Hacking

The banking industry is increasingly becoming a favourite among cybercriminals. After intercepting multiple variations of an email scam spoofing NAB earlier today, MailGuard has now detected another phishing email scam purporting to be from Westpac. Using a display name "Westpac Bank", the emails are actually sent by what appears to be a compromised account. The message body is in plain-text, advising recipients that some unusual activity was noticed on their account. Their account has been...

Despite more resources and investment being ploughed into data security, cybercriminals are still successfully stealing businesses' data. One group of hackers known as Magecart were found to be the cause of at least 319,000 data breach instances in 2018, according to RiskIQ’s Black Friday e-commerce Blacklist report. These JavaScript-sniffers (JS-sniffers) deploy a type of malware, whereby websites are injected with malicious JavaScript, designed to steal customer PII and have been found lurking on thousands of...

Cofense™, the global leader in intelligent phishing defense solutions, announced a partnership with NINJIO, a leading creator of cyber security awareness training. NINJIO’S cyber security content will be accessible by customers using the Cofense PhishMe™ platform, an award-winning phishing simulation and training solution. Cofense PhishMe administrators can leverage NINJIO videos, or “episodes” as NINJIO refers to them, as part of their on-going security awareness training and phishing defense programs. NINJIO’S current security awareness library consists...

Barracuda, a trusted partner and leading provider for cloud-enabled security solutions, today announced the introduction of Forensics and Incident Response. Available to Barracuda Total Email Protection customers, the solution automates incident response and provides remediation options, helping organizations address issues faster and more efficiently. Attackers often attempt to bypass traditional email security measures by using social engineering tactics — emails that contain no malicious code, attachments, or links, or accounts — or by trying to...

Seven top tips on how to prevent and cope with an insider threat By Tom Huckle, Lead Cyber Security Consultant, Crucial Academy An inside job brings up images of bank raids and heists but in the modern world companies should be thinking just as seriously about the cyber threat coming from within their own business. The possibility that a breach or a cyber attack could be down to an employee or former employee is growing...

Seventy-five Security Vulnerabilities Discovered at Kickoff with Help from Hackers The U.S. Department of Defense (DoD) and HackerOne, the leading hacker-powered security platform, today announced the launch of the Department’s sixth bug bounty program, Hack the Marine Corps. The bug bounty challenge will focus on Marine Corps’ public-facing websites and services in order to harden the defenses of the Marine Corps Enterprise Network (MCEN). The bug bounty program will conclude on August 26, 2018. The...

Wannabe hackers looking to dip their toes into online fraud can get their hands on tools to start hacking for about the price of a cup of coffee, according to the latest Dark Web Market Price Index by Virtual Private Network (VPN) comparison service Top10VPN.com. ‘Entry-level’ hacking tools, such as readymade phishing pages, software to compromise WiFi networks and files to help hack passwords all go for $3 or less on the dark web. Coupled...

New figures from the FCA show that reported data hacking attacks against financial services companies have quadrupled in the last year. The new statistics, contained in a freedom of information response to audit, tax and consulting firm RSM, show that reported incidents of loss of data resulting from hacking have risen from 4 in 2016 to 17 in 2017. There were also two separate incidents of ‘data leakage’ reported to the FCA. The figures also...