News

The Sodinokibi (REvil) ransomware has added a new feature that allows it to encrypt more of a victim's files, even those that are opened and locked by another process. Some applications, such as database or mail servers, will lock files that they have open so that other programs cannot modify them. These file locks prevent the data from being corrupted by two processes writing to a file at the same time. When a file is...

IT services provider Cognizant is expecting to lose between US$50 to US$70 million in the aftermath of a recent ransomware attack. The US-based company revealed on 18 April it had been hit by a "Maze" ransomware cyber attack, resulting in service disruptions for some of its clients. Although Cognizant claimed it responded “immediately” to the attack, it expects its upcoming second quarterly results to be negatively impacted by both the downtime and temporary suspension of...

Hackers behind a series of targeted financial attacks have been updating their malware to better evade detection over the last year, according to new Prevailion research slated to be published Wednesday. Since at least February 2019, the hackers, who have begun impersonating CEOs and banks in their lure documents, have introduced at least seven updates to the malicious software known as EVILNUM, which enables attackers to upload and download files, harvest tracking cookies, and run...

Microsoft and Intel have recently collaborated on a new research project that explored a new approach to detecting and classifying malware. Called STAMINA (STAtic Malware-as-Image Network Analysis), the project relies on a new technique that converts malware samples into grayscale images and then scans the image for textural and structural patterns specific to malware samples. The Intel-Microsoft research team said the entire process followed a few simple steps. The first consisted of taking an input...

In these strange times, we all need something to celebrate, so happy World Password Day!  Intel started World Password Day in 2013 and the first Thursday in May has been used to promote good password practices ever since.  The need for strong passwords to protect personal data has been well-documented, with the 2019 Data Breach Investigations Report revealing that 80% of hacking-related breaches involve compromised and weak credentials.  But lately World Password Day has become the topic of considerable debate....

Technology has undoubtedly made life more bearable during a global pandemic. From drones being rolled out to deliver medicines and essential items across Ireland, to the rise of video conferencing platforms, such as Zoom creating a more connected community of remote workers. The affordances of our ever increasingly digital epoch have made isolation more tolerable by providing interconnectivity and entertainment. However, there is a darker side to the rapid uptake of technology during this international...

A security researcher has developed an leftfield technique for extracting data from air-gapped systems that relies on hacking power supplies. The Mission Impossible-style approach, dubbed ‘POWER-SUPPLaY’, relies on creating an acoustic covert channel by turning a PC’s power supplies into speakers. The technique, developed by Israeli security researcher Dr Mordechai Guri, is capable of working on secure air-gapped PCs, even in cases where the owners have taken the extra precaution of disabling audio hardware and...

A major Facebook bug caused a large number of iOS applications to crash on Wednesday for more than three hours, according to reports on GitHub and social media. The bug impacted some of the biggest iOS apps today, including the likes of TikTok, Spotify, Tinder, Venmo, GrubHub, Doordash, Soundcloud, and Pinterest, just to name a few. According to technical analysis of crash logs posted online, the issue was tracked down to the Facebook software developer...

Online learning platform Unacademy has suffered a data breach after a hacker gained access to their database and started selling the account information for close to 22 million users. Unacademy is one of India's largest online learning platforms boasting 14K teachers, over a million video lessons, and over 20 million registered users (learners). After recently raising $110 million in funding from General Atlantic, Sequoia and Facebook, Unacademy has a valuation of over $500 million. Source:...

The Dacls RAT has been ported from an existing Linux version. The North Korea-linked cyberthreat group known as Lazarus Group has added a new variant of the Dacls remote-access trojan (RAT) to its arsenal of spy gear, designed specifically for the Mac operating system. Dacls was first discovered last December targeting Windows and Linux platforms. The new version for Mac is now spreading via a trojanized two-factor authentication (2FA) application for macOS called MinaOTP, mostly...