September 15th, 2017  By Karissa Bell   Misleading iOS “security” apps are about to be a thing of the past.   Apple has updated its developer guidelines with a new policy that bans deceptive “virus-scanning” apps for the first time.   From the latest App Store guidelines: You should not market your app on the… Continue reading ‘Virus-scanning’ iOS apps have always been a scam. Now Apple is finally cracking down

    Cyber News Rundown: Edition 9/15/17   German Voting Software Raises Concerns   With German elections only a couple weeks away, researchers have been working to determine how secure the voting systems really are. Per a recent study, the software being used contains multiple vulnerabilities that could lead to devastating results if the election is… Continue reading Cyber News Rundown: Edition 9/15/17

September 15th, 2017  By Tara Seals   OurMine has claimed another victim, lifting roughly 3.12TB worth of internal files from Vevo and posting them online.   The majority of the files taken from the music video giant include benign data including weekly music charts, pre-planned social media content and various details about the artists under… Continue reading OurMine Leaks Huge Cache of Vevo Information Online

September 15th, 2017 By Pieter Arntz   YARA rules are a way of identifying malware (or other files) by creating rules that look for certain characteristics. YARA was originally developed by Victor Alvarez of Virustotal and is mainly used in malware research and detection. It was developed with the idea to describe patterns that identify… Continue reading Explained: YARA rules

By Ionut Arghire on September 15, 2017   A recently malware attack has been leveraging the Hangul Word Processor (HWP) word processing application and its ability to run PostScript code, Trend Micro reveals.   Highly popular in South Korea, HWP has been long used in targeted attacks to perform reconnaissance or to spread remote access… Continue reading HWP Documents and PostScript Abused to Spread Malware

By Zack Whittaker for Zero Day | September 14, 2017 Each record contained details on voters, including names, addresses, dates of birth, their ethnic identity, whether an individual is married, and the individual’s voting preferences.   The records, totaling 593,328 individual sets of records, appear to contain every registered voter in the state of Alaska,… Continue reading Yet another trove of sensitive US voter records has leaked

September 14, 2017 By Catalin Cimpanu     Malware authors are using JavaScript code delivered via malvertising campaigns to mine different cryptocurrencies inside people’s browsers, without their knowledge.   Crooks are currently deploying this technique on Russian and Ukrainian websites, but expect this trend to spread to other regions of the globe.   Full Article.… Continue reading Malvertising Campaign Mines Cryptocurrency Right in Your Browser

Internet users in the U.S. have seen internet privacy protections diminish significantly in the post-9/11 era. In just March of this year, Congress swiftly (and quietly) did away with federal privacy regulations that prevented internet service providers from selling their customers’ browsing histories without consent.   In recent years, products intended to deliver conveniences directly to our… Continue reading Fending Off Privacy Invasion

By Markus Jakobsson on September 14, 2017   Two-Factor Authentication (2FA) has for years been one of the very dependable security technologies that was invoked to address high-risk scenarios — whether to safeguard enterprise resources  accessed through the firewall, financial accounts, or — for high-value targets — protect each email login. Most people, to the… Continue reading Trouble in Paradise as Cyber Attackers Circumvent 2FA

September 14, 2017   By Jason Murdock   It still remains unclear as to how many devices were infected by the Android malware family before Google took it down.REUTERS/Dado Ruvic/Illustration A strain of Android malware that sends fraudulent premium SMS messages and charges users’ accounts for services without their knowledge was recently found lurking in more… Continue reading ‘ExpensiveWall’ malware is the latest Android security threat – and you may be infected