A mysterious Good Samaritan has replaced the code on certain parts of the villanous Dridex botnet with Avira Anti-virus installers.
Malware keeps re-infecting sites and installing multiple backdoors in WordPress websites, according to a researcher from Sucuri Security.
Apple has brought on board two security researchers who previously worked to develop the infamous Thunderstrike 2 worm.
A new report from threat-intelligence experts Crowdstrike has highlighted the continuous shift from individual cyber-criminals and cyber-gangs to skilled adversaries such as governments and large organisations.
Users of the DayZ zombie shoot 'em up have been informed by the developer that their passwords and messages have been stolen by hackers.
The latest In Case You Missed It (ICYMI) looks at; Investigatory Powers Bill; TalkTalk woes continue; EBay exploit unfixed; EU-US Privacy Shield agreed; Malwarebytes apologises for flaw.
Due to a failure to protect valuable data, businesses are leaving themselves exposed to unnecessary levels of risk.
A UK school technology supplier has committed to providing secure logins for a service used by many schools.
A United Nations panel declared that the past three-and-a-half years that Julian Assange spent in Ecuador's embassy in the UK were effectively an "arbitrary detention", as the WikiLeaks founder fights extradition to Sweden.
An amateurish ransomware known as DMA Locker could crash while encrypting files, leaving users confused as to why their machines aren't operational.
Every day cyber-criminals are benefiting from Australian SMBs that are uneducated and unwilling to properly protect their data.
Researchers at Rapid7 discovered vulnerabilities in Fisher-Price's Smart Toy and hereO's GPS platforms that could expose user data.
High profile attacks backed by ever-growing firepower are pointing to an arms race in DDoS attacks. Are we heading for a doomsday scenario?
TalkTalk has revealed that the October data breach has cost the firm up to £60m, resulting in the loss of over 100K customers.
Researchers at Dr. Web spotted the Android.Xiny.19.origin trojan incorporated into more than 60 games in the Google Play Store.
Russia fires a warning shot across the US bows in response to the 'US offensive cyber-threat,' saying that it does not lag behind the US when it comes to cyber-technology, noting that its hackers are among the best.
Crypto-currencies like Bitcoin may not be as anonymous as they once were as the European Commision announces its intention to regulate the virtual currency exchanges that, the Commission says, aid terrorist financing.
European business people are more prone to malware attacks through their smartphones than children and millennials.
A provider of IT infrastructure has called for central government to include local government more in mapping out national cyber-security policies.
Researchers at Zscaler spotted attackers using macro malware as a vector to spread the Neutrino bot via spearphishing emails.
For anyone wanting to remain anonymous, Ashley Madison is now allowing its users to add a mask to their profile picture with a new security tool called discreet photo.
Study of 450 UK IT and security professionals uncovers insufficient planning and lack of clear ownership as major inhibitors to achieving cyber resilience.
US space agency denies it has a problem as AnonSec claims to have easily guessed passwords for devices once they had breached the perimeter.
A last minute agreement on EU-US Safe Harbour transatlantic data transfers has been announced, but civil liberties objections are expected by those who believe initial concerns are not fully addressed.
Malwarebytes' CEO has apologised, and launched a bug bounty scheme, after Google Project Zero researchers exposed the latest in a long line of anti-virus product flaws.
Though a large vulnerability was discovered in eBay's global sales platform, the company has 'no plans' to fix the active code exploit.
Year 9 students will attend a Smallpiece Trust course, supported by GCHQ, to learn the latest cyber-security technology and techniques.
A new South American hacker and LulsZec member, Hanom1960, has breached Colombian government websites.
Researchers at SecureList have uncovered a new family of backdoors for Linux and Windows.
Kaspersky Lab had discovered several new developments in the ongoing BlackEnergy Saga
Security researcher, CthulhuSec has released a data dump of thousands of internal files from America's largest police union handed to him by an unknown hacker.
Lincolnshire county council is back up and running after having been infected with ransomware last week.
Users urged to apply patch to Android vulnerability as soon as possible.
Crooks have developed a strain of Android ransomware that threatens to expose a user's browsing history.
Dubbing Theresa May's Investigatory Powers Bill as 'confusing', MPs in the science and technology committee released a report which says firms are fearing a rise in hacking due to encryption 'back doors'.
