Cyberattack News, Articles and Updates

Malware attacks leveraging MS Word documents grew by 33% in Q4

Amidst a major rise in zero-day malware attacks in Q4 2017, researchers have observed how hackers are increasingly using Microsoft Office documents as carriers to deliver malicious payloads in enterprise systems.

Common-sense GoScanSSH author avoids infecting high-risk targets

Researchers at Cisco's Talos Intelligence Group have identified a new malware family, dubbed GoScanSSH, that compromises SSH servers. Well, those not attached to government, law enforcement or military domains anyway. Note: SC Media UK will not be publishing during UK Easter holidays, resuming 2nd April 2018.

Bitcoin stealing malware distributed on download.com for nearly a year

Bitcoin stealing malware that swaps user accounts with that of the attacker was hosted on Download.com servers for nearly a year.

U.K. government publicly blames Russia for NotPetya attacks

The U.K. government publicly accused Russia of carrying out the June 2017 NotPetya ransomware attacks in June 2017 as part of a deliberate attack on the Ukraine state.

Olympic torch lights the way for cybercrimminals

The potential for cyberattacks being launched against those attending the games, and even those watching from afar, is so strong that U.S. CERT has issued cybersecuirty guidelines for visitors.

Google's DoubleClick network exploited to serve cryptominers

A malvertising campaign was observed exploiting Google's DoubleClick network to deliver silent cryptominers on high-traffic sites.

Hacked cryptocurrency exchange to reimburse customers after largest heist in history

Tokyo-based cryptocurrency exchange Coincheck Sunday told customers it would be repaying about 90 percent of the $534 million worth of NEM coin stolen.

GhostTeam adware looks to steal Facebook credentials

A Vietnamese adware dubbed "GhostTeam" was found hiding in 53 Google Play apps disguised as utility apps, device performance boosting apps, and social media downloaders.

Hackers crack BlackWallet DNS server, steal $400,000

Attackers have made off with up to $400,000 (£290,000) in cryptocurrency after an ingenious attack on Stellar Lumen (XLM) wallet, BlackWallet.

Aspen Cyber Strategy Group holds inaugural meeting to tackle cybersecurity issues

The organization is chaired by IBM Chairman, President and CEO Ginni Rometty, Rep. Will Hurd, and former White House Homeland Security Advisor Lisa O. Monaco.

Necurs botnet launches massive 47 million emails per day campaign

The Necurs botnet continued to launch massive global ransomware attacks through the Holiday Season with researchers stopping as many as 47 million emails per day.

Starbucks free Wi-Fi caught secretly mining cryptocurrency

A tech CEO noticed the free Wi-Fi at his local Starbucks didn't exactly come without a price after discovering the network was to mining cryptocurrency.

Tennessee city still not recovered from ransomware attack

The City of Spring Hill, Tenn. is still suffering from the effects of a ransomware attack that struck the municipality in early November when government officials refused to pay the $250,000 ransom demanded by the cybercriminals.

Dark Overlord threatens to release plastic surgery images of royals, celebrities

The Dark Overlord cybergang has at least temporarily moved away from attacking school districts and has turned back to threatening to release celebrity private information by hacking a London, UK plastic surgery firm.

Bill legalizing hacking back introduced in the House

Reps. Tom Graves, R-Ga., and Kyrsten Sinema, D-Ariz., today introduced the Active Cyber Defense Bill which if passed would give individuals and companies hit with a cyberattack the legal authority to hack back against their assailant.

Despite increased spend, why doesn't DDoS mitigation always work?

Newly published research suggests that while there has been a marked increase in spending to mitigate against Distributed Denial of Service (DDoS) attacks, organisations are still falling victim.

CBS's Showtime sites silently used Monero Miners on user's browsers

CBS's Showtime is the latest site to silently mine cryptocurrencies off of the systems of unsuspecting users in the latest trend of cryptocurrency miner infections.

GSM-based credit card skimmers hit New York gas stations

GSM-based credit card skimmers capable of sending credit card data via text messages were at three New York gas stations.

Decryptor for old Petya versions released

Malwarebytes researchers have developed decryptors for unlocking all legitimate older versions of Petya ransomware.

SC Media asks the industry: Is cyberattack insurance worth it?

With warnings about stress testing response mechanisms, the Prudential Regulation Authority is putting the insurance industry on notice as to what it expects from the cyber risk market.

Android 7.1 Nougat version comes with hidden "panic detection"

Android 7.1 Nougat contains a secret panic mode designed to be triggered in the event that malware locks a user's screen.

Three-quarters of UK orgs suffer DNS attacks, half of those had data stolen

A new report from EfficientIP reveals a lack of awareness as to the variety of DNS attacks, a failure to adapt security solutions to protect DNS and poor responses to vulnerability notifications among businesses worldwide.

NotPetya: Snowden takes shots at NSA, Shadowbrokers lick lips

Both Edward Snowden and the Shadowbrokers have used the NotPetya attacks, to provide their unique perspective on the situation.

Koler ransomware campaign targets U.S. Android users

Researchers last week spotted a new variant of the Koler ransomware targeting U.S. users with fake Pornhub apps in its latest campaign.

WannaCry hits Australian traffic cameras due to human error

After recently wreaking havoc on a Japanese Honda plant, WannaCry made its way across the ocean to Australian traffic cameras.

InfoSec 2017: What are Fancy Bears and why it matters, even for SMEs

SC spoke to Adam Meyers, VP of intelligence at Crowdstrike at this year's InfoSec Europe 2017 about attribution and why it could be useful even for smaller businesses.

SWIFT codes targeted in Union Bank of India cyberattack

Hackers launched an attack against Union Bank of India that was very similar to the attack Bangladesh bank heist that resulted in the theft of $81 million.