolve, faster response times are essential

https://www.helpnetsecurity.com/2016/07/01/threats-evolve-faster-response-times-essential/

Excerpt:

“Two thirds of respondents to a global survey by the Business Continuity Institute reported that they had experienced at least one cyber incident during the previous twelve months, and 15% reported they had experienced at least ten incidents during the same period.”