Top 10 Stories

Intel has issued a security advisory about its remote keyboard app after discovering a bug that made it possible for a remote user to mimic keyboard and mouse input with elevated privileges. Intel Remote Keyboard was available for both iOS and Android, but the critical vulnerability -- and two other bugs with a High rating -- means that it has now been pulled from Google Play and the App Store. Intel is also recommending that...

We may be on the verge of a breakthrough in data breach litigation. A state judge in Massachusetts ruled Wednesday that the Massachusetts Attorney General can move forward with a potentially gigantic data breach case against the credit reporting firm Equifax. The AG, Maura Healey, is asking for statutory damages under Massachusetts consumer and data security law on behalf of every state resident whose private information was exposed when hackers broke into Equifax’s systems –...

Earlier today, we learned that hundreds of thousands of Delta Airlines, Sears and Kmart online shoppers could have had their names, addresses, and credit card information stolen by hackers. You can now add Best Buy to that list. The big-box electronics retailer says it was also affected by the same breach, due to its use of online customer service software from 7.Ai during a 15-day period when its online chat tool was infected with malware....

Once upon a time, viruses were the bane of the computing industry. They haven’t totally disappeared, they just evolved and took on different forms. Malware is now even spread through malicious links and some can even hold your files for ransom. Microsoft’s software and services still have the notoriety of being the target of such attempts and Redmond is taking a few steps to ensure the safety of its OneDrive and Office 365 users. View...

Security researchers are pinning a recent data breach – that potentially exposed the credit card information of hundreds of thousands of Delta Air Lines and Sears Holdings customers – on weak third-party security policies. The cyberattack hit software service provider 7.ai, a company that provides online chat services for Delta, Sears and other companies. Hackers targeting 7.ai were able to use the platform to collect payment information for Delta and Sears customers. View full story...

With fears spreading as each highly publicized corporate data breach commands more attention and woes in the executive suite, law firms have more opportunities these days to point corporate clients in the direction of particular cybersecurity vendors or even offer up their own skilled cybersecurity professionals. View full story ORIGINAL SOURCE: Law.com

Intel said Tuesday it was putting the kibosh on a popular Android and iOS app called Intel Remote Keyboard after researchers discovered that local attackers can inject keystrokes into a remote keyboard session when in use. View full story ORIGINAL SOURCE: Threatpost

The Carbanak cybercrime group is accused of stealing more than €1bn from banks around the world. Last week, police arrested the man they think is its mastermind View full story ORIGINAL SOURCE: Wired

Microsoft has patched a remote code execution vulnerability impacting the Microsoft Malware Protection Engine – mpengine.dll – which provides the scanning, detection and cleaning capabilities for Microsoft’s various anti-virus and anti-spyware software including Windows Defender. The vulnerability is deemed critical in nature. View full story ORIGINAL SOURCE: Techspot

Cybercriminals keen to exploit the cryptocurrency boom are increasingly attempting to infect mobile devices with cryptocurrency-mining malware -- and they're even using the official Android app store to do so. Researchers at Kaspersky Lab have uncovered multiple malicious cryptocurrency-mining applications being distributed via the Google Play store, with the miners posing as games, sports streaming apps, and VPNs. Some of these have been downloaded more than 100,000 times. View full story ORIGINAL SOURCE: ZDNet