• Sophisticated Russian BEC Group Targets Multinationals

    Sophisticated Russian BEC Group Targets MultinationalsSecurity company Agari has unearthed a massive Russian business email compromise (BEC) operation that it says has been operating under the radar for at least a year. The group, nicknamed Cosmic Lynx, targets large multinational companies, the security researchers said.Detailing the group's activities in a report this week, Agari said that it had been involved in over 200 BEC campaigns since July 2019. It believes that Cosmic Lynx has tar
  • Microsoft Research Develops Invisible Cloud Malware Scanner

    Microsoft Research Develops Invisible Cloud Malware ScannerIt's all very well having thousands of virtual machines running in the cloud, but how do you scan them for malware? Microsoft Research has developed a system called Project Freta to do just that. It has launched the project as a prototype for public use.Virtual machines (VMs) are software versions of computers that run in a cloud environment. They replicate an entire PC running an operating system like Linux or Windows, and many of them
  • Researchers Use AI to Spot Drone Pilots

    Researchers Use AI to Spot Drone PilotsLaw enforcement and military personnel might finally have a way to track malicious drones and prevent millions of dollars in damage thanks to new artificial intelligence research. Academics at Israel's Ben-Gurion University of the Negev have developed a way to locate the operator of a drone by looking at how the airborne vehicle moves.Locating the pilots of malicious drones is a pressing issue. In December 2018, Gatwick Airport had to close its runways to a
  • Manufacturing Sector Paid Out 62% of Total Ransomware Payments in 2019

    Manufacturing Sector Paid Out 62% of Total Ransomware Payments in 2019The manufacturing industry spent more than any other sector last year on ransomware payments, paying out $6.9m, according to a new study by Kivu Consulting. This represents 62% of the total $11m+ of ransoms transferred to cyber-criminals throughout 2019, despite manufacturing only making up 18% of all paid ransom cases.Over two-thirds (67%) of paid ransomware attacks against organizations from this industry were conducted via
  • Advertisement

  • Tech Giants Suspend Hong Kong Co-Operation Following Security Law

    Tech Giants Suspend Hong Kong Co-Operation Following Security Law A slew of technology providers have temporarily suspended any co-operation with Hong Kong police following the introduction of a regressive national security law.  WhatsApp, Telegram, Facebook, Twitter, LinkedIn and Zoom have all announced a pause on the processing of data requests from the Special Administrative Region (SAR) of China until an international consensus is formed on how to react.“We understand the importan
  • Bankrupt Bitcoin Biz Founder Leaves $13m Hole

    Bankrupt Bitcoin Biz Founder Leaves $13m HoleAn infamous South African Bitcoin entrepreneur has been declared bankrupt, leaving investors facing total losses of over $13m, according to local reports.Willie Breedt was the founder and CEO of VaultAge Solutions, a cryptocurrency trading platform that was launched in 2018.Back in May, investors in the platform started to complain of fraud and investigators from the country’s Directorate for Priority Crime Investigation (DPCI) were sent in to f
  • Instagram Star “Hushpuppi” Faces BEC Charges

    Instagram Star “Hushpuppi” Faces BEC ChargesA social media star known for his ostentatious displays of wealth is set to be charged in the US with conspiracy to launder hundreds of millions of dollars from BEC and other fraud schemes.Nigerian national Ramon Olorunwa Abbas, 37, (aka “Ray Hushpuppi” and “Hush”) was expelled from his home in the United Arab Emirates last week after being arrested there by police in June.FBI special agents obtained custody of him a
  • LORCA Announces Fifth Cyber-Accelerator Cohort

    LORCA Announces Fifth Cyber-Accelerator CohortThe London Office for Rapid Cybersecurity Advancement (LORCA) has announced the 17 scaleups selected to join its fifth cohort of cyber-innovators.Launched in 2018, LORCA is a government-backed innovation program delivered by Plexal at the London-based technology hub Here East and is supported by Deloitte and the Centre for Secure Information Technologies (CSIT) at Queen’s University Belfast. LORCA’s commercial partners are Lloyds Banking
  • Advertisement

  • Infosecurity Magazine Autumn/Fall Online Summit Agenda – Live Now!

