Top 10 Stories

Most UK businesses are in the dark when it comes to the impact that domain name system (DNS) performance is having on their internet users and visitors. At its most basic, DNS is an address book which matches websites to IP addresses—and it’s a key part of how the internet functions. Yet according to a Neustar-commissioned survey carried out by Quocirca, a full 92% lack visibility into this arena, largely due to complexity. About half...

LastPass has closed a remote code execution vulnerability on its Chrome extension, but according to Google Project Zero researcher Tavis Ormandy, issues remain on its Firefox extension, as well as details on another password-stealing vulnerability to come. View full story ORIGINAL SOURCE: ZDnet

A foul-mouthed Android banking trojan that once appeared neutralized after its distributors were rounded up in a police raid has shown new signs of life, suggesting the operation was larger than originally thought, researchers at Check Point Software Technologies reported on Tuesday. View full story ORIGINAL SOURCE: SC Magazine

Criminals sometimes take advantage of big events such as the Olympic Games to lure victims into hacks and cyber attacks. It isn't as glamorous as a big sporting occasion, but the US tax season, now in full steam ahead of the April 18 filing deadline, is a prime time for cybercriminals to steal financial information and personal data. View full story ORIGINAL SOURCE: ZDnet

Targeted industrial control systems-themed malware is less prevalent yet persistent, including one variant posing as Siemens PLC firmware that has been in action since 2013, researchers find. A piece of crimeware posing as legitimate Siemens PLC software has been in circulation for four years by an unknown attack group attempting to infect industrial networks mainly in the US. View full story ORIGINAL SOURCE: Dark Reading

Six weeks ago, a young woman called Zed (not her real name) was in a meeting at work when a message popped up on Facebook Messenger from a distant friend. "Hey babe," it began. The friend asked Zed to vote for her in an online modelling competition, which she agreed to do. But then - disaster. Adding her email address to the competition register had caused a tech meltdown, her friend said. She needed to...

Check Point Software Technologies Ltd researchers have revealed a new vulnerability on WhatsApp & Telegram’s online platforms – WhatsApp Web & Telegram Web – two of the world’s most popular messaging services with over 1 Billion and 100 Million monthly users respectively. By simply sending a photo, an attacker could gain control over user’s accounts, access message history, all photos that were ever shared, and also send messages on behalf of the user. The vulnerability...

People traveling by air to America from an undisclosed list of countries will no longer be allowed to carry devices larger than a mobile phone in carry-on baggage. Those traveling with such devices will be required to store them in checked baggage. The new travel rule was reportedly issued by the US Transportation Security Administration (TSA) in the form of a confidential email, or circular, on Monday and distributed to nine airlines serving 10 foreign...

A hi-tech terrorist who stored information about his Islamic State activities on James Bond style cufflinks is facing jail. Samata Ullah, 34, from Cardiff, used secure messaging websites to offer his computer expertise to the Cyber Caliphate Army - a group renowned for carrying out hacking attacks on behalf of Isil. When he was arrested police found around 30 pairs of USB storage devices that were disguised as cufflinks. View full story ORIGINAL SOURCE: The...

Mozilla engineers released Firefox 52.0.1 to patch a security flaw that came to light last Friday, in the Pwn2Own 2017 hacking contest. All in all, it took Mozilla engineers only 22 hours from the time the bug was used during the competition, on Friday, March 17, and to when Mozilla published Firefox 52.0.1. The vulnerability (CVE-2017-5428) was discovered and successfully used by the Chaitin Security Research Lab from Beijing, China, who exploited Firefox with an...