Editor's News

ESET researchers have discovered malware that has eluded the attention of anti-malware researchers since at least 2008. Detected by ESET as Win32/Prikormka, the malware is being used to carry out cyber-espionage activities in Ukraine, primarily targeting anti-government separatists in the self-declared Donetsk and Luhansk People's Republics.  “Along with the armed conflict in the East of Ukraine, the country has been encountering numerous targeted cyberattacks, or so-called advanced persistent threats. For example, we discovered several campaigns...

New regulations governing how European organisations approach data security will soon be enshrined into law , imposing a host of new data security obligations for businesses operating within the EU. Chris Russell, CTO, Swivel Secure, explores the operational implications and why European businesses of all sizes need to get serious about their security, and fast. The aim of the EU’s new General Data Protection Regulation (GDPR) is to drive the modernisation of Europe’s data security practices...

Symantec's core scan engine has a critical vulnerability which lets attackers remotely execute code on a victim's machine just by sending them an email or a link. The victim doesn't even need to open it. It just has to be scanned by the AV program. The scan engine uses a filter driver to intercept I/O operations at the kernel level. In its advisory, Symantec acknowledged the existence of the flaw. It said it had been notified of a critical issue in...

Check Point today published its latest Threat Index, highlighting the most prevalent malware families being used to attack organisations’ networks and mobile devices globally in April 2016. Check Point identified 2,000 unique malware families during April, which was more than a 50 percent increase on the previous month. The findings revealed a wide range of threats that organisations’ networks face and the scale of the challenges that security teams need to think about in preventing...

MWR InfoSecurity has just confirmed that an extra 100 people will be able to participate in this year's HackFu 2016 challenge. Players from all walks of life will be able to participate as remote delegates, providing support to those on the ground at HackFu, helping solve puzzles and solve clues to beat the challenges set out by MWR's tech boffins. Having previously incarcerated participants in a decommissioned prison, and converted a gothic mansion in Gloucestershire...

Tempest Security Intelligence , a leading provider of highly specialised information security consulting services to large and medium sized organisations in the public and private sector, has today announced an expanded presence in the United Kingdom. Raising £5.5 million (R$28.2 million), Tempest will be increasing its employees to 160 across its London and Brazilian offices in order to better meet the demands from the Financial, Media, Telecom and E-Commerce sectors that need cyber security expertise....

I'll huff and I'll puff and I'll...bring your web application offline! The possibility of a business being targeted by some huge zombie army, or botnet, is enough to send shivers down the spine of many seasoned security veterans. Modern botnets are of vast size and power, with more sophisticated features and capabilities than ever before. Modern botnet attacks can be very precise and controlled, being pulsed and sent in different ways to make the attackers...

Thanks to Anna Szalay of SophosLabs for her behind-the-scenes work on this article. Security researchers at Check Point blogged earlier this week about an Android malware family they dubbed the Viking Horde. The name comes from one of the apps in the bunch, a game called Viking Jump. The game looks vaguely interesting at first sight, like an eclectic variant of Flappy Bird with Dark Ages helmets and swords set in America some time before European settlement. As far...

A survey of 1,000 UK consumers commissioned by FireEye, a leader in stopping today’s advanced cyber attacks, has revealed that last year’s high-profile data breaches have dented long term consumer trust in major brands. Findings highlighted rising public concerns over a perceived lack of board-level concern for data privacy, with almost three quarters (72%) of consumers stating that they were likely to stop purchasing from a company if a data breach was found to be...

Duo Security, a cloud-based trusted access provider protecting the world’s largest and fastest-growing companies, has analysed data from over two million devices used by businesses around the world to determine the general security health of devices in the enterprise. Most concerning of the findings is that 25 percent of all Windows devices are running outdated and unsupported versions of Internet Explorer, which leaves those unpatched systems open to more than 700 vulnerabilities. Duo research also...