    Infosecurity Magazine Autumn/Fall Online Summit Agenda – Live Now!Infosecurity Magazine is delighted to announce the launch of the content agenda for its upcoming Autumn/Fall Online Summit, taking place September 22 and 23.Registration is now open for the virtual event which will showcase 14 live sessions, moderated by the Infosecurity editorial team, featuring an array of experts and thought leaders discussing various topics and issues currently impacting the information security industry
  • Home Routers Are All Broken, Finds Security Study

    Home Routers Are All Broken, Finds Security StudyUpdating routers with the latest firmware is a frequent recommendation to improve network security. When it comes to home routers, though, the latest updates won't help you much. According to a study by Germany's Fraunhofer Institute for Communication (FKIE), vendors have failed to fix hundreds of vulnerabilities in their consumer-grade routers, leaving people exposed to a wide range of attacks.The FKIE examined 127 routers spanning seven large ve
  • Purple Fox Exploit Kit Adds Two Microsoft Vulnerabilities

    Purple Fox Exploit Kit Adds Two Microsoft VulnerabilitiesSecurity company Proofpoint has identified two new exploits coded into Purple Fox, an exploit kit that has evolved dramatically in the last year. The updates show that cyber-criminals are continuing to invest in infection tools to help get their malware onto victims' systems even though exploit kits are declining as an attack technique, the company said.An exploit kit is a tool used to deliver malware onto a victim's device automatically v
  • Account-Snooping Yahoo Engineer Escapes Jail Time

    Account-Snooping Yahoo Engineer Escapes Jail Time A former Yahoo software developer charged with hacking into customer accounts escaped jail time last week. Reyes Daniel Ruiz, 35, received five years of probation for hacking accounts in the search for private images and videos with sexual content.On September 30, 2019, Ruiz, a 10-year veteran at Yahoo, pleaded guilty to unauthorized intrusion into around 6,000 Yahoo accounts while working on the company's mail engineering team. He cracked user p
  • Mobile Users Increasingly Targeted by Undeletable Malicious Files

    Mobile Users Increasingly Targeted by Undeletable Malicious FilesSystem partition infections as a method of installing adware are on the rise in mobile devices, according to new research from Kaspersky. It found that 14.8% of Kaspersky users who were targeted by malware or adware in 2019 had this type of infection, which means the malicious files cannot be deleted.A system partition infection is particularly dangerous as security solutions are unable to remove malicious files because they cannot
  • Volume and Size of Fines for Data Breaches Expected to Rise

    Volume and Size of Fines for Data Breaches Expected to RiseThe number and value of fines for data breaches is predicted to increase between now and 2025, according to a new study by DSA Connect. Interviews with 1000 workers between 24 and 27 April 2020 revealed that 37% think there will be an increase and 6% believe the rise will be dramatic. Just 3% expect a reduction.In regard to fines linked to the inadequate deletion and destruction of data, 32% think there will be an increase, 4% anticipate
  • US Sends B-52 Bomber Over South China Sea as China Steps up Naval Drills

    US Sends B-52 Bomber Over South China Sea as China Steps up Naval Drills
    DefenceTalkDefenceTalkJOINT BASE PEARL HARBOR-HICKAM, Hawaii: One B-52 Stratofortress bomber from the 96th Bomb Squadron, 2nd Bomb Wing, Barksdale Air Force Base, Louisiana, took off from home...
  • Israel launches new spy satellite

    Israel launches new spy satellite
    DefenceTalkDefenceTalkJerusalem: Israel launched a new reconnaissance satellite early Monday, the defence ministry said, its latest asset to be deployed against arch-enemy Iran. “The Israel...
  • Flaw Fixed in Hotels.com Generator as Tesco Clubcard Users Impacted

    Flaw Fixed in Hotels.com Generator as Tesco Clubcard Users ImpactedTesco Clubcard users have been warned to check their accounts, after a weakness was discovered in the way that Hotels.com codes were generated, which then impacted Clubcard members as they tried to use their points.Whilst Tesco Clubcard’s IT systems have not been compromised in any way, research found cyber-criminals purchased fraudulent vouchers to provide huge discounts on bookings via Hotels.com. The codes were generated
  • Corporate Cybercrime Victims Double in Five Years

    Corporate Cybercrime Victims Double in Five YearsThe number of UK business falling victim to cybercrime has doubled over the past five years, costing the economy an estimated tens of billions in the process, according to new research from Beaming.The business ISP polled over 2500 companies between 2015 and 2019 to compile its latest report, Five Years in Cyber Security.The percentage of respondents claiming to have fallen victim to cybercrime rose over that time period from 13% in 2015 to a quar
  • North Korean Hackers Behind Magecart Attacks

    North Korean Hackers Behind Magecart AttacksNorth Korean hackers appear to have been breaking into US e-commerce stores since May 2019 and planting digital skimming code to make money for the hermit nation.Researchers at Sansec claimed today that the notorious Lazarus (Hidden Cobra) group was behind attacks on at least several dozen stores, including a recent high-profile raid on US accessories retailer Claire’s.It’s unclear how the attackers gained access to the victims’ back-
  • Google VP Withdraws from Black Hat 2020 Over its Name

