News

Lastline Inc., the leader in advanced malware protection, announced its latest enhancements to Lastline Enterprise for Global 5000 companies. The Spring 2017 Release adds capabilities to detect and eliminate browser based-attacks, speed incident investigation for security professionals, and provide early warning of unusual or suspicious network activity. “We worked very closely with our largest global customers and partners to identify enhancements that ensure our solution addresses attack vectors that are causing the most pain,” said...

Cyber security company Positive Technologies has today launched PT VIP Protect, a technology designed to keep sensitive targets safe from the current and evolving threats from mobile phone hacking.  Key business executives, celebrities, and other high-profile individuals operating in sensitive situations all connect to mobile phone networks, which often have fundamental flaws in underlying signalling protocols. These flaws and vulnerabilities can be exploited to eavesdrop on phone conversations, intercept text messages, track location and commit...

Varonis Systems, Inc. (NASDAQ:VRNS), a leading provider of software solutions that protect data from insider threats and cyberattacks, today announced the upcoming availability for the release candidate of version 6.3.150 of its software platform that includes updates to the web-based DatAlert dashboard and enhancements to user behavior analysis (UBA) based threat detection technology. The updates prioritise suspicious activities, accelerate investigations and highlight dangerous data vulnerabilities so that an organisation can quickly view, triage, inspect and mitigate threats and...

The security and privacy advice website, Comparitech.com, is warning businesses that use programmatic advertising platforms to be wary of their ads ending up on fake news or hate speech websites.  In a stand to crack down on the spread of fake news, Comparitech.com is urging brands to blacklist known fake news and hate speech websites from their ad platforms, with a guide on how to blacklist certain websites from featuring their ads. “Fake news websites...

From 2007 through 2015, the US Transportation Security Administration (TSA) spent $1.5 billion trying to identify potentially dangerous travelers by observing their behavior through an ongoing program called SPOT. SPOT stands for "screening of passengers by observation techniques." And according to the TSA's own documents, obtained through a lawsuit filed by the American Civil Liberties Union (ACLU), the techniques employed by the agency to detect untrustworthy travelers are unscientific and unreliable.  View full story ORIGINAL SOURCE:...

Security researchers have stumbled upon a Windows Trojan that hackers are using to help with the distribution of the infamous Mirai Linux malware, used to infect IoT devices and carry out massive DDoS attacks. The Mirai malware was initially developed in late 2015 and early 2016, and only became a massive threat in the summer and autumn of 2016, when it spread to hundreds of thousands of routers and DVRs (deployed with smart cameras and...

An unknown actor whose targets and tactics resemble those of a Russian advanced persistent threat group has been compromising the websites of foreign embassies, ministries and organisations, in an attempt to infect certain site visitors with malware. According to a Tuesday blog post by Forcepoint, whose threat intelligence feeds uncovered the threat, the mysterious campaign is reminiscent of the Turla group, a Russian APT that notably infected US Central Command in 2008. View full story ORIGINAL SOURCE: SC magazine

There's a new branded bug in town, but thankfully it only hurts kit made by F5 Networks. “Ticketbleed” (so named for a similarity to the notorious 2014 Heartbleed) is specific to F5's Big-IP appliances and can strike when virtual servers running on those boxes are configured with a Client SSL profile that has the non-default Session Tickets option. View full story ORIGINAL SOURCE: The Register

HackerOne has announced that it managed to attract $40 million in Series C financing and it is now planning to use the cash to grow the platform even more. HackerOne is a bug bounty platform that’s used by thousands of companies across the world that are looking for researchers that can responsibly look for security flaws in exchange for cash rewards and credit. There are over 100,000 hackers working with HackerOne at this moment. View...

The recent Tesco Bank hack has left the retail banking world reeling, searching for answers and more effective ways to secure networks against future attacks. It has been revealed weaknesses in the bank’s mobile applications left the door open for cybercriminals to brute force their way in and take more than £2.5 million of customers’ money. Worse still, the bank had been warned by several security experts of this weakness prior to the attack. How...