Top 10 Stories

Hurricane Harvey is leaving plenty of destruction in its wake, but it could also impact the finances and computer security of internet users thousands of miles away from the danger zone. As we’ve seen on far too many occasions before, scammers think nothing of capitalising off human misery. And the natural disaster striking parts of Texas is no different, as online scammers target the charitable and concerned. The sad truth is that scammers will often...

Chinese consumer drone maker DJI has announced that it’s starting a bug bounty program and has invited researchers to discover and responsibly disclose issues that could affect the security of its software. View Full Story ORIGINAL SOURCE: Help Net Security

The ransomware that infected computers at the National Health Service's Lanarkshire outpost, causing an outage that lasted most of the weekend, has been tagged as a ransomware that demanded 53 Bitcoin for files to be decrypted. There's no evidence that the NHS district paid up, which isn't surprising because at current Bitcoin rates, that demand equated to nearly £190,000. View Full Story ORIGINAL SOURCE: The Register

A major Swedish web hosting has been compromised and its entire customer database leaked. The company, Loopia, made the announcement here, saying the breach happened last Tuesday (August 22), and it notified customers on Friday, advising of a system-wide password reset and telling them to update their personal information. View Full Story ORIGINAL SOURCE: The Register

After years of silence, WAP-billing trojans are making a comeback, with four new strains becoming active in the second quarter of 2017, targeting Russia and India primarily. The four wave of trojans — Ubsod, Xafekopy, Autosus, and Podec — were discovered by Kaspersky Lab mobile security expert Roman Unuchek while gathering information for the company's IT Threat Evolution Q2 2017 report. Unuchek says he was aware that different cyber-crime groups were developing mobile trojans with...

A list of login credentials for home routers and more than 1,700 internet of things (IoT) devices has been published on Pastebin. The list contains user names and passwords for 8,233 unique IP addresses, 2,174 of which were still running open Telnet servers as of the end of last week. Victor Gevers, chairman of the GDI Foundation, told Ars Technica that out of those, 1,774 remain accessible using the credentials. More telling, there are just...

A suspected state-sponsored cyberespionage campaign, dating back to October 2016, targeting Indian and Pakistan entities, has reportedly been detected by security experts. Although the identity and motive of the hackers remain a mystery the malware poses a risk to South Asian governments and militaries, Reuters reported, citing security researchers at Symantec that identified the campaign. View Full Story ORIGINAL SOURCE: IB Times UK

Several members of the National Infrastructure Advisory Council resigned last week, and that should make us all concerned for the state of US cyber attack preparedness. An unsigned resignation letter obtained by Nextgov gives several reasons for the resignation, including the Trump administration's lack of attentiveness to critical infrastructure and President Trump's recent comments in the wake of unrest in Charlottesville. View Full Story ORIGINAL SOURCE: TechRepublic

Kaspersky Lab researcher Roman Unuchek spotted an uptick in WAP-billing trojan-clickers from different cybercriminal groups targeting users in Russia and India. View Full Story  ORIGINAL SOURCE: SC Magazine

Google is turning to psychiatry with a medical quiz that will diagnose people with clinical depression. People asking questions like "am I depressed?" or "do I have depression" on Google's mobile phone search engine will be met with links to a mental health self-assessment quiz. View Full Story ORIGINAL SOURCE: The Telegraph