Editor's News

It came to light yesterday afternoon that, in early spring 2015, Kaspersky Lab detected a cyber-intrusion affecting several of its internal systems. Following this finding, the company launched an intensive investigation, which led to the discovery of a new malware platform from one of the most skilled threat actors in the APT world: Duqu. The attack exploited zero-day vulnerabilities and after elevating privileges to domain administrator, the malware was spread in the network through MSI files....

Advancement in broadband technologies and the move towards ‘Big Data’ will leave the maritime industry vulnerable to cyber-crime unless it develops a better awareness of ICT security and adopts security best practice, warns ESC Global Security’s head of cyber security division, Joseph Carson. “There is the potential for a major cyber-attack on the maritime industry to significantly disrupt food and energy supplies given that shipping transports 90% of the world’s global trade. Certainly there is...

OPSWAT, a software company that provides solutions to secure and manage IT infrastructure, has just released its latest market share report, which includes market share for peer-to-peer file sharing products as well as detailed comparisons between Mac and Windows devices. The research specifically looked at the use of file sharing, antivirus software and RTP (Real Time Protection) between both Windows and Mac users. For the first time, this report includes Mac device data, which allows for a comparison of...

More than 50 million people per month could be at risk of a mass-scale ‘malvertising’ cyber-attack that turns computers into Zombies, according to researchers at Raytheon|Websense. The attack routes through advertising platforms to target popular websites, with researchers noting breaches on Bejewelled Blitz on Facebook, CNN Indonesia, the official websites of Prague Airport and RTL Television Croatia, as well as Detik and AASTOCKS. The Websense Labs team discovered the attack utilises open advertising platform OpenX,...

Attack techniques come and go as technology and user behaviours change and defences adapt to new threats – and sometimes take their eye off old ones – and the return of malicious macros offers an opportunity to examine and understand the drivers behind these adaptations, an exercise that is equal parts business case and technical analysis. By combining technical analysis of malware samples with investigation on cybercriminal forums, this report exposes the economic and technical drivers behind the...

RSA, The Security Division of EMC, has today released its inaugural Cybersecurity Poverty Index that compiled survey results from more than 400 security professionals across 61 countries. The survey allowed participants to self-assess the maturity of their cybersecurity programs, leveraging the NIST Cybersecurity Framework (CSF) as the measuring stick. The research provides valuable global insight into how organisations rate their overall cybersecurity maturity and practices across a variety of organizational sizes, industries and geographies. While larger organisations...

Leading provider of cyber security solutions, Imperva, Inc. (NYSE: IMPV), today released its Q2 2015 Global DDoS Trends Report. The report findings, based on over 3,000 mitigated DDoS attacks and 60 million blocked bot sessions across all sites which were protected using Imperva Incapsula, show a high frequency and long duration of DDoS attacks against organisations during the period from March 1 through May 7, 2015. The report also details DDoS attacks that are beginning to resemble advanced...

Infosecurity Europe was top of the agenda for the IT security industry last week, with many taking to Twitter to express their views on the top trends and issues. Now that the 2015 show is over, identity security specialist Ping Identity has given IT Security Guru some interesting social media statistics and analysis of this year’s event. Looking at trends mentioning the ‘#infosec15’ hashtag with an in-house analytics tool, Ping Identity revealed the top seven trends being talked...

A new study from ESET UK has revealed that 80 percent of IT professionals believe social media is an easy way for hackers to gain access to corporate networks because it is often neglected in terms of security, and furthermore 36 percent even admit that their company could be breached by a hacker through one of their employees’ social media access at work. The study, which looked at the attitudes of 200 IT professionals, was...

The doors have now closed on another Infosecurity Europe, held at London’s Olympia London but the knowledge gleaned, and the relationships established, over the three days will live on. Here at IT Security Guru, we’re keen to learn what you’ve taken away from this year’s show. But we’re not talking business cards, threat advice or even blisters - we’re talking swag! To get you started, here are a few of our favourite swipes: A blue...