Cyber-Caliphate announced in a post on its Telegram account on Friday that the jihadi hackers would migrate communications to Threema.
Researchers at Malwarebytes have spotted thieves using a phishing scheme to unlock stolen iPhones.
Talk Talk has lost seven percent of its broadband customers since its data breach, and in India arrests have been made as part of an investigation into phone scams targeting TalkTalk customers.
Banking giant HSBC's online banking portal has been taken by a large DDoS attack, just a couple of days before taxes are due in.
Yuval Steinitz, Israel's energy minister reported Israel's Electricity Authority, the regulator of the actual Israeli power company, was hit by a 'severe' cyber-attack. The power grid itself not affected in any way.
FireEye researchers have released a report which details potential security issues with software used to dynamically patch iOS apps.
The Guardian and Silent Circle have teamed up to bring 'The Power of Privacy',a look at the world of cyber-security and the future of our data.
ICYMI: €50 m cyber-fraud; Codoso back; MS/US gov clash; Adultery extortionists; Apple's encryption key
The latest In Case You Missed It (ICYMI) looks at €50 m aeroplane cyber-fraud; Chinese cyber-espionage returns; MS resists US claim on data; Extortion of Ashley Maddison members; Apple iCloud Backup insecure.
If they are to limit damaging effects, enterprises must prepare and equip themselves with the proper skills to react to and prevent cyber-attacks.
Lincolnshire County Council had to turn off all network computers yesterday after being hit by ransomware on 300 of the staff's computers.
Mozilla released 11 patches for Firefox 44 and Firefox ESR 38.6 with three being rated as critical.
With the General Data Protection Regulation (GDPR) looming over the cyber-security industry, this year's Data Protection Day has a certain resonance to it.
Two new reports from recruitment company BeecherMadden have shown demand for cyber-skills to be rising massively with few able to meet that demand while CISO salaries are also going up.
Dr Adrian Davis of (ISC)2 spoke to SC about how cyber-security will affect all of our lives in the coming decade and how it can't be left up to the market to decide how.
Hackers in India are being handsomely rewarded for taking on work for ISIS.
Less than a year after Superfish, Lenovo is making the security news once more for all the wrong reasons.
A zero-day bug in version 3.8 of Linux can potentially affect millions of Linux computers and servers as well as 66 percent of Android devices.
Michael Stepankin, also known as Artsploit, has disclosed a major vulnerability in PayPal's business site, allowing remote code execution.
New research by the Ponemon Institute commissioned by Gemalto is showing there is a critical need for organisations to improve their payment data security practices.
Symantec reported the worldwide infection of 3,500 public servers with a malicious script that redirects its victims to other compromised websites and said it believes could be part of a recon effort for future attacks.
A malicious Google Chrome extension forces users to install it via its irritating installation popups and then spies on browser histories and sends them to a remote server.
DDoS attacks are on the increase and getting bigger and more widespread, according to research released by Arbor Networks.
Christophe Jolly of Cisco France took the stage at FIC 2016 to outline the fundamental security problems in the looming "internet of everything".
Train travel via rail operator c2c in southeast England has recently become more of an annoyance for already angry commuters.
Bernard Cazeneuve, France's minister of the interior, has called for greater cooperation between states, businesses and citizens in the fight against online radicalisation and cyber-crime.
Malware based on open-source code, created for educational purposes only, has been spotted in the wild by Bleeping Computer's Lawrence Abrams.
An Austrian firm that supplies parts for Airbus and Boeing has admitted that it was the victim of cyber-fraud that cost the company €50 million.
Mushrooming numbers of BYOD and IOT devices is putting corporate networks at risk, says ForeScout CEO Michael DeCesare in an exclusive video interview.
Respondents to a new survey from FICO unanimously agreed: Data breaches this year in other industries will damage financial institutions.
In the past year, Islamic State (IS), formerly ISIS/ISIL, has used social media and encrypted online platforms to recruit terrorists and promote propaganda content.
Malwarebytes discovered a tech support scam run by a member of Symantec's partner programme that not only sells its victims unnecessary tech support services, but also legitimate Norton products.
