November 01, 2012
For the last several years, security experts have been stressing the vulnerability of industrial control systems. Now, with attacks like Stuxnet proof of the risk, the big question is: How will industry respond?
November 01, 2012
While some instances of Stuxnet and Duqu found their way into seemingly unplanned locations, the majority of occurrences were localized to targeted systems.
October 31, 2012
Stuxnet kicked things off, and since then, there's been an explosion in sophisticated viruses targeting businesses and critical infrastructure in the Gulf region. But, prevention is still an option.
The third and final presidential debate was heavy on the kinetic and light on the cyber. And it shouldn't have surprised anybody.
Already famous for their sophistication, Flame and Gauss malware have yielded a new develompent. Dubbed MiniFlame, the component is deployed after Flame and Gauss already are installed on targeted machines.
Organizations shouldn't wait until they are the targets of sophisticated attacks to take action, according to a panel discussion at SC Congress New York.
Debate: Flame, Stuxnet and other APTs are hype, but you should still be extremely worried.
Researchers have discovered three new malware strains linked with the Flame virus, and noted an even higher number of victims than expected.
Experts said the light patch load addresses issues that aren't considered high-risk, but the monthly update from Microsoft also includes a new requirement that encryption algorithms on RSA certificates meet a certain key length.
Next week's monthly patch batch from Microsoft is not very burdensome, but it includes a new requirement that certificates must contain RSA key lengths of more than 1,024 bits.
September 04, 2012
Flame's cryptofunctionality silenced all the haters, says F-Secure's Mikko Hyppönen.
September 04, 2012
The Cybersecurity Act of 2012 was defeated in the Senate, FinFisher spyware analyzed, nation-state-created espionage malware Gauss, and other breaking security news
The Wiper virus has left few clues for researchers to study, but there may be similarities between it and other malware targeting systems in the Middle East.
In the high-priced market of exploit sales, developers resist government regulations -- but are more than happy when one wants to open its coffers to them.
Shamoon, malware that overwrites files to the point of making computers unusable, has been described as a targeted, yet damaging threat.
Though Gauss's encrypted payload continues to perplex researchers, Kaspersky Lab has unveiled a free tool to detect the malware.
Gauss, which researchers have linked to Flame and Stuxnet, both believed to be built by the U.S. government, functions mainly as a banking trojan -- but it also contains a mystery encrypted payload.
The evasiveness of Flame may have been what prevented traditional AV technology from catching it sooner.
McAfee co-president, Michael DeCesare, stopped by the SC Magazine offices to discuss the advancements in the threat landscape.
Security researchers said Tuesday they have come across a new strain of espionage malware that has successfully infected 800 different organizations this year in the Middle East to steal information and spy on communications.
July 02, 2012
The latest evidence of cyber espionage weaponry could be a harbinger of nation-state assaults to come.
July 02, 2012
In 1854, an English physician was one of the first to use an epidemiological method to ID disease risk. Ben Sapiro of the Dominion of General Insurance Co. wants his peers to do the same with security.
Flame, Stuxnet, breach at LinkedIn and other security news
July 02, 2012
Flame, aka Skywiper, is a sophisticated tool used to locate and steal data accessible from the infected computer. The malware uses multiple exploits to propagate and is highly configurable.
July 02, 2012
While the characteristics of the spy virus are important to note, the question is why it went undetected for so long.
June 27, 2012
The espionage toolkit known as Flame has sparked widespread awe over its capabilities. But at least some researchers already have exhibited how malware can disguise itself as a software update to infect computers.
Blueprint drawings in Peru are the latest target of information-stealing malware, after researchers at ESET discovered the Medrea worm in circulation.
Suspicions that the sophisticated espionage toolkit Flame was created by the same authors as Stuxnet are true, according to a published report.
While the security industry is on their toes, many companies still haven't addressed their information security. In this video interview, Dan Kaplan sits with Radware CEO, Roy Zisapel, to chat about defending mission-critical applications.
June 04, 2012
Does the fact that the Flame malware stayed below the radar for so long prove that signature detection is dead?