    Google VP Withdraws from Black Hat 2020 Over its NameA Google VP has ignited a fierce debate in the cybersecurity industry over the use of potentially discriminatory language after withdrawing from the upcoming Black Hat USA virtual event in protest.David Kleidermacher, who is VP of Android security and privacy, thanked the organizers of the long-running security conference but said it was time to change.“Black hat and white hat are terms that need to change. This has nothing to do wi
  • Dual Carrier Strike Groups in South China Sea Reinforce US Commitment to Freedom

    Dual Carrier Strike Groups in South China Sea Reinforce US Commitment to Freedom
    DefenceTalkDefenceTalkSOUTH CHINA SEA: The Nimitz Carrier Strike Force celebrated Independence Day with unmatched sea power while deployed to the South China Sea conducting dual carrier operations...
  • Huawei could be cut out of UK's 5G network this year, say reports

    Huawei could be cut out of UK's 5G network this year, say reports
    GCHQ believed to be advising Boris Johnson that Chinese firm poses higher security riskThe UK is poised to end the use of Huawei technology in its 5G network as soon as this year because of security concerns, according to reports.The prime minister, Boris Johnson, is set to make a major policy change after GCHQ is believed to have reassessed the risks posed by the Chinese technology company, newspapers have said. Continue reading...
  • NSA Issues VPN Security Guidance

    NSA Issues VPN Security GuidanceThe National Security Agency released guidance this week on securing IPsec virtual private networks as companies across the US continue to grapple with remote working in the wake of the coronavirus pandemic. The advice included a warning not to rely on vendor-supplied configurations.The document came in two flavors: a guide to securing VPNs and a version with more detailed configuration examples. It warned that many VPN vendors provide cryptography suites and IPse
  • Moose Remain Unaware of Lottery Privacy Breach

    Moose Remain Unaware of Lottery Privacy BreachIt isn't often that you hear the words "breach," "privacy," and "moose" in the same sentence, but thanks to the province of Nova Scotia, that just changed. The maritime province on Canada's East Coast was dealing with the publicity fallout from an information leak this week after reportedly mismanaging the distribution of personal license information to hunters.Each year, Nova Scotia Lands and Forestry holds a lottery to distribute moose-hu
  • Avaddon Ransomware Still Using Excel 4.0 Macros

    Avaddon Ransomware Still Using Excel 4.0 MacrosJust like jokes, sometimes the old vulnerabilities are the best ones. So, stop us if you've heard this before: ransomware criminals are still using malicious Excel 4.0 macros in campaigns. This week, Microsoft's security intelligence team noted that Avaddon was the latest malware to use the macros as an infection vector.This week, Avaddon ransomware became the latest malware to use malicious Excel 4.0 macros in campaigns. Emails carrying the malicio
  • Record Number Enrol in Online NCSC CyberFirst Courses

    Record Number Enrol in Online NCSC CyberFirst CoursesA record number of teenagers have enrolled in the National Cyber Security Center’s (NCSC) CyberFirst summer courses this year, with classes held online for the first time due to the COVID-19 pandemic. As a result, the NCSC plans to offer a mix of classroom and virtual learning for future summer courses, even when social distancing restrictions have ended.Taking place annually, the courses offer teenagers aged from 14-17 the opportunity t
  • India approves purchase of 33 Russian fighter jets

    India approves purchase of 33 Russian fighter jets
    DefenceTalkDefenceTalkIndia’s defence ministry Thursday signed off on the purchase of 33 Russian fighter jets and upgrades to 59 others worth $2.4 billion, amid rising tensions with...
  • Hong Kongers scrub social media history in face of security law

    Hong Kongers scrub social media history in face of security law
    DefenceTalkDefenceTalkHong Kongers are scrubbing their social media accounts, deleting chat histories and mugging up on cyber privacy as China’s newly imposed security law blankets the...
  • Pentagon: China military exercises will ‘further destabilize’ S. China Sea

    Pentagon: China military exercises will ‘further destabilize’ S. China Sea
    DefenceTalkDefenceTalkThe Pentagon said Thursday it was “concerned” about Chinese military exercises around a disputed archipelago in the South China Sea, noting the maneuvers will...
  • Iran reports ‘accident’ at nuclear site, warns enemies

    Iran reports ‘accident’ at nuclear site, warns enemies
    DefenceTalkDefenceTalkTehran on Thursday reported an “accident” at Natanz nuclear complex in central Iran, saying there were no casualties or radioactive pollution, and warned foes...
  • St Paul's bomb-plotter Safiyya Amira Shaikh given life sentence

