ICYMI: Malvertising, the Saudis, massive attack, Cyphinx and WinRAR

In this week's In Case You Missed It (ICYMI): Porn site hit by malvertising, Saudi Arabia tried to buy Hacking Team, botnet-powered massive attack, Cyphinx cyber-security game goes live and half a billion WinRAR users left open to assault.

Some porn site users are getting more than they bargained for
Some porn site users are getting more than they bargained for

Adult websites hit by malvertising scam

Criminals are looking to porn sites to infect user's machines with malware hidden inside adverts. The latest attack was picked up by IT security firm Malwarebytes. Criminals managed to insert malicious adverts onto an adult website called xHamster, which itself is a legitimate but adult-oriented video site. [Read more]

Saudis tried to buy Hacking Team: hit by Anonymous for teen crucifixion

Among the 400GB of the Italian Hacking Group's internal data released onto Wikileaks following a July breach were more than a million company emails including several detailing the Saudi Arabian government's bid to buy control of the surveillance company. [Read more]

Massive traffic attack: botnet-powered Layer 7 HTTP flood

Content delivery network company CloudFlare has surfaced what appears to be an apparently very potent Distributed-Denial-of-Service (DDoS) attack. The specific occurrence is said to have involved mobile advertisements capable of generating around 275,000 HTTP requests per second. [Read more]

Cyphinx: an online game to train the cyber security specialists of the future

Cyber security essentials has launched a 3D online game to help train and test the cyber-security specialists of the future and plug the UK's "skills gap". Dubbed Cyphinx, the game requires users to create a character which is put into ‘the skyscraper', a  gateway to games which teach cyber-security disciplines including network defence, ethics, forensic analysis and risk analysis. [Read more]

WinRAR vulnerability leaves users open to attack

Over half a billion users of the WinRAR file compression tool could be at risk of infecting their computers, thanks to a newly discovered flaw in the application. An unpatched, critical remote code execution vulnerability within WinRAR's SFX archive features has been revealed by a researcher. Reza Espargham from Vulnerability Lab discovered the bug which was subsequently reproduced by Pieter Arntz from Malwarebytes. [Read more]