Cybersecurity | SC Media


LuminosityLink RAT author sentenced to 30 years in prison


A Kentucky man was sentenced to 30 months in federal prison for his role in creating and selling a remote access trojan (RAT) used to spy on victims. As part of his plea agreement, Colton Grubbs, 21 of Stanford, Kentucky, pled guilty to selling a software, called LuminosityLink, for $39.99 apiece to more than 6,000…


Pokémon Go cheaters may inadvertently learn GPS spoofing


Between 2005 and 2009, children and preteens and even some adults were inadvertently learning basic HTML coding skill as they sought to customize their MySpace pages with unique skins, music, and overall layouts that best represented their personalities. Nearly a decade later, this same curiosity may allow people looking to cheat Pokémon Go, to inadvertently…

Anthem to pay record $16M for 2015 data breach


Anthem will pay a record $16 million to settle potential privacy violations stemming from its massive data breach 2015 data breach which compromised the data of nearly 80 million current and former patients. The settlement amount is reportedly three times larger than the previous record amount paid to the governments in privacy cases.   The…

Android Apps claim to mine unminable cryptocurrency, just show ads


Android apps claiming to mine unminable cryptocurrencies have made their way into the Google Play store in an attempt to serve ads. Fortinet researchers discovered the malicious apps when they noticed apps claiming to mine currencies including Ripple (XRP), Cardano (ADA) and Tether(USDT) all of which aren’t obtained by cryptomining. Similar apps have been reported…

Kanye West’s poor iPhone password may be least of his worries


Kanye West’s meeting with President Donald Trump revealed more to the world than the rapper’s political views after media personnel caught his iPhone PIN “000000” during a live broadcast. And while West has hopefully changed his PIN by now, cybersecurity experts warn his poor cybersecurity hygiene could lead to future problems for him down the…

Iceland’s largest phishing campaign imitated police


Iceland fell victim to the largest phishing campaign to target the nation, a complex scheme which involved impersonating law enforcement officers. The attack was tailored specifically for Icelanders and used a homograph trick to register a domain imitating the Icelandic Police domain and a malicious attachment file with which roughly translated to “Called in for…


GPlayed trojan seeks to play users out of their data


A new trojan dubbed GPlayed shows that threat actors are increasing their abilities to create hybrid threats that can move code from desktops to mobile platforms with no effort. Cisco Talos researchers discovered the malware, still in its testing stages, using an icon similar to the one used in the Google Play store and displaying…

Samsung updates Smart TV privacy policy to clarify collection of user data

Sony TVs could allow attackers to hijack your living room


Sony TV’s can be remotely exploited without any authentication by attackers due to three vulnerabilities spotted by Fortinet researchers, with one of the vulnerabilities being rated “Critical Severity” while the other two were rated “High Severity”. The critical vulnerability was a command injection attack which handles file names incorrectly when the user uploads a media file,…

US Air Force, Raptor

GAO report slams Department of Defense cybersecurity practices


Securing the upcoming election against cyberattack or influence is rightfully garnering a great deal of attention, but a recent General Accounting Office (GAO) report indicates the United States is doing a poor job building weapon systems resistant to cyberattack. The report noted that the very aspects that make some of the nation’s most dangerous weapons…

DDoS Attacks Target Multiple Games including Final Fantasy XIV, Assassin’s Creed


A set of DDoS attacks plagued a series of gaming publishers including Final Fantasy XIV’s creator Square Enix and Assassin’s Creed publisher Ubisoft, respectively on the day of the Assassin’s Creed Odyssey launch on Friday. Ubisoft began experiencing connectivity issues around Oct. 4 when the officials first tweeted an alert to users informing them of issues…

Next post in Cybercrime