Malware news & analysis | SC Media

Malware

Treasury sanctions Russian research institute for Triton attack

The Treasury Department’s Office of Foreign Assets Control sanctioned a Russian government research institution linked to Triton malware targeting industrial safety systems, the first time the U.S. took such an action for an industrial control system attack. Treasury Secretary Steve Mnuchin called out the Russian government for continuing “to engage in dangerous cyber activities aimed…

Common bugs make anti-virus solutions vulnerable to exploitation

The very anti-malware solutions meant to protect organizations for things like increasing privilege can be exploited to do just that. The solutions “may unintentionally assist malware in gaining more privileges on the system,” according to a CyberArk blog post penned by Eron Shimony. “The vast number of affected machines is troublesome; probably every Windows machine…

Amid Iranian hacker crackdown, CISOs should prep for retaliation

The United States ran a full-court press against Iranian hackers last week, including indictments from the Department of Justice, the FBI identifying malware used in attacks, and the addition of government-aligned hackers to the sanctions list by Treasury. In theory, increasing pressure against a foreign group may cause a pause in operations. Alternately, sanctions can…

Apple notarization process, meant to protect, approved Shlayer malware

Apple appears to have inadvertently approved OSX.Shlayer malware as part of the security notarization process it has touted would boost user confidence that the Developer ID-signed software they distribute has the innovative tech giant’s seal of approval. “While it is unclear “what the Shlayer folks did to get their malware notarized,” essentially Apple’s process “allowed…

Next post in Security News