IBM's Jeff Penrose spoke at FIC 2016 on how law enforcement can win the 'cyber-security arms race'.
The European Parliament has approved its report, Towards a Digital Single Market Act, with cyber-security a major concern. We speak to Estonian MEP Kaja Kallas.
BlackBerry would like its users to know its phones are "as safe as they have always been" after reports that Dutch police are capable of reading encrypted BlackBerry messages.
The UK's privacy watchdog warns that facial recognition software and handset identifiers broadcasted via Wi-Fi are allowing UK retailers to track and target their customers through their smartphones.
Palo Alto Networks is reporting that after a three month hiatus Chinese cyber-espionage group Codoso - which carried out the attack on Forbes.com - is back in action.
The Ukrainian police service has begun hiring officers to fill a new cyber-policing agency in cooperation with the US Department of Justice, according to the country's interior minister.
Security firm goes full disclosure on mechanics of SSH issue and finds three more vulnerabilities
Microsoft has rejected a request by the US government to hand over data the software giant holds in Ireland, claiming that the data in question doesn't belong to the company and raising questions of data jurisdiction.
The European Court of Human Rights has found the Hungarian government guilty of violating article eight of the European Convention of Human rights: the right to privacy
Researchers at Princeton University's Center for Information Technology Policy (CITP) found security vulnerabilities in many of the most popular IoT devices that they looked at, including Google's Nest Thermostat.
Since the Ashley Madison breach, some users of the infidelity service have received blackmail letters via the US postal system from extortionists threatening to blow their cover.
ICYMI: New PayPal spam; WEF top risks; Ukraine cyber-attack; OpenSSH vulnerabilities; IoT Doorbell flawed;
The latest In Case You Missed It (ICYMI) looks at a new type of PayPal spam, WEF names cyber-attacks as one of its top three threats, Ukraine suffers major cyber-attack on main airport, OpenSSH open to MitM attacks and the IoT doorbell that reveals its owners wifi key.
Consumer group in the Netherlands sends in the lawyers over Samsung's allegedly "poor software update policy for Android smartphones".
The cyber-criminals who targeted WhatsApp users with malware may be behind a phishing scam that is now going after Facebook users, according to a new report.
A newly-discovered privilege-escalation vulnerability in the Linux kernel has once again opened the debate around just how secure the open-source operating system really is.
Slovakian IT security company, ESET, has discovered a new wave of attacks against Ukrainian critical industries, recalling the malicious power outages of the last few years.
Having recently taken on the studio boss role at Relativity Studios, House of Cards star Kevin Spacey fears a hack similar to that of Sony Pictures will occur again.
The Irish National Lottery website and ticket machines operations have been disrupted by a cyber-attack.
Some worrying trends were revealed in a new study by the Duo Labs team that analysed the state of security on Android devices.
Apple released patches for iOS, OS X and Safari after Synack's Patrick Wardle demonstrated that it was still possible for attackers to bypass Apple's Gatekeeper program.
Advertisers are losing billions to ad-clicking botnets that generate fake traffic, according to a study by the Association of National Advertisers and security vendor White Ops.
Trustwave is facing yet another lawsuit from a gambling company who claims Trustwave failed to spot several pieces of malware when investigating a breach.
The Home Secretary has announced her plans to grant police forces powers to recruit expert volunteers with policing powers to help fight crime online.
The Xfinity account of John Holdren, senior advisor on science and technology to US president Barack Obama, has been breached.
A new report has warned of the dangers of bad cyber-security when it comes to nuclear power, handing out '0' ratings to tens of countries around the world and warning of a Fukushima-scale threat.
Steven Englehardt, a PhD candidate at Princeton University, unveiled his open source web measurement platform developed to allow for online tracking measurement.
Researchers discovered a serious vulnerability in the Linux operating system kernel that could allow attackers to take full control of Linux devices, including PCs, Android phones and servers.
SC Webcasts UK
Sign up to our newsletters
SC Magazine UK Articles
- Robin Who? Dridex botnet replaced with antivirus software
- Google begins protecting against ads of dubious origin
- Clean house to keep WordPress infection from coming back again and again
- Thunderstrike 2 creators join their one-time target Apple
- Report notes shift from individual cyber-crims to skilled adversaries