Cybersecurity News & Analysis | SC Media | Info Security News

Security News

Justice Dept. sues Snowden over book release

The U.S. Justice Department filed suit against former National Security Agency (NSA) contractor Edward Snowden for not running his memoir, “Permanent Record,” through the proper government review prior to its publication. “If only the Justice Department was as concerned with the systematic legal violations carried out by the U.S. government’s mass surveillance programs as they…

Variant of Emotet banking malware used in spam campaign

Emotet back in action

The Emotet botnet is back from a four-month vacation with a new spam campaign that began early on September 16. The initial burst of emails mainly targeted German, Polish, and Italian speakers with a sprinkling of English folks also receiving the emails with a subject line containing the phrase “payment remittance advice,” the Malwarebytes Threat…

Facebook boots multiple inauthentic accounts created in Iraq and Ukraine

Facebook yesterday excised from its platform hundreds of inauthentic pages, groups and accounts that were created by actors in Iraq and Ukraine. The social media giant removed 76 accounts, 120 Facebook pages, one group, two events and seven Instagram accounts linked to the Iraq-based campaign, and it expelled 168 accounts, 149 Facebook pages and 79…

"EFF asks court to find NSA internet spying a violation of Fourth Amendment"

Report: Russian man to plead guilty to financial firm hacks

Russian Andrei Tyurin will reportedly plead guilty to taking part in a cybercriminal campaign that targeted the U.S. financial sector and stole personal data from roughly 100 million customers of various firms. Citing court documents filed last Friday, Bloomberg reported yesterday that Tyurin, 36, has reached a plea deal with federal prosecutors in New York,…

Exposed server leaks PII on all 16.6 million Ecuador citizens

If another leaky Elasticsearch server may seem a little anticlimactic, considering how frequently they occur, the latest find by security researchers might have more of a “wow” factor since it exposed information on nearly all of Ecuador’s 16.6 million citizens, 6.7 million of them children. “The irresponsible handling of Personally Identifiable Information (PII) has literally…

The fairly convincing phishing scam is being hosted on a compromised EA Games server.

Fake résumé emails attempt to spread Ordinypt Wiper to German recipients

Attention German HR departments: You may want to cross off a certain “Eva Richter” from your list of employment candidates. Especially because her so-called résumé actually infects recipients with the destructive Ordinypt Wiper malware, according to a new report. The fake résumé phishing campaign began on Sept. 11 and is specifically aimed at German-speaking employers,…

Skidmap malware drops LKMs on Linux machines to enable cryptojacking, backdoor access

Researchers have discovered a sophisticated cryptomining program that uses loadable kernel modules (LKMs) to help infiltrate Linux machines, and hides its malicious activity by displaying fake network traffic stats. Dubbed Skidmap, the malware can also grant attackers backdoor access to affected systems by setting up a secret master password that offers access to any user account…

Next post in Malware