September 12th, 2017 By Bill Brenner Researchers have discovered a new remote-access Trojan (RAT) called Kedi, which can snoop on infected systems, steal data and evade security scanners. It was attached to a spear phishing campaign when it was first discovered last week. The attacks appear to be targeted rather than widespread… Continue reading Beware the Kedi RAT pretending to be a Citrix file that Gmails home
Antivirus For Protecting Your PC
We live in an era where every other day witnesses a security attack of one sort or the other. Therefore’s there’s no doubt you need an antivirus package to keep your PC(s) safe. To safeguard them against the various evolving IT security threats out there. Now the question is: do you go for a free… Continue reading Antivirus For Protecting Your PC
Paradise Ransomware Uses RSA Encryption to Encrypt Your Files
By Lawrence Abrams September 11th, 2017 Today, a victim of a new ransomware called Paradise posted in the BleepingComputer.com forums and uploaded a sample so we could take a look at it. While this ransomware is not revolutionary by any means, since it is in active distribution and a Ransomware as a Service (RaaS),… Continue reading Paradise Ransomware Uses RSA Encryption to Encrypt Your Files
Why even smaller enterprises should consider nation-state quality cyber defenses
Recent events are forcing smaller enterprises to reconsider their security posture. By Druce MacFarlane September 11th, 2017 Traditionally, there was a stratification of security requirements influenced by organization size. These requirements imposed expenses, policies, and processes – and were often a balance between efficacy and convenience. Governments, for example, were often prime… Continue reading Why even smaller enterprises should consider nation-state quality cyber defenses
Why Relaxing Our Password Policies Might Actually Bolster User Safety
By Jackson Shaw September 11th, 2017 Recent guidance from NIST may seem counterintuitive. Despite the publicity about breaches, ransomware, and the like, we’re still using some pretty dumb passwords. Users typically aim for passwords that are easy to remember for their multiple logins, which they are asked to change frequently. Unfortunately, this has… Continue reading Why Relaxing Our Password Policies Might Actually Bolster User Safety
Hacked sex robots could kill you, warn British tabloids
Insert floppy di*k joke here. Graham Cluley September 11th, 2017 Dr Nick Patterson, of Deakin University in Australia, has been widely quoted in the British tabloid press warning about – as the Daily Star puts it – the risk of “ultra-realistic sex robots being used by warped hackers to attack humans”: … Continue reading Hacked sex robots could kill you, warn British tabloids
High Severity Flaws Patched in FreeXL Library
By Eduard Kovacs on September 11, 2017 An update released last week for the FreeXL library patches a couple of high severity remote code execution vulnerabilities discovered by Marcin Noga, a Polish researcher working for Cisco Talos. FreeXL is an open source C-based library that allows users to extract data from Microsoft Excel… Continue reading High Severity Flaws Patched in FreeXL Library
Google Chrome Will Soon Warn You of Software That Performs MitM Attacks
September 10, 2017 By Catalin Cimpanu Google Chrome 63 will include a new security feature that will detect when third-party software is performing a Man-in-the-Middle (MitM) attack that hijacks the user’s Internet connection. A MitM attack is when an application installed on a user’s computer or a local network intercepts the user’s web traffic.… Continue reading Google Chrome Will Soon Warn You of Software That Performs MitM Attacks
Translate.com Exposes Highly Sensitive Information in Massive Privacy Breach
By Florian Faes on September 7, 2017 How would you feel if your letter of resignation were posted online? Or sensitive parts of your employment contract? Or details of that M&A deal you have been working on with an investment bank? Thousands of people are about to find out unless translate.com fixes… Continue reading Translate.com Exposes Highly Sensitive Information in Massive Privacy Breach
Scotiabank internet whizzkids screw up their HTTPS security certs
Not exactly a move designed to inspire confidence By Iain Thomson in San Francisco 8th September 2017 No certs for you! The team behind Scotiabank’s Digital Banking Unit isn’t impressing some customers, after forgetting to renew the security certificates for their own website. The DBU was set up last year to… Continue reading Scotiabank internet whizzkids screw up their HTTPS security certs