Malware evades researchers' VM environments by looking up their Word doc history

One of the techniques malware can use to evade researchers' virtualized or sandbox environments is accessing recent documents to determine if the infected machine has a history of legitimate usage.

Cyber space wars may require new international regimes

While it might not include the Death Star cyber warfare among the stars is almost inevitable.

Cybercrime blotter: Kosovo native sentenced to 20 years for providing aid to ISIS

Kosovo native Ardit Ferizi was sentenced in federal court in Alexandria, Va. after pleading guilty to providing aid to the Islamic State.

Air Force reports making progess on cybersecurity without additional funding

The Air Force is reporting progress in its mission to secure its weapons against cyberattacks.

Rep. Johnson introduces bill designed to deter electoral hacking

A new bill before Congress would require that all voting machines leave a traceable paper trail and require a secure connection to the web for vote-tabulating machines to prevent electoral tampering.

Krebs website withstands historically large DDoS attack; enormous botnet suspected

Cybersecurity blog site KrebsOnSecurity was barraged Tuesday evening by an extraordinary DDoS attack boasting a bandwidth between 620 and 665 Gbps - one of the largest such attacks in history.

Drupal patches two critical vulnerabilities

The Drupal Security Team issued updates for a pair of critical flaws, one allowing remote code execution and another giving access to parts of the system without full administrative permissions.

Clapper: Russia has a long history of trying to interfere with elections

Director of National Intelligence James Clapper said there have been previous instances of Russian attempts to influence U.S. elections going back to the 1960s.

iSpy keylogger can be leased for the low, low price of $25

A new commercial keylogger nicknamed iSpy that is capable of snatching every keystroke and fully examining the data on an infected computer has been spotted by Zscaler being sold on underground forums for as little as $25.

North Korea has only 28 registered domains, leak shows

Security engineer Matt Bryant posted details of North Korea's registered domains after a misconfigured nameserver revealed details.

Google Play again used to host malware-laden apps; this time, Overseer

Google Play continues to be a playground for cybercriminals with Google recently having to remove four apps from the store because they were distributing a new form of malware dubbed Overseer.

HDDCryptor ransomware uses legit, off the shelf software

HDDCryptor is a ransomware variant with a couple of new twists added that makes it an effective tool for cybercriminals, a Trend Micro study found.

Following hacks, State Democrats warned Wikileaks may be a source of infection

The Association of State Democratic Chairs sent an email to its members advising them to avoid Wikileaks as a precaution against malware infection, especially after several state officials had their accounts hacked, Politico reported.

House plans vote on bill to improve small business cyber preparedness

The U.S. House of Representatives plans a vote on legislation that would task the SBA with assisting small businesses in improving preparedness against cyber threats.

Cybersecurity unemployment rate at zero

Job prospects in the cybersecurity field could not be better with a recent report indicating that the unemployment rate for this employment category has dropped to zero.

Dropbox moves to change install on Mac

Mac users are claiming a Dropbox function that loads the desktop client of its cloud storage service on the accessibility menu of their system works like malware.

Locky developers upgrade ransomware's ability to perform offline encryption

A new analysis of Locky ransomware configurations by IT security firm Avira has revealed improved offline capabilities that enhance its ability to automatically encrypt victims' files, without interaction with a command-and-control server.

U.S. judge will release records of surveillance device usage

A federal district judge for the District of Columbia ruled on Friday that the court would begin publishing information about federal prosecutors' use of pen registers and trap and trace devices.

Cybercrooks use drive-by malware to rob Reddit users' cryptowallets

Details of the attack are still blurry, attackers appear to be using malicious links designed to appeal to users monitoring the evolution of the Bitcoin prices.

Poor cyber hygiene - not zero days - to blame for high-profile intrusions, says NSA

The "high-profile incidents you've read about" in media reports were conducted using simple methods, including spear phishing schemes or USB drive delivery, an NSA official said.

Uber, Airbnb, Dropbox, and others form coalition to evaluate vendor cyber risks

VSA coalition forms with the goal of streamlining the vetting process that businesses use for evaluating vendors' cybersecurity risks.

Lauri Love faces extradition to U.S. for hacking

British citizen Lauri Love faces extradition to the U.S. to face charges of computer hacking.

Researcher demos how FBI could've easily unlocked San Bernardino iPhone sans Apple

A Cambridge University researcher recently published a paper demonstrating how the FBI could have easily unlocked the San Bernardino shooter's iPhone.

Security advisories issued for VMware

"Multiple security issues" were patched for a number of VMware products.

Instagram joins with other social media sites, adds offensive language elimination tool

Instagram has become the latest social media giant to take on hate speech with the release of a new tool that will allow its users to limit what appears on their pages.

