Top 10 Stories

Cybercrime group RTM is deploying complex malware based in the Delphi programming language to target Remote Banking Systems (RBS), a type of business software used to make bulk financial transfers. The problem was severe enough to warrant an advisory from FinCERT, a Russian CERT responsible for fighting cybercrime targeting Russian financial institutions in late 2016. View full story ORIGINAL SOURCE: The Register

The march of the infamous Mirai botnet continues, with Kaspersky having found the first Windows-based spreader for the malware. You probably remember Mirai from last year – it was the source of a huge number of infections which powered some massive DDoS attacks. Well, now the code (which was made openly available online in 2016) has been crafted to make a Windows botnet, likely by a Chinese speaking malware author according to the security firm (going by...

Microsoft on Tuesday released security update (KB 4010250) to patch flaws in Adobe Flash Player for its customers using Internet Explorer on Windows 8.1 and later, as well as Edge for Windows 10, but two already disclosed flaws remain unpatched. Just last week, Microsoft announced that its February patches would be delayed until March due to a last minute issue, a move that led to Google publishing details of an unpatched Windows bug. However, the software...

A mysterious cyber-espionage campaign is actively targeting Android smartphones used by soldiers of the Israel Defense Forces (IDF), using a mixture of honeypot-style social engineering and stealthy malware to snoop on calls, texts, web browsing and more. Two separate research papers, from Kaspersky Lab and Lookout, reveals that over 100 Israeli military personnel have been targeted in the operation since mid-2016. Worryingly, researchers say the campaign is not only still active but is highly likely to escalate further....

A Dark Web bigwig who tried to frame security researcher Brian Krebs for heroin trafficking back in 2013 is going to jail for 41 months. The 31-year-old hacker, variously known as Sergey Vovnenko, Sergey Vovnencko, Tomas Rimkis, Flycracker, Flyck, Fly, Centurion, MUXACC1, Stranier and Darklife, most recently of Naples, Italy, was arrested on June 13, 2014, following an international investigation led by the US Secret Service in coordination with Italian law enforcement. He had been...

Singapore has opened a cybersecurity facility to support research efforts between academia and industry players and provide a testbed for product development. Located at the National University of Singapore (NUS), the S$8.4 million (US$5.93 million) site would provide a "realistic environment" for cybersecurity research and testing, according to a joint statement Tuesday by the university and Singapore's National Research Foundation (NRF). It can simulate more than 1,000 computers to perform various tasks to create cybersecurity...

For the third time in less than a month, a major Indianapolis employer is tricked into disclosing personal tax information for thousands of employees. Officials at American Senior Communities said in a statement they have been hit by a sophisticated phishing attack targeting their employees, but not their residents. Police wouldn’t say how many employees fell victim, but say the number may be as high as 17 thousand. According to a statement from the company,...

Stop us if you've heard this one: Java and Python have a bug you can exploit to cross firewalls. Since neither are yet patched, it might be a good day to nag your developers for a bit. The Java vulnerability means protocol injection through its FTP implementation can fool a firewall into allowing TCP connections from the Internet to hosts on the inside. That's explained in rather more detail in two documents: this, by Alexander Klink,...

A simple one-digit typo within the source code of a cryptocurrency called Zcoin has allowed a hacker to make a profit of over $400,000 worth of cryptocurrency. In a blog post, published on 17 February (Friday), Zcoin's community manager Reuben Yap said: "A typographical error on a single additional character in code allowed an attacker to create Zerocoin spend transactions without a corresponding mint." The exploit has been blamed solely on the coding error and the firm has stressed there is no weakness in...

Malware samples used in the recent attacks against several Polish banks contained planted evidence that attempted to blame the attacks on Russian-speaking hackers. These false flags, as the (IT and real-world) security community refers to these planted clues, were discovered by Sergei Shevchenko, a Russian-speaking security expert for BAE Systems. In a report published this morning, the researcher reveals that the malware used in those attacks contained a lot of mangled Russian words that no...