Thursday , 27 July 2017
Home » Author Archives: Japonica Jackson

Author Archives: Japonica Jackson

Japonica is head of editorial at IT Security Guru. If you'd like to get in touch with Japonica, please email editor@itsecurityguru.org.

Russian man who helped develop Citadel malware gets 5 years

A Russian man who prosecutors say helped develop and distribute malware designed to steal personal financial information was sentenced Wednesday to five years in prison. Mark Vartanyan, also known as “Kolypto,” was sentenced by US District Court Judge Mark Cohen in Atlanta after pleading guilty in March to computer fraud, federal prosecutors said. Vartanyan received two years of credit for time served, ... Read More »

Publication of NukeBot trojan’s source code leads to new ‘operational’ samples

New “operational” samples of the NukeBot banking trojan have emerged months after its original creator published its source code. NukeBot’s source code leak, which occurred in late March 2017, apparently attracted the attention of malware developers seeking to push out their own threats. Kaspersky Lab’s Sergey Yunakovsky spotted some of those new samples in the wild. A few are “active,” but most ... Read More »

Security Flaws Are Everywhere. Even in Segway Hoverboards

Ninebot, the company behind Segway hoverboards, has issued new firmware to fix various security flaws that allow an attacker to connect to and take over users’ devices. The flaws were discovered last year by Thomas Kilbride, a security researcher for IOActive, who contacted the company in private and disclosed his findings. In a report published today, Kilbride details three major issues. The ... Read More »

TSB to roll out iris scanning tech

Imagine logging onto your bank account just by glancing at your phone. That’s what some TSB customers will be able to do from September when the bank introduces iris recognition to its mobile banking app. It will be the first bank in Europe to introduce the technology, but its arrival will test customers’ trust in biometric technology. Customers will need ... Read More »

Google rolls out new protections against phishing plugins

Google is making it even harder to accidentally install a malicious plugin. Today, the company announced new changes to the way Google services handle plugins, adding new warnings for users and a more involved verification system for apps. The result is more scrutiny on apps plugging into Google services, and more active involvement from Google when an app seems suspicious. The ... Read More »

Newcastle council leaks details of adopted children and their families

Details of thousands of children and their adoptive parents have been leaked by Newcastle city council workers who accidentally attached them to invitations for a summer party. The council admitted the adoption data breach, which it blamed on “human error”, and apologised. It has taken steps to contact all those involved. It could face a fine of up to £50,000. ... Read More »

Britain’s cyber security center says has never certified Kaspersky products

Britain’s National Cyber Security Centre said on Tuesday it had never certified products from Russian cyber security firm Kaspersky Lab. “The NCSC certifies products through a range of initiatives, and vendors apply to have their products certified via one of our accredited lab partners,” the NCSC, which is part of Britain’s GCHQ eavesdropping security agency, said. “We certify products through ... Read More »

A UK business will spend more than £1m recovering from a data security breach – NTT Security 2017 Risk:Value

The cost of recovering from of a security breach for UK organisations has been estimated in a new report launched today by NTT Security, the specialised security company of NTT Group. The 2017 Risk:Value report, the company’s third annual study of business decision makers’ attitudes to risk and the value of information security to global organisations, reveals that a UK ... Read More »

Ashley Madison throws US$11.2m on the bed to mop up leak affair

Dating site for cheaters Ashley Madison has thrown US$11.2 million on the bed to make its 2015 data leak go away. View Full Story ORIGINAL SOURCE: The Register Read More »

Malware installs Signal as part of scheme to steal Mac users’ banking credentials

New Mac malware is mysteriously pushing the Signal private-messaging app onto victims’ mobile devices as part of a scheme to steal their banking credentials. View Full Story ORIGINAL SOURCE: Graham Cluley Read More »