Cybersecurity | SC Media

Cybersecurity

Great White North bombarded with malicious email campaigns, report

During the first four months of 2019 threat actors conducted thousands of malicious email campaigns, hundreds of which targeted Canadian organizations. Proofpoint researchers detected nearly 100 campaigns that specifically geo-targeted Canada or were customized for Canadian audiences in the first four months of 2019 mostly using the Emotet banking trojan, according to Proofpoint’s Beyond “North…

XSS vulnerability in Slimstat WordPress plugin

A  vulnerability in the Slimstat WordPress plugin could allow a malicious user to inject arbitrary JavasScript code on the plugin access log functionality. The plugin allows users to gather data analytics for the WordPress site and will track certain information such as the browser and operating system details, plus page visits to optimize the website…

TeamViewer reportedly hit by Chinese hackers in 2016

TeamViewer announced it was the victim of a cyber attack which took place in 2016 although some sources claim that hackers were in the firm’s network as early as 2014. The data breach was reportedly the result of threat actors exploiting the recently patched Winnti backdoor trojan, a malware first seen used by a group…

MuddyWater-associated BlackWater malware campaign suggest anti-detection techniques

A MuddyWater-associated BlackWater malware campaign has displayed signs of anti-detection techniques and other modifications to avoid common host-based signatures and avoid Yara signatures. Cisco Talos researchers said that while the changes were superficial, they were significant enough to avoid some detection mechanisms, according to a May 20 blog post. Researchers said the group’s level of…

Linux variant of Winnti malware spotted in wild

Google’s Chronicle Security team discovered a Linux version of the Winnti malware was used in the 2015 hack of a Vietnamese gaming company. The malware has proved to be a popular tool used by Beijing hackers over the last decade and has been used against various targets for varied motivations, including a German pharmaceutical company…

robot_1276011

UNESCO gives gender equality recommendations for AI

UNESCO produced in collaboration with EQUALS Skills Coalition listed a set of recommendations designed to promote gender equality and eliminate stereotypes in AI applications. The new publication advises companies and governments to end the practice of making digital assistants female by default, explore the feasibility of developing a gender neutral “machine gender” voice assistants and…

Legislators block California data protection expansion

California lawmakers Thursday blocked expansion of data privacy law handing a victory to the tech industry collection, storage and use of consumer information. The proposed expansion would have given customers the right to know what data companies were collecting from them as well as the right to delete and restrict the sell of information. The…

Next post in Vulnerabilities