Editor's News

Kaspersky Lab has said that the Carbanak attackers are targeting financial entities directly in an unprecedented, determined, highly professional and coordinated attack which is still ongoing.   Named Carbanak as it based on the Trojan Carberp and the name of the configuration file is "anak.cfg", Kaspersky’s analysis says that according to what it has found, the first malicious samples were compiled in August 2013 when the controllers started to test the Carbanak malware.   It...

The group who have reportedly stolen $1 billion in two years from 30 countries was initially spotted in December.   The report by Kaspersky Lab found that a multi-national gang of cyber criminals from Russia, Ukraine, China and parts of Europe found that the “Carbanak” criminal gang attempted to attack up to 100 banks, e-payment systems and other financial institutions in around 30 countries where the largest sums were grabbed by hacking into banks and...

More than 60 per cent of mobile dating apps are potentially vulnerable which could put personal user information and corporate data at risk.   A study by IBM of the top 41 dating apps available on Android devices found that many have access to additional features on mobile devices such as the camera, microphone, storage, GPS location and mobile wallet billing information. IBM also found that nearly 50 per cent of organisations analysed have at...

President Obama is to speak at a cyber security summit in California today in order to build support for efforts to better protect against cyber threats and share more information about cyber attacks.   The conference will focus on surveillance and how to protect consumers online, with Obama saying cyber security was a "challenge that we can only meet together".   "It's going to bring everybody together - industry, tech companies, law enforcement, consumer and...

Facebook has announced the launch of a ThreatExchange to enable security professionals anywhere to share threat information more easily, learn from each other’s discoveries and make their own systems safer. Claiming that tools for sharing security information between organisations don’t work if they are inefficient or too complex, Facebook has included a set of privacy controls so that participants can help protect any sensitive data by specifying who can see the threat information they contribute....

A website designed to allow anonymous crime reporting contains severe security flaws, including a lack of secure transmission of data. Launched by Crimestoppers, Fearless is described as “a site where you can access non-judgemental information and advice about crime and criminality”. It says that what makes the site different is that it provides a safe place to give information about crime, 100 per cent anonymously. It says: “Anonymous means you don’t have to give your...

Hackers who raided health insurance records from Anthem may have been inside the system since December. According to Associated Press, although the breach was first detected on January 27th when an Anthem computer system administrator discovered outsiders were using his own security credentials to log into the company system and steal data, unauthorised data queries with similar hallmarks started as early as December 10th, and continued sporadically until the 27th of January. Kristin Binns, a...

The Dridex banking Trojan is being heavily targeting the UK. Following the publication of a heatmap which showed the interest in the UK, Peter Kruse, head of Danish security firm CSIS, said that the heavy targeting of the malware against UK businesses and users is unusual, but it is obvious that those behind this malware family have a special interest in consumers as well as companies located in the UK. He said: “The primary purpose...

HP has signed a definitive agreement to acquire encryption provider Voltage Security.   Sitting alongside its other security offerings: SIEM technology ArcSight, integrator Vistorm and code review service Fortify, the acquisition of Voltage Security will complement HP Atalla, HP’s information security and encryption business.   Art Gilliland, senior vice president and general manager of enterprise security products said that the  announcement aligns with HP’s focus on end-to-end protection of the data itself, helping enterprises neutralise...

The US health insurer Anthem has warned users to be wary of phishing campaigns following the recent attack and data breach.   In a press release, Anthem said that the scams are designed to capture personal information are designed to appear as if they are from Anthem, and the emails include a “click here” link for credit monitoring.   “Anthem is not calling members regarding the cyber attack and is not asking for credit card...