DOJ report, FBI impersonated journalist to infect suspect with malware

The U.S. Justice Department released a review of the FBI's impersonation of an Associated Press (AP) editor to infect a suspect with malware.

Quant Loader trojan downloader spotted in the wild

Forcepoint has come across a new trojan downloader called Quant Loader that has been spotted distributing Locky Zepto crypto-ransomware and Pony malware.

Project Zero hacking contest targets remote code execution flaws

Google's Project Zero unveiled an Android hacking contest that aims to discover flaws on the Nexus 6P and 5X devices.

House to mark up Modernizing Government Technology Act

The bipartisan bill blends the Hurd (R-Texas) Move IT legislation and Rep. Steny Hoyer's (D-Md.) IT Modernization Act.

Google Chrome releases stable channel update

Google Chrome released a stable channel update for its desktop applications for Windows, Mac and Linux.

Researchers discover spam email campaign using malicious MS Publisher to create backdoor

A campaign of spam emails that use Microsoft Publisher attachments to infect companies with a Windows backdoor was disclosed by researchers.

Powell blasts Trump, criticizes Clinton in leaked emails; DNC hacked again

General Colin Powell offered up several rather negative, yet bipartisan, opinions of the Democratic and Republican presidential candidates in a series of leaked emails that were just made public,

Spike in malvertising attacks targeting adult websites

A new Neutrino exploit kit invades a hack of a third-party ad server to deliver ransomware to adult website visitors.

House Committee issues subpoena to FBI for unredacted report on Clinton server

The dramatic exchange is the latest escalation after the committee requested last week that the FBI, Office of the DNI, Justice Department, and State Department hold a classified briefing to disclose details of the FBI report.

Independent researcher spots unpatched MySQL vulnerability

Information security researcher Dawid Golunski spotted several critical vulnerabilities in MySQL.

FTC solicits public response on consumer data disposal

The Federal Trade Commission (FTC) on Monday issued a request for public comment on its rule regarding Disposal of Consumer Report Information and Records.

GAO report - DoJ cannot determine cost of FOIA lawsuits where complainants prevailed

The Justice Department is unable to determine the amount spent by federal agencies litigating FOIA lawsuits in which the complainant substantially prevailed, a GAO report determined.

Patch Tuesday: Adobe issues fixes for 29 Flash Player vulnerabilties

September's Patch Tuesday kicked off with a notification from Adobe that it has made available security updates for Adobe Digital Editions, AIR SDK & Compiler and Flash Player, which alone had 29 critical vulnerabilities.

VoIPtalk informs customers of possible data breach

The U.K. voice over IP provider VoIPtalk has emailed a notification to customers warning of the potential compromise of user login credentials.

Feinstein, Burr circulating proposed changes to encryption bill - report

Sens. Dianne Feinstein and Richard Burr have reportedly been circulating proposed changes to Feinstein-Burr encryption bill.

CIA's Brennan warns against Russian cyber intrigue

CIA Director John Brennan warned against Russian hacking skills calling them "exceptionally capable and sophisticated."

Former head of DGSE confirmed French campaigns against internat'l targets

France's former head of external intelligence service discussed a French cyber campaign that targeted Iran, Canada, Spain, Greece, Norway, and other nations.

Pentagon faulted for lack of cyber preparedness, GAO report

The Department of Defense does not have the necessary visibility into the cyber capabilities of the National Guard, according to a report by the GAO.

Pornhub, RedTube ditch Flash to hook up with HTML5

Adult content site Pornhub announced Tuesday that it will switch from using Flash-based content and instead opt for HTML5.

Help wanted: Copyeditors to clean up French phishing emails

A help wanted ad spotted on the French dark web may be an indicator that cybercriminals are tiring of having their phishing scams spoiled due to poor spelling and grammar.

White House appoints federal CISO

The White House announced on Thursday the appointment of Brigadier General (retired) Gregory J. Touhill as the first federal chief information security officer (CISO).

Two arrested in connection to 'Crackas With Attitude' gov't attacks

Two North Carolina men were arrested Thursday for their alleged roles in hacking senior U.S. government officials and computer systems.

Oregon credit union sues Noodles & Company over breach

Oregon credit union filed a class action lawsuit Tuesday against Noodles & Company on behalf of other financial institutions affected by a POS breach at the restaurant chain.

Army tests cyber intelligence gathering drone

The U.S. Army recently tested a drone capable of collecting enemy cyber information on the battlefield.

WordPress update fixes XSS issues

Bloggers using the WordPress platform are "strongly encouraged" to update their sites immediately to address persistent XSS issues.

HPE enterprise security spun off in deal with Micro Focus

HPE reported today that it has agreed to spin off and merge several of its "non-core" assets, including Enterprise Security, with Micro Focus to create a new company that will continue under the name Micro Focus.