    St Paul's bomb-plotter Safiyya Amira Shaikh given life sentence
    Isis supporter and Muslim convert had admitted preparing terrorist actsA Muslim convert and supporter of Islamic State, who plotted to bomb St Paul’s Cathedral at Easter, has been sentenced to life in prison.Safiyya Amira Shaikh, 37, from Hayes, west London, admitted preparing terrorist acts and disseminating terrorist publications that encouraged others to launch similar attacks. She had been under police and MI5 surveillance. Continue reading...
  • V Shred Exposes Pics and PII on 100,000 Customers

    V Shred Exposes Pics and PII on 100,000 CustomersNearly 100,000 customers have had their sensitive personal data and revealing photos exposed online after a US-based fitness company misconfigured an Amazon database.Las Vegas-headquartered V Shred left the S3 bucket containing over 1.3 million individual files publicly accessible, according to vpnMentor.The research team discovered the leak on May 14 but it took a whole month for the company to disable access to the offending files. Initially, V
  • GoldenSpy Uninstaller Appears Out of Nowhere

    GoldenSpy Uninstaller Appears Out of NowhereA mysterious uninstaller has been discovered in malware-laden tax software required for download by firms doing business in China, according to Trustwave.The security vendor explained last week how it discovered a backdoor it named GoldenSpy inside Intelligent Tax software, produced by the Golden Tax Department of Aisino Corporation. A Chinese bank requires its business clients to download the software.The security vendor claimed at the time that the p
  • Global Dating App Users Exposed in Multiple Security Snafus

    Global Dating App Users Exposed in Multiple Security SnafusSecurity researchers have discovered five dating apps in the US and East Asia which are leaking millions of customer records thanks to misconfigured cloud databases.A team from WizCase led by Avishai Efrat explained that the Elasticsearch servers, MongoDB databases and AWS buckets they found were left publicly accessible with no password.In the US, an Amazon bucket traced to CatholicSingles was found to be leaking a 17MB database of 50,0
  • Researchers Find Vulnerabilities in Apache Remote Desktop Software

    Researchers Find Vulnerabilities in Apache Remote Desktop SoftwareResearchers have discovered a gaping hole in popular remote access system Apache Guacamole that puts thousands of companies with remote employees at risk. The flaw could allow attackers to control the software and the computers that connect to it. Luckily, there is a patch available.With large numbers of employees now working from home, remote access systems that let users control computers in the office from their home machines a
  • US Schools and Colleges Have Leaked 24.5 Million Records Since 2005

    US Schools and Colleges Have Leaked 24.5 Million Records Since 2005Schools and colleges in the US have leaked 24.5 million records since 2005, according to new research by technology website Comparitech. K–12 school districts across the country have suffered 1,327 breaches in the last 15 years—with last year's count setting an all-time high.According to a list of data breaches compiled by the site and with the help of tools from the National Center for Education Statistics (NCES), th
  • Hundreds Arrested After Cops Dismantle Encrypted Phone Network

    Hundreds Arrested After Cops Dismantle Encrypted Phone NetworkLaw enforcement has arrested 746 people in the UK after cracking an encrypted phone network used for criminal activities. The UK National Crime Agency had been working with international partners to crack the EncroChat network since 2016, it revealed today.EncroChat was one of the largest providers of encrypted mobile communications via its secure mobile phone network, operating from servers in France. It also offered an instant messa
  • Security Analysts Disproportionate in their Investigation of Malware

    Security Analysts Disproportionate in their Investigation of MalwareThe forms of malware most frequently investigated by security analysts are not actually the most widespread ones used by cyber-attackers, according to a new study by Kaspersky. It revealed that whilst Backdoors (24%) and Droppers (23%) are amongst the top three most commonly sent free requests to the Kaspersky Threat Intelligence Portal, they only make up 7% and 3% of all malicious files blocked by the Kaspersky endpoint product
  • US F-16 Crashes In South Carolina, Killing Pilot

    US F-16 Crashes In South Carolina, Killing Pilot
    DefenceTalkDefenceTalkA US Air Force F-16 fighter aircraft crashed during a training mission in South Carolina, killing the pilot, the Pentagon said Wednesday. The plane went down about 11:30 pm...
  • Finland’s Air Force Quietly Drops Swastika From Emblem

    Finland’s Air Force Quietly Drops Swastika From Emblem
    DefenceTalkDefenceTalkFinland’s air force, which for over a century has had a Swastika as part of its emblem, has replaced the controversial Nazi-linked symbol with a golden eagle, the military...
  • New Mac Ransomware Hidden in Pirated Software

