Top

Tag: Featured


Network security

Building Digital Trust, One Blockchain at a Time

September 22, 2017

Via: Security Intelligence

ince it first appeared in 2009, the bitcoin network has grown significantly. The digital currency’s recent surge in value has sparked discussions within the security space about the benefits of blockchain, a technology that promotes the type of trust that […]


Phishing

Equifax Sent Breach Victims to Fake Website

September 21, 2017

Via: Security Week

Equifax has made another blunder following the massive data breach suffered by the company – it advised some customers on Twitter to access a fake support website set up by a security researcher. Equifax staff advised breach victims on Twitter […]


Cloud security

Leaking Cloud Databases and Servers Expose Over 1 Billion Records

September 21, 2017

Via: Security Intelligence

As The Wall Street Journal recently pointed out, some clients of cloud service providers such as Amazon and Microsoft are accidentally leaving their cloud databases exposed due to misconfigurations of their services. Coupled with recent headline-making breaches, it’s becoming clear […]


Malware, Mobile security

Premium SMS Malware ‘ExpensiveWall’ Infects Millions of Android Devices

September 15, 2017

Via: Threat Post

Google has ejected 50 apps from its Google Play store that were harboring mobile malware dubbed ExpensiveWall. The malware, which was downloaded between 1 million to 4.2 million times, sends fraudulent premium SMS messages for fake fee-based services without the […]


Network security

U.S. Politicians Demand Probe of Equifax After Hack

September 15, 2017

Via: Security Week

A senior US senator called Wednesday for a federal investigation of credit rating agency Equifax after the company lost the personal data of 143 million customers to hackers. Senator Mark Warner asked the Federal Trade Commission, one of the few […]


Network security

Equifax’s Colossal Error: Not Patching Apache Struts Flaw

September 14, 2017

Via: DataBreach Today

Equifax made an error that led to one of the largest and most sensitive data breaches of all time, and the mistake was elementary: The credit bureau failed to patch a vulnerability in Apache Struts – a web application development […]


Vulnerabilities

FDA Recalls 465K Pacemakers Tied to MedSec Research

September 1, 2017

Via: Threat Post

The United States Federal Drug Administration is recalling 465,000 pacemakers that attackers can gain unauthorized access to issue commands, change settings and maliciously disrupt. Affected are four models manufactured by Abbott Laboratories. According to the FDA, the recalls of affected […]


Malware

New WikiLeaks Dump Uncovers CIA Malware Infecting Windows Boot Sector

September 1, 2017

Via: Softpedia

WikiLeaks has just revealed another secret CIA project used to compromise Windows systems, this time targeting the operating system boot sector to then allow for deploying more payloads. Codenamed project Angelfire, the hacking tools were aimed at Windows XP and […]


Malware

Turla APT Used WhiteBear Espionage Tools Against Defense Industry, Embassies

August 31, 2017

Via: Threat Post

A toolset belonging to the Russian-speaking Turla APT has been publicly disclosed, and along with it details on its capabilities and indicators of compromise. The tools, called WhiteBear, were used to attack defense organizations as recently as June, and diplomatic […]


Network security

IRS to relaunch more secure data retrieval tool for 2018-19 FAFSA

August 31, 2017

Via: CSO Online

Millions of students were affected when the IRS disabled the IRS Data Retrieval Tool (DRT) back in March due to security concerns. Taking down the data retrieval tool caused havoc for students applying for the Free Application for Federal Student […]