ACLU asks why FBI unleashed malware on TorMail users, court filing

Did the FBI infect users of a free email service with malware? That's the question the ACLU would like answered.

Austrian officials investigate attempted cyberattack of Vienna's airport

The hacking group, also known as 'Lion Soldiers Team,' announced this weekend that the group attacked the airport in response to the "racism" of airport officials.

Dell officially acquires EMC, including RSA division

In a union that creates the world's largest privately controlled technology company, Dell Technologies has officially acquired EMC Corporation, including its computer and network security division RSA, Dell announced today.

Hutton Hotel guests credit card info exposed during three-year long breach

The Hutton Hotel payment processing system was vulnerable between September 2012 and 2015 exposing guests payment card information.

Luabot malware used to launch DDoS attacks

A Trojan that infects Linux platforms to launch distributed denial of service (DDoS) attacks was discovered by MalwareMustDie.

Gugi mobile banking malware reportedly tweaked to defeat Android 6 security permissions

The developers of the mobile banking trojan Gugi have introduced new modifications to sidestep two key security features of Android, reports Kaspersky Lab researcher Roman Unuchek via the Securelist blog.

Bilal Bot malware author carries marketing efforts to mainstream press

An IBM researcher received a followup email from a person allegedly behind the creation of an Android malware app seeking redress to clarify some details.

Your own (not so) private Idaho

A hacker, dubbing himself Mr. High, announced he had stolen the personal details of 6.5 million people across Idaho, Washington, Oregon and Kentucky.

Survey: Hackers believe strongly in privacy... unless they're paid to crack passwords

Four out of five surveyed hackers agreed that Apple was right to refuse the FBI's request for a backdoor into the San Bernardino shooter's iPhone. Yet 52 percent said they would help the FBI crack an iPhone's password for a fee.

IoT home routers used to launch application-level DDoS attack

Eight brands of IoT home routers were compromised and used to create botnets that launched an application-level DDoS attack against a website's multiple servers.

Apple issues updates to prevent spying on desktop

Last week, Apple issued security updates to patch a serious flaw affecting iPhone and iPad users. Yesterday it addressed a similar flaw on its desktops.

M. Holdings Security issues warning on possible data breach

M. Holdings Securities is notifying some of its clients of a potential data breach due to a laptop being stolen from an employee's car.

Guccifer gets 52 months in U.S. prison

Guccifer's two-year hacking spree, which exposed Hillary Clinton's controversial use of a private email server, has ended with a more than four-year prison sentence.

Misfortune cookie: Mr. Chow restaurants website hacked to distribute ransomware

The website for the upscale Mr. Chow restaurants has been compromised to deliver CrypMIC ransomware to visitors via the Neutrino Exploit Kit.

Bill pending in California classifies ransomware as extortion

A bill is pending in California that would designate the use of ransomware as a form of extortion.

Researcher claims ambient light sensors could leak data

Researcher Lukasz Olejnik claims Ambient Light Sensors in personal devices could be used to track users and even measure the size of their homes.

Millions of IoT devices enlisted into DDoS bots with Bashlite malware

A family of malware targeting Internet of Things (IoT) devices to create distributed denial of service (DDoS) botnets has been detected.

Jerry's Artarama hit with hack

A letter has gone out to customers of Jerry's Artarama advising that its online portal "may have been attacked" by a hacker and customer information "may have been compromised."

Rental car or loaner flash drive? FTC warns rental cars store user data

The Federal Trade Commission warned consumers to be careful when using the infotainment systems of rental cars.

Comey calls for more FBI involvement in private sector cyberattacks

FBI Director James Comey reached out to businesses asking for his agency to be included in their cybersecurity plans and broached the lightning rod topic of encryption during a speech at the 2016 Symantec Government Symposium.

Adobe issued hotfix for critical information disclosure vulnerability in ColdFusion

Adobe today has released security hotfixes for a critical information disclosure vulnerability that exists in ColdFusion versions 10 and 11, across all platforms.

OSX/Keydnap distributed through Transmission app, M.O. similar to KeRanger

As with KeRanger, a malicious block of code added to the Transmission app's main function is used to spread Keydnap.

Details leaked on 71K Minecraft World Map users

Troy Hunt, an Australian researcher, tweeted out a warning of a dump of some 71,000 user accounts leaked from

Researcher finds stored XSS flaw in several D-Link NAS devices

Seven D-Link network attached storage (NAS) devices are vulnerable to an XSS defect that can be exploited without the user downloading malware or clicking on a malicious link, a researcher found.

Fiat Chrysler locks down on DealerCONNECT security after car theft

FCA upgraded its DealerCONNECT terms of use to threaten civil or criminal action to anyone who provides unauthorized third parties access to software.

Cozy Bear suspected of hacking Russia-focused think tanks in D.C.