    New Mac Ransomware Hidden in Pirated SoftwareSecurity researchers are warning of new Mac ransomware spread via pirated software on torrent and similar sites.Malwarebytes director of Mac and mobile, Thomas Reed, explained that the EvilQuest malware is now dubbed “OSX.ThiefQuest” to avoid confusion with a 2012 gaming title.He was first alerted to the ransomware hidden in a legitimate-looking edition of macOS firewall Little Snitch and uploaded to a Russian torrent site. However, it has
  • Security Serious Opens Nominations for Fifth Unsung Heroes Awards

    Security Serious Opens Nominations for Fifth Unsung Heroes AwardsNominations for the fifth annual Security Serious Unsung Heroes Awards are open.Intended to recognize the people who significantly contribute to the information security industry, whether in the classroom, in law enforcement or within corporate organizations, nominations are now open and will remain open until August 31 2020. The Unsung Heroes Awards will take place on Tuesday October 13 via a virtual cockt
  • Japan will reorient missile defense posture as Aegis Ashore is suspended

    Japan will reorient missile defense posture as Aegis Ashore is suspended
    DefenceTalkDefenceTalkJapan’s announcement on the suspension of the deployment of Aegis Ashore missile defense systems marks a potential shift in the country’s security strategy. The...
  • Scam Cryptocurrency Biz Dissolved After Stealing £1.5m

    Scam Cryptocurrency Biz Dissolved After Stealing £1.5mA scam cryptocurrency trading platform has been wound up by the courts after stealing £1.5m in clients’ funds.Gpay Limited was incorporated on 30 August 2017, and later traded as Cryptopoint and XtraderFX, according to a statement from government agency The Insolvency Service.It was finally closed down in the public interest last week by the High Court, after scamming countless novice traders who were drawn to the platf
  • Facebook Privacy Snafu Exposes User Data to Thousands of Apps

    Facebook Privacy Snafu Exposes User Data to Thousands of AppsFacebook has discovered another back-end privacy issue which meant that thousands of apps continued to receive users’ personal information even after access should have automatically expired.The social network’s vice-president of platform partnerships, Konstantinos Papamiltiadis, explained in a blog post that rules to limit developer access to Facebook user data were brought in several years ago.“In 2014, we introduce
  • Chinese threats, weaker US alliance spur Australian military overhaul

    Chinese threats, weaker US alliance spur Australian military overhaul
    DefenceTalkDefenceTalkAustralia has unveiled plans to dramatically tool-up its military as threats from China mount, but some see collapsing trust in the United States alliance as an underlying...
  • SonicWall Appoints Tristan Bateup as Country Manager for Ireland

    SonicWall Appoints Tristan Bateup as Country Manager for Ireland Cybersecurity solutions company SonicWall has announced the appointment of Tristan Bateup as country manager for Ireland as the firm seeks to expand its presence and capabilities in the country.Bateup has more than 10 years of experience in the cybersecurity industry, having previously spent five years managing SonicWall partner business at distributor Exertis before joining SonicWall to serve as strategic account manager for the U
  • Mental health may be 'significant factor' in NHS referrals to Prevent

    Mental health may be 'significant factor' in NHS referrals to Prevent
    Referring patients to anti-radicalisation scheme can worsen illness, charity says Mental health appears to be a significant factor behind referrals from the NHS to Prevent, the government’s controversial anti-radicalisation programme, a UK-based medical charity says.In an 18-month study, researchers at Medact found that a significant proportion of NHS referrals to Prevent came from mental health trusts or mental health departments. Related: Revealed: how teachers could unwittingly trigger
  • NTT Data Center Subsidiary Settles with FTC in Privacy Spat

    NTT Data Center Subsidiary Settles with FTC in Privacy SpatA subsidiary of Japanese tech communications giant NTT has settled with the Federal Trade Commission over a complaint that it misled customers about its participation in the Privacy Shield framework.NTT Global Data Centers used to be called RagingWire, but the Japanese telco acquired a majority 80% stake in the business in 2014, buying the remaining stock in January 2018. In November 2019, the FTC accused the Nevada-based data storage co
  • California's CCPA Gets Teeth Today

    California's CCPA Gets Teeth TodayAs of today, the California state government is enforcing the California Consumer Privacy Act (CCPA). Companies that don't comply with the law can expect stiff penalties from the government, along with potential consumer lawsuits.Although the CCPA was signed into law two years ago and has been in effect since January 1, there was a six-month grace period during which companies were expected to review their procedures and ensure that they complied with the r

Follow @Security_UKnws on Twitter!