A Mac malware that can silently, remotely control a vulnerable computer and steal passwords from a user's keychain has gone largely unnoticed by antivirus makers for two years -- even though the code is readily available to download. Patrick Wardle, chief research officer at Digita Security, revealed in a blog post Tuesday details of Coldroot, a remote access trojan. These kinds of malware are installed and access deep parts of the operating system in order to gain...
Read moreDetailsAmazon AWS S3 cloud storage servers might soon fall victims to ransom attacks, similar to how hacker groups held tens of thousands of MongoDB databases for ransom throughout 2017. The statement, made today on social media by infosec expert Kevin Beaumont, is nothing short of a prophecy of things to come, an opinion shared by many security professionals to whom Bleeping Computer spoke today. View full story ORIGINAL SOURCE: Bleeping Computer
Read moreDetailsAn extraordinary 43 per cent of all attempted online account logins are malicious, Akamai claims in its latest internet security report. "Credential abuse" is an increasingly popular line of attack, thanks in large part to the readily availability of huge user/password databases that has been stolen and are sold online. Akamai identifies two main types of such attacks: "bursty, high-speed login attempts" to break into people's accounts, and "low and slow attempts to avoid apprehension...
Read moreDetailsAn extraordinary 43 per cent of all attempted online account logins are malicious, Akamai claims in its latest internet security report. "Credential abuse" is an increasingly popular line of attack, thanks in large part to the readily availability of huge user/password databases that has been stolen and are sold online. Akamai identifies two main types of such attacks: "bursty, high-speed login attempts" to break into people's accounts, and "low and slow attempts to avoid apprehension...
Read moreDetailsMore than 55,000 Snapchat users had their login details exposed online thanks to a clever phishing scam. Read Full Story ORIGINAL SOURCE: The Sun
Read moreDetailsHackers are targeting Jenkins CI servers, the popular open source automation server written in Java, to deploy malware and secretly mine millions of dollars worth of cryptocurrency. Read Full Story ORIGINAL SOURCE: IB Times
Read moreDetailsThe Times has revealed that a surge in criminals targeting British pension riches means savers are being scammed out of half a million pounds every day. Read Full Story ORIGINAL SOURCE: The Times
Read moreDetailsAustralia has joined the UK and US in blaming Russia for the NotPetya attacks. This comes after much consultation with the Australian intelligence services and the UK and US governments. View Full Story ORIGINAL SOURCE: ZDNet
Read moreDetailsThe cyber hacking group known as Gold Lowell has been using scan-and exploit tactics to infect and extort victims, collecting over $350k in the process. View Full Story ORIGINAL SOURCE: Dark Reading
Read moreDetailsBug bounty platform HackerOne uncovered over 100 vulnerabilities after hosting a 20 day competition to find flaws in federal systems. View Full Story ORIGINAL SOURCE: ZDNet
Read moreDetails