web analytics

Blackmoon Banking Trojan Using New Infection Technique

By Tom Spring May 4, 2017                                                     New clues have surfaced on how the Blackmoon banking Trojan is infecting its victims using a new framework to deliver the malware.   “We noticed recent campaigns (two weeks ago) where Blackmoon had shifted its infection… Continue reading Blackmoon Banking Trojan Using New Infection Technique

Why you don’t need 27 different passwords

May 4, 2017 by Wendy Zamora                                                    Passwords. The bane of modern existence. To celebrate this nuisance, the holiday gods have given us World Password Day, where thousands of people come together online and pledge to improve their password habits.… Continue reading Why you don’t need 27 different passwords

Do we need Underwriters Laboratory for IoT devices?

David Dufour, Sr. Director of Engineering, talks with The CyberWire Daily Podcast about IoT supply chain challenges.      Take a look at the best antivirus, anti-malware, anti-spy, etc. software Powered by WPeMatico

Don’t click that Google Docs link! Gmail hijack mail spreads like wildfire

Rogue app grabs contacts, peeks at inbox, spams contacts                                    3 May 2017 at 20:40, Iain Thomson   If you get an email today with the header that someone wants to share a Google document with you, don’t click it, otherwise you’ll be handing over your contacts to an unknown attacker.   The… Continue reading Don’t click that Google Docs link! Gmail hijack mail spreads like wildfire

Proposed NIST Password Guidelines Soften Length, Complexity Focus

By Michael Mimoso May 3, 2017                                                A comment period has closed on NIST’s new password guidelines for federal agencies that challenge the effectiveness of traditional behaviors around authentication such as an insistence on complex passwords and scheduled resets.   As more tech companies move away… Continue reading Proposed NIST Password Guidelines Soften Length, Complexity Focus

ATM security devs rush out patch after boffins deliver knockout blow

Researchers had full control and were able to make unauthorised withdrawals                                   3 May 2017 at 14:55, John Leyden   A firm that supplies security software for cash machines has updated its technology after researchers uncovered a number of serious shortcomings.   Flaws in GMV’s Checker ATM Security technology created a means for… Continue reading ATM security devs rush out patch after boffins deliver knockout blow

Hacking industrial robots in today’s smart factories

Common sense really that any new technologies will act as a new target and although robotics are not totally new they becoming a lot more common now.   Zeljka Zorz – May 3, 2017   It has been estimated that by 2018, approximately 1.3 million industrial robot units – mechanical multi-axis “arms” used for automating… Continue reading Hacking industrial robots in today’s smart factories

Shamoon Collaborator Greenbug Adopts New Communication Tool

By Tom Spring May 2, 2017                                                Researchers have identified a new collaborator in the continued Shamoon attacks against Saudi organizations. Called Greenbug, this group is believed to be instrumental in helping Shamoon steal user credentials of targets ahead of Shamoon’s destructive… Continue reading Shamoon Collaborator Greenbug Adopts New Communication Tool

Netgear Patches RCE Flaws in Routers, Switches

By Eduard Kovacs on May 02, 2017   Netgear recently informed customers that it has released firmware updates for some of its routers and switches to address remote code execution and other types of vulnerabilities. Netgear announced the launch of a bug bounty program in early January and the company has been regularly publishing security… Continue reading Netgear Patches RCE Flaws in Routers, Switches

Google Patches Six Critical Mediaserver Bugs in Android

By Tom Spring May 2, 2017                                                   Google pushed out its monthly Android patches Monday, addressing 17 critical vulnerabilities, six of which are tied to its problematic Mediaserver component. An additional four critical vulnerabilities related to Qualcomm components in Android handsets including Google’s own Nexus 6P,… Continue reading Google Patches Six Critical Mediaserver Bugs in Android