Top 10 Stories

Disney CEO Bob Iger has reportedly confirmed that the company was not hacked and no movie was stolen by hackers. Reports of Disney having allegedly been hacked and held to ransomrecently broke, just days before the much-anticipated release of the Pirates Of The Caribbean: Dead Men Tell No Tales movie. However, the hackers' threat to release portions of the movie in parts appears to have been a bluff. "To our knowledge we were not hacked,"...

Although the number of DDoS attacks dropped in the first three months of the year, the average size of each attack grew, according to a Verisign report released Tuesday. DDoS attacks during the first quarter fell by 23%, but the average peak size ballooned by 26% to 14.1 Gbps compared with the previous quarter, according to the Verisign Q1 2017 DDoS Trends Report released Tuesday. The largest DDoS attack during the first quarter generated volume...

An eight-month-long investigation by Roman Unuchek, a security researcher at Kaspersky Lab, has uncovered one of the most complex malware distribution schemes seen to date on the Android malware scene. According to Unuchek, for the last year, the criminal group behind the Ztorg Android trojan has been using so-called "rewards apps," to deliver malware on the devices of unsuspecting users. These "rewards apps" are Android apps that provide money to users who install apps from...

Sysadmins tending Samba need to get patching. Samba's announcement, here, explains that it's suffering from a remote code execution bug that applies to all versions newer than Samba 3.5.0. The software, currently at version 4.6.4, provides *nix integration with Windows file and print services. In CVE-2017-7494, a malicious client can “upload a shared library to a writable share, and then cause the server to load and execute it.” View Full Story  ORIGINAL SOURCE: theregister.co.uk

As everyone expected, scammers are attempting to cash in on the mass hysteria currently surrounding the WannaCry ransomware outbreak, a mass-infection took place over the weekend of May 12 and 14, and whose effects we still feel today. While the WannaCry attacks have been stopped thanks to a British researcher named MalwareTech, the ransomware's virulent attacks have made everyone take notice. View Full Story  ORIGINAL SOURCE: bleepingcomputer.com

Republican Representative Blake Farenthold of Texas suggested on Wednesday (24 May) that the 2016 Democratic National Committee hack could have been an "insider job", citing "stuff circulating on the internet". Last year, whistleblowing outfit WikiLeaks leaked thousands of embarrassing internal emails from top Democratic officials. Earlier this week, Fox News retracted a story that fuelled a conspiracy theory linking the murder of Seth Rich, a DNC staff member in Washington DC in July last year, to the...

Two-thirds of organizations are adapting their technology strategies in the midst of global political and economic uncertainty, with 89 percent maintaining or ramping up investment in innovation, including in digital labor, and 52 percent investing in more nimble technology platforms, according to the 2017 Harvey Nash/KPMG CIO Survey. It is clear digital strategies have infiltrated businesses across the globe at an entirely new level. The proportion of organizations surveyed that now have enterprise-wide digital strategies increased 52 percent in just...

A new variant of the Jaff ransomware was discovered by security researcher Brad Duncan that includes an updated design for the ransom note and the new WLU extension for encrypted files. Like the first variant of Jaff, this new version continues to be distributed through MALSPAM campaigns that utilize malicious documents and macros to download and install the ransomware. For those who are infected, or just wish to discuss the Jaff ransomware, you can do so in our dedicated Jaff Ransomware Help &...

http://www.zdnet.com/article/twitter-flaw-allowed-you-to-tweet-from-any-account/ A Twitter security flaw which went undetected for years allowed attackers to post messages masquerading as any user they chose. A security researcher that goes under the moniker Kedrisch disclosed the flaw on Tuesday, which was present on the microblogging platform until 28 February this year. Discovered in Twitter Ads Studio, a platform for advertisers to upload media and content, the high-severity bug appeared in the service library where users can review media before publishing. View full...

Swiftly after the UK's surveillance laws came into force at the end of last year, a legal challenge was launched by privacy campaigners to fight the bulk data collection allowed under the law. The government's implementation of the Investigatory Powers Act is now continuing with ministers saying they will push through powers to allow for almost real-time surveillance and the removal of encryption. According to a report by The Sun, following the Manchester bombings which killed 22 people, a Conservative...