Top 10 Stories

Fears are growing that Monday could see a surge in the number of computers taken over by the devastating WannaCry ransomware hack. As people return to work and connect laptops to their office system, this could potentially spark a new wave of infections. About 200,000 victims in 150 countries or more have so far been affected, although this number was reduced after a 22-year-old British security analyst accidentally triggered a hidden ‘kill switch’. But the...

President Donald Trump signed an executive order on Thursday to bolster the government's cyber security and protect critical infrastructure from cyber attacks, marking his first significant action to address what he has called a top priority. The order seeks to improve the often-maligned network security of U.S. government agencies, from which foreign governments and other hackers have pilfered millions of personal records and other forms of sensitive data in recent years. View full story ORIGINAL...

Sucuri researchers recently observed a malware attack that injected obfuscated code into a JavaScript file in order to steal web users' cookies and hijack their WordPress sessions. View full story ORIGINAL SOURCE: SC Magazine

Social learning platform Edmodo says it’s investigating reports that millions of user account details are up for sale on the darknet. The firm claims to be “the world's largest primary and secondary social learning community”, connecting learners with teachers and resources. View full story ORIGINAL SOURCE: Infosecurity Magazine

Swiss security consultancy Modzero revealed on Thursday that a number of HP laptops contain an audio driver that logs users’ keystrokes and stores them in an unencrypted file on the local system. View full story ORIGINAL SOURCE: Help Net Security

A security researcher has publicly disclosed two critical zero-day vulnerabilities in Vanilla Forums, an open source software that powers discussion on over 500,000 websites, which could allow unauthenticated, remote attackers to fully compromise targeted websites easily. View full story ORIGINAL SOURCE: The Hacker News

A DDos attack on Portland-based company Cedexis, which helps in speed delivery of content, knocked out several major French news websites including Le Monde and Le Figaro. A DDoS attack makes online services unavailable by overwhelming the target site with unexpected traffic from multiple sources. "At approximately 2 pm GMT, the Cedexis infrastructure came under a unique and sophisticated Distributed Denial of Service (DDOS) attack," the company said in a statement. "This attack caused a...

Some Mac users may have fallen victim to a new Mac malware called Proton. Over the weekend, the malware infected unsuspecting users by hitching a ride on a trusted server that hosted downloads for HandBrake, a popular DVD ripper and media encoding program. The malware provides a backdoor for malicious activity, such as stealing stored files. At the point of propagation, none of the 55 most widely-used antivirus services detected Proton. As of writing, the VirusTotal tracking...

A round of malware has hit the inboxes of Australians on Wednesday morning posing as Origin Energy bills. The emails, which appear to be genuine bills from the electricity and gas utility, contain a direct link to a malware payload in the form of a JavaScript dropper and will install malicious files like keyloggers. The emails use the subject line "Your Origin electricity bill" and ask for a different amount ranging from $300 to $800...

Healthcare organizations must ensure that they carefully monitor who is able to access sensitive information, as potential data security threats can occur from either insiders or third-parties. While working with trusted vendors or business associates is not new for the healthcare industry, failing to manage, control, and monitor sensitive data access could lead to inappropriate access and even a data breach. A recent Bomgar report found that nearly two-thirds of surveyed security professionals believe that a breach...