Security Infrastructure | SC Media

Security Infrastructure

data center

Threat actors use US data center to spread malware

Bromium researchers spotted scammers used Nevada data centers to distributed Dridex, GandCrab and other malware in a campaign that lasted between May 2018 to March 2019. Typically, threat actors organize their operations outside of the reach of U.S. law enforcement but these made a bold statement using servers that could easily be seized and shut…

Layering EMV chip, tokenization, encryption bolsters card payment security

Chip and PIN protections may fall short as future threats materialize

The protections that chip and PIN payment card solutions offer may fall short as cybercriminals begin installing command-and-control malware on infected EMV device readers, a new report warns. Cybercriminals could begin repurposing ATM EMV malware to attack retail environments by infecting point-of-sale (POS) machines (possibly via malicious USB drives) and then introducing an altered EMV…

ICS-small

Schneider ignores researchers’ warnings about hard-coded passwords

SCADA manufacturers Schneider Electric have been found to be shipping products with embedded passwords. Simon Heming, Maik Brüggemann, Hendrik Schwartke and Ralf Spenneberg from Germany’s Open Source Security discovered the issue and said they went public because Schneider didn’t respond to their findings. Users of Schneider’s Modicon TM221CE16R firmware 1.3.3.3 are stuck, because they can’t…

Next post in Reboot 2016-Industry Innovators