Threats

Report: Hackers stole data from Israeli defense firms

By

A report by Brian Krebs detailed the intrusions, which occurred between Oct. 2011 and Aug. 2012.

Neverquest trojan targets regional banks in Japan

By

Symantec researchers found a new variant of the banking trojan.

HP tests 10 popular IoT devices, most raise privacy concerns

HP tests 10 popular IoT devices, most raise privacy concerns

By

In a study, HP Fortify tested 10 popular Internet of Things (IoT) devices, including TVs, webcams and device control hubs.

Vulnerability impacting multiple versions of Android could enable device takeover

Vulnerability impacting multiple versions of Android could enable device takeover

By

Researchers with Bluebox, who uncovered the vulnerability, dubbed it "Fake ID" because it enables the identity of trusted applications to be copied.

Firefox 32 feature could cut undetected malware downloads 'in half'

By

Mozilla plans to introduce a feature in Firefox 32 that, based on preliminary testing, could cut the amount of undetected malware downloads in half.

Details emerge about PlugX/Kaba RAT in Pacific Rim

By

FireEye researchers took a closer look at the malware and provided details in a blog post last week.

New backdoor 'Baccamun' spreads through ActiveX exploit

By

Symantec researchers revealed that the backdoor is dropped after attackers exploit a Windows ActiveX vulnerability.

Survey: 53 percent change privileged logins quarterly

By

A Lieberman Software survey highlights the issue or poor password management, even among security pros.

Andromeda bot spreads Tor-using CTB-Locker ransomware

Andromeda bot spreads Tor-using CTB-Locker ransomware

By

Kaspersky Lab has observed Andromeda bot being used to deliver CTB-Locker, a new ransomware that hides its command-and-control server on the Tor network.

Cyber Command tests gov't collaboration in wake of attacks

By

The two-week exercise, "Cyber Guard 14-1," was completed this month.

With RATs at their disposal, 419 scammers target businesses

With RATs at their disposal, 419 scammers target businesses

By

A new report reveals how Nigeria's 419 scammers are spreading malware to pocket business funds.

InfoSec pros worried BYOD ushers in security exploits, survey says

InfoSec pros worried BYOD ushers in security exploits, survey says

By

A study by the Information Security Community on LinkedIn found most organizations don't have proper polices and support for BYOD.

Android/Simplocker adds tricks, including ransom message in English

By

Android/Simplocker ransomware now encrypts archive files, asks to be installed as a Device Administrator, and delivers an English-language ransom message.

DDoS attacks remain up, stronger in Q2, report says

DDoS attacks remain up, stronger in Q2, report says

By

Prolexic's second quarter DDoS report noted the proliferation of shorter attacks that ate up more bandwidth.

Angler Exploit Kit delivers Tor-using Critroni ransomware

By

The command-and-control for a new ransomware identified by Microsoft as Critroni is hidden on the Tor network.

Op Emmental spoofs bank sites, uses Android malware to maintain account access

Op Emmental spoofs bank sites, uses Android malware to maintain account access

By

On Tuesday, Trend Micro released a report detailing Operation Emmental, which targets victims in Austria, Switzerland, Sweden and Japan.

Breaches driving organizational security strategy, survey indicates

Breaches driving organizational security strategy, survey indicates

By

CyberArk interviewed 373 IT security executives and other senior management in North America, Europe and the Asia-Pacific as part of its eighth annual Global Advanced Threat Landscape survey.

On Facebook, fake video of disrobing woman leads to malware

By

Shortened URLs on Facebook, leading to a risqué webcam video, are actually being used to spread malware.

Almost 40 percent of Canada's Justice Department duped by phishing

By

Almost one in four employees at Canada's Justice Department fell prey to internet phishing in an exercise last December.

Report: Zero-day attack used in 2010 NASDAQ breach

By

Bloomberg revealed that hackers used two zero-day flaws to breach NASDAQ's servers in 2010.

U.S. hosted most Q2 malware, top 10 ISPs still main sources

U.S. hosted most Q2 malware, top 10 ISPs still main sources

By

Solutionary's SERT research team analyzed threats for the second quarter for its Quarterly Threat Intelligence Report.

Hamas targets TV station via satellite hack

By

An Israeli broadcasting regulator confirmed that the incident occurred.

Report: Old bugs in Microsoft XML still haunt users, program 'most exposed'

Report: Old bugs in Microsoft XML still haunt users, program 'most exposed'

By

A Secunia quarterly report found Microsoft XML Core Services 4 to be the "most exposed" of widely used programs.

'Neverquest' banking trojan evolves as U.S. attacks continue

By

On Wednesday, Symantec released details on the malware's developed features.

Severe RCE vulnerability affects several Cisco products

Severe RCE vulnerability affects several Cisco products

By

An RCE vulnerability existing in several Cisco Wireless Residential Gateway products can be exploited to serve up fraudulent advertisements and deliver malware.

Russian espionage malware adapted for ransomware scams

Russian espionage malware adapted for ransomware scams

By

Sentinel Labs dubbed the repurposed malware "Gyges."

Senate subcommittee looks to stop botnet threat

Senate subcommittee looks to stop botnet threat

By

In a Tuesday hearing, a Senate subcommittee heard testimony from government and private sector security experts over the botnet explosion.

Certificates associated with malware added to SSL Blacklist

By

As of Wednesday afternoon, 127 SSL certificates associated with malware and botnet activities have been blacklisted.

Compromised Japanese porn websites distribute banking trojan

Compromised Japanese porn websites distribute banking trojan

By

Popular Japanese adult websites have been compromised to distribute the Aibatook banking trojan, a threat that could make its way to the U.S.

Pushdo botnet gets DGA update, over 6,000 machines host new variant

Pushdo botnet gets DGA update, over 6,000 machines host new variant

By

In less than a day, over 6,000 infected machines were updated with the new Pushdo variant.

Sign up to our newsletters

POLL