Top 10 Stories

Malicious actors are exploiting the upcoming 2018 FIFA World Cup to conduct phishing attacks only two weeks before the tournament kicks off. Researchers at cyber security company Kaspersky Lab have detected a spike in the number of phishing pages appearing during match ticket sales, alongside a general rise in the number of football-related spam and World Cup-themed attacks. View Full Story ORIGINAL SOURCE: IT Pro

The Office of Management and Budget reports that the federal government is a shambles — cybersecurity-wise, anyway. Finding little situational awareness, few standard processes for reporting or managing attacks and almost no agencies adequately performing even basic encryption, the OMB concluded that “the current situation is untenable.” View Full Story ORIGINAL SOURCE: Tech Crunch

A North Korean cyber-espionage group has exploited an ActiveX zero-day to infect South Korean targets with malware or steal data from compromised systems, local media and security researchers have reported. The perpetrators of these attacks are known as the Andariel Group. According to a report authored by South Korean cyber-security firm AhnLab, the Andariel Group is a smaller unit of the larger and more well-known Lazarus Group —North Korea's cyber-espionage apparatus, believed to be a...

TSB customers are still struggling with services one month after the bank’s disastrous IT upgrades left millions without access to their bank accounts. When TSB began upgrade work to move over one billion customer records away from the Lloyds operating system, the move went terribly wrong. Up to 1.9 million customers were locked out of their accounts. Weeks later, some customer still face issues with their banking and many have been subject to exploitation by...

NewSky Security has uncovered a security vulnerability across all routers from Singapore’s leading internet service provider, SingTel. The uncovered vulnerability could potentially give access to all devices connected to the affected routers. View full story ORIGINAL SOURCE: Channel Asia

Chinese internet and cyber security research firm 360 reported a series of high risk vulnerabilities in the EOS blockchain platform a couple of hours ago. According to China’s version of Twitter, Weibo, some of these vulnerabilities can remotely execute arbitrary code on the EOS node, meaning that remote attacks can directly control and take over all nodes running on EOS. View full story ORIGINAL SOURCE: News BTC

Cyber-crime is one oft-repeated threat, which apparently doesn’t seem like slowing down. However, the only defence to this threat is security vigilance and awareness. A quick way to test the corresponding security measures is by incorporating bug bounty programs which have been on the maps of several companies, for a long time now. Although not all bug bounty programs provide remunerations, others can go as high as $36,000 like Google which recently awarded an Uruguayan...

Despite its leader's arrest in Spain two months ago, the Cobalt hacker group that's specialized in stealing money from banks and financial institutions has remained active, even launching a new campaign. "Cobalt is still active: its members continue attacks on financial organizations and other companies worldwide," said Dmitry Volkov, the Chief Technical Officer of Group-IB, the company who detected this new Cobalt operation. View full story ORIGINAL SOURCE: Bleeping Computer

People should turn their routers off and back on again to help halt the spread of a dangerous piece of Russian malware, the FBI has said. The software has infected hundreds of thousands of devices. It could use that army of routers under its control to collect information by reading people's internet activity, or to shut down their internet entirely. View full story ORIGINAL SOURCE: Independent

YouTube says it has deleted more than half of the "violent" music videos that the country's most senior police officer asked it to take down. More than 30 clips have been removed so far. View full story ORIGINAL SOURCE: BBC