The same cybergang that launched attacks against the Pentagon, State Department and DNC is also believed to have targeted Russia-focused think tanks in the U.S.

Accellion Kiteworks contain XSS vulnerabilities

Accellion Kiteworks appliance versions prior to kw2016.03.00 contain multiple vulnerabilities which can allow an attacker to conduct cross-site scripting attacks or to view limited sets of files.

FBI-owned Megaupload web pages serving up porn, adult services

Several web pages associated with the former file-sharing site Megaupload - seized by the FBI over four years ago in an online piracy investigation - are now serving up pornographic content and junk ads.

GoDaddy customers target of phishing scam

In what seems like a real email message from GoDaddy, users are prompted to upgrade storage within 24 hours, otherwise their emails account will be suspended

NH man pleads guilty to sextortion, accessed victims' social media accounts

Ryan Vallee, a 22-year-old New Hampshire man, pleaded guilty to hacking into social media and email accounts and engaging in sextortion of almost a dozen female victims.

WoSign mistakenly assigns two user certificates

A Chinese certificate authority mistakenly handed out legitimate user certificates for Github and the University of Central Florida (UCF) to a couple of unauthorized users.

Opera resets all user passwords following incursion

Opera is alerting customers of its web browser that its sync system was breached.

Lieu asks FCC to expedite investigation of SS7 flaw after DCCC hack

Rep. Ted Lieu (D-Calif.) is calling on the Federal Communications Commission (FCC) to accelerate its investigation of the SS7 flaw.

Spyware that Vietnam Airlines posed as McAfee antivirus

A Malwarebytes analysis of the espionage toolkit that recently infected Vietnam Airlines revealed a modular variant of the Korplug remote access trojan (RAT) that in this case disguises itself as a McAfee antivirus program.

Cisco updates advisory: "We have started publishing fixes" for NSA-linked exploits

Cisco updated a security advisory for a remote code execution vulnerability affecting the SNMP application-layer protocol.

State wildlife agencies halt license sales after apparent vendor breach

The fish and wildlife agencies of Washington, Oregon and Idaho have temporarily suspended the sale of hunting and fishing licenses and tags after the vendor operating their online licensing system was apparently breached.

U.S. CIO promotes $3.1B government-wide IT update

U.S. CIO Tony Scott promoted a $3 billion proposal to modernize government technologywhile speaking at an annual summit.

Dropbox recommending some users update account credentials

Dropbox is recommending to some users update the log in credentials for their account because a group of member emails and passwords may have been compromised.

Advocacy groups urge FCC to address connected car technology threat

Several public interest groups reached out to the FCC calling for action concerning the implementation of DSRC technology.

Baltimore PD overstepping its bounds with aerial surveillance: ACLU

Baltimore police have been running an aerial surveillance program capable of tracking people and cars since early 2016, which is being paid for not by the city, but an unnamed private citizen and all of this has been done without public input.

VMware fixes flaws in Identity Manager, vRealize Automation

VMware released security updates this week to address a local privilege escalation vulnerability in its VMware Identity Manager and vRealize Automation software, as well as a remote code execution vulnerability in the latter product.

Hackers exploit vBulletin flaw to access 27M accounts on 11 websites

Attackers used a flaw in the internet forum software vBulletin to breach 11 websites, exposing personal information of 27 million accounts.

United Airlines' attempt at 2FA divides customers

Customers and researchers alike are chastising United Airlines' attempt at using two-factor authentication to secure its MileagePlus account holders.

'Ghostbusters' star Leslie Jones website hacked

The personal website of Saturday Night Live comedian and Ghostbusters star Leslie Jones was taken offline after hackers vandalized the site.

Three indicted in Switzerland for phishing scam

Three people have been charged in Switzerland for a global computer fraud scam.

Report: ATM hackers flee Thailand after stealing $350,000 from state-run bank

Five suspected cyberthieves have reportedly fled Thailand after allegedly stealing approximately $350,000 in cash from 21 malware-infected ATMs operated by the state-run Government Savings Bank (GSB).

NYU scientists develop tool to check for chip sabotage

NYU scientists designed a new form of application-specific integrated circuit (ASIC) designed to spot hidden vulnerabilities in microchips.

Ashley Madison taken to task over security issues in Aussie, Canadian report

A joint investigation by the Canadian and Australian governments looking at the hack of the adult dating site Ashley Madison found it lacked the safeguards needed to protect the personal information of its customers.

HHS' Office for Civil Rights instructs its investigators not to overlook smaller breaches

In a revision of its policies, the U.S. Department of Health and Human Services' Office for Civil Rights has instructed its regional offices to place more of an emphasis on investigating smaller health-care data breaches that affect fewer than 500 individuals.


Sign up to our newsletters