Thursday , 21 June 2018
Home » NEWS

NEWS

Organisations need stronger immunity against email-borne infections

Lewis Henderson,
Glasswall Solutions

By Lewis Henderson, VP of Product, Glasswall Solutions The success of the Rubella Macro Builder toolkit has demonstrated that the cyber-crime-as-a-service is in rude health right across Europe. A report from Flashpoint reveals that the toolkit has been used to create malicious macros in Microsoft Office documents sent as email attachments in massive criminal spam campaigns. Rubella Macro Builder is ... Read More »

DDoS Defence Demands a Hybrid Approach

Ronald Sens,
A10 Networks

By Ronald Sens, EMEA Director, A10 Networks Just imagine that a DDoS attack is crushing your network. Your enterprise’s internet pipe is under siege and almost to capacity. There is nowhere else for the traffic to go, making it impossible for legitimate user traffic to get through. So, what is the result? The attack is successful, your network or services ... Read More »

Younger employees identified as main culprits for security breaches in the workplace

More than a third of senior executives believe that younger employees are the “main culprits” for data security breaches in the workplace according to a new independent study into attitudes of the next generation workforce about cybersecurity, commissioned by Centrify, a leading provider of Zero Trust Security through the power of Next-Gen Access. More worrying is that the study also ... Read More »

New vulnerabilities in Phoenix Contact switches endanger industrial networks

Phoenix Contact, a German electrical engineering and automation company, has disclosed four vulnerabilities in FL SWITCH industrial switches. These devices are used for automation at digital substations and in oil and gas, maritime, and other industries. The vulnerabilities were discovered by Positive Technologies experts Vyacheslav Moskvin, Semyon Sokolov, Evgeny Druzhinin, Ilya Karpov, and Georgy Zaytsev. The most hazardous of the ... Read More »

Texas cancer center faces $4.3M fine for data breaches

Federal health officials have ordered the University of Texas MD Anderson Cancer Center to pay a $4.3 million fine for failing to secure health records stemming from data breaches. The Houston Chronicle reports the U.S. Department of Health and Human Services announced Monday that MD Anderson’s failure to encrypt health records violated the 1996 patient privacy law known as the Health Insurance Portability ... Read More »

Employers Should Reward Staffers Who Dodge Online Scams, Thwart Ransomware, Study Shows

Weak passwords and phishing are two of the most popular attack vectors for cybercriminals looking to steal financial information – in the case of regular users – or sensitive data such as medical records – in situations where bad actors are seeking to profit from extortion or ransomware. OpenVPN, the group behind the popular virtual private network application of the same ... Read More »

Most small businesses fail to act after a cyber attack

Nearly two-thirds (65%) of small businesses in the US fail to act following a cyber security incident, according to the 2018 Hiscox small business cyber risk report. The report also reveals that 47% of more than 1,000 small businesses polled had suffered at least one cyber attack in the past year, and that 44% that reported a cyber attack in the past ... Read More »

Building a malware distribution network is too easy with Kardon Loader

Researchers from Netscout Arbor have discovered a downloader advertised on underground forums dubbed Kardon Loader, it allows customers to build a malware distribution network or a botshop. Advs for Kardon Loader were first discovered on April 21, 2018, the author who goes online with the moniker Yattaze asks $50 for the application program and offers it as a standalone build, charging users for each additional ... Read More »

New SamSam Variant Requires Special Password Before Infection

New versions of the SamSam ransomware will not execute unless the person running the malware’s payload enters a special password via the command-line. This is a new protection mechanism added by the SamSam crew in a recent SamSam version discovered by Malwarebytes researchers. Previous versions did not feature this mechanism, meaning anyone who found a SamSam binary could have infected ... Read More »

Are your IoT gizmos, music boxes, smart home kit vulnerable to DNS rebinding attacks? Here’s how to check

A technique for attacking computer networks, first disclosed more than a decade ago, has resurfaced as a way to manipulate Internet-of-Things gadgets, smart home equipment, and streaming entertainment gizmos. Researcher Brannon Dorsey this week posted an essay explaining how smart home hardware can be vulnerable to a trick known as DNS rebinding. He also crafted this website that, with your permission, will run JavaScript ... Read More »