White hat hacker replaces malware payload in Locky ransomware with dud file

White hat hacker replaces malware payload in Locky ransomware with dud file

Some good samaritan has messed with the pernicious locky ransomware to deliver, not malware, but a joke.

ICYMI: Lizard DDoS; Botnet growth; Qatari breach; Open source flaws; Ransomware surge

ICYMI: Lizard DDoS; Botnet growth; Qatari breach; Open source flaws; Ransomware surge

The latest In Case You Missed It (ICYMI) looks at Lizard Squad DDoS, Botnet growth, Qatar bank breached by facists, Hidden Open Source flaws, Ransomware surge.

Spearphishing attack nets hundreds of thousands from investment firm

Spearphishing attack nets hundreds of thousands from investment firm

Spear-phishing attacks continue to make big profits for attackers and big losses for victims, according to a new Mimecast report.

DDoS researchers are among most DDoSed

DDoS researchers are among most DDoSed

NexusGuard's Q1 2016 report has found that one of the favorite targets of DDoS attackers are attack researchers

UK's National Unplugging Day 2016 set for 26 June

The second annual National Unplugging Day in the UK will be held this year on 26 June 2016 to encourage families to spend the day from start to finish without any technology.

Android/Clicker.G malware found in Google Play apps

Researchers found a series of malicious apps containing Android/Clicker.G on the Google Play store. The campaign targets mobile devices in Russia, but they affect apps that are available globally.

Anonymous 'Operation Icarus' launches DDoS against Bank of Greece

Anonymous launched an attack against the Bank of Greece as part of a 30-day campaign targeting central banks across the world.

New PCI DSS version concentrates on multi-factor authentication and encryption

New PCI DSS version concentrates on multi-factor authentication and encryption

New PCI regulation will include a heavy focus on multi-factor authentic, people, processes and encryption

Infamous 'Guccifer' claims he breached Hillary Clinton's email server

Romanian jailed hacker Marcel Lehel Lazar, otherwise known as 'Guccifer', claims that he repeatedly breached the personal email server of US presidential candidate Hillary Clinton in early 2013 when she was Secretary of State.

272 million email account credentials found on the dark web

272 million email account credentials found on the dark web

Hold Security has bought hundreds of millions of email credentials off the dark web for less than £1

Michigan electrical utility company hit with ransomware attack

Michigan electrical utility company hit with ransomware attack

The Michigan Board of Water and Light has been beset with a ransomware infection.

UK adults clueless on where to find advice about protecting themselves

Adults in the UK don't know where to go for advice when it comes to protecting themselves online or where to turn if they become victims of fraud.

The wave of a wand won't patch the security bug found in ImageMagick

A security bug in ImageMagick, the free open source image processing software, is allowing cyber-criminals to attack vulnerable servers from afar.

Localised "designer" malware campaigns all the rage, says Sophos

Localised "designer" malware campaigns all the rage, says Sophos

Criminal outfits are increasingly distributing "designer" spam and malware, customised to optimally target victims in specific geographic regions, according to new research from Sophos' research division, SophosLabs.

Ransomware continues to plague world's computers, says FireEye

Ransomware continues to plague world's computers, says FireEye

Surprising no one, ransomware continues its relentless march into the systems of individuals and businesses despite our familiarity with the attack method and the best efforts of anti-malware products.

Online fraud transactions to more than double by 2020, study says

Online fraud transactions are expected to reach $25.6 billion (£17.6bn) by 2020, up from $10.7 billion (£7.4B) last year. Meaning that by the end of the decade, $4 (£2.7) in every $1,000 (£687) of online payments will be fraudulent.

Court decisions erode Privacy Shield support

Court decisions erode Privacy Shield support

The long-besieged Privacy Shield agreement proposed by US and European officials faces a new round of challenges following recent decisions by the US Foreign Surveillance Intelligence Court and the Supreme Court.

39% of UK organisations are less vulnerable than one year ago

Nearly 40 percent of UK companies are more secure than they were this time last year, however the threat and consequences of security breaches are still a priority for IT pros.

Vendors hiding open-source security flaws in commercial software

Vendors hiding open-source security flaws in commercial software

The use of open source components in commercial software is more common than even vendors are aware of and it's leaving customers open to unpatched flaws.

World Password Day: resources to help you on this special occasion

5 May 2016 is World Password Day.

Google denies email injection flaw can bypass filters and pwn users

Google denies email injection flaw can bypass filters and pwn users

Israel-based cyber-threat specialists Cyberint insists it has found a serious flaw in Google security despite the tech giant's denials that email injection can bypass security filters.

PC users improve software patching yet challenges remain

UK PC users are making progress when it comes to patching software vulnerabilities, however big challenges still remain.

Number one risk to the broader economy is cyber-risk

Cyber-risk remains the number one overall concern of the financial industry to the broader economy.

Parameter tampering flaw allowed Pwnedlist to get pwned

Parameter tampering flaw allowed Pwnedlist to get pwned

Pwnedlist - which provided data on billions of pwned credentials - contained a flaw that allowed users to monitor breaches for arbitrary domains.

Europol and F-Secure sign MoU to share cyber-crime info

Europol and F-Secure sign MoU to share cyber-crime info

Europol has signed a Memorandum of Understanding with Finnish online security company F-Secure. The agreement aims to improve information sharing for fighting crime.

Mobile devices still vulnerable to attack - report

Mobile attacks can workaround two-factor authentication on Android phones and inject malware onto iOS phones.

Action Fraud warns of new wave of Lizard Squad DDoS attacks

Action Fraud warns of new wave of Lizard Squad DDoS attacks

Lizard Squad is back with a vengeance, according to an advisory from Action Fraud UK which is advising organisations to report the attacks, keep detailed records and seek help from their ISPs.

US judge compels woman to provide fingerprint to open Apple iPhone

US judge compels woman to provide fingerprint to open Apple iPhone

The FBI recently pressed for a 29-year-old Los Angeles woman to provide her fingerprint to open her phone after she was sentenced in an identity theft case.

UMICH researchers remotely pick locks of Samsung SmartThing connected home systems

UMICH researchers remotely pick locks of Samsung SmartThing connected home systems

In a series of attacks, University of Michigan researchers hacked into Samsung SmartThing connected home systems and remotely unlocked doors.

Roughly a quarter of UK cyber-attacks originate from ransomware

Ransomware accounts for around a quarter of cyber-threats targeting internet users in the UK.

'Wizz' kids: Talos researchers pinpoint French firm as source of spyware-adware threat

'Wizz' kids: Talos researchers pinpoint French firm as source of spyware-adware threat

A supposedly legitimate French software firm, Tuto4PC, has actually infected an estimated 12 million PC users with a generic Trojan disguised as downloadable utilities programmes, according to an analysis from Cisco's Talos research division.

Marcher banking malware hitting Australia

Marcher Madness continues with a new, stealthier iteration of the Marcher banking malware targeting Android users in Australia.

Filipino authorities arrest second man in hack that revealed data on 55M voters

The 23-year-old mastermind behind the hack of the Commission on Elections (COMELEC) website, which led to the exposure of 55 million voter records, was arrested by the Cyber-crime Division of the National Bureau of Investigation in the Philippines Friday.

Researchers spot Android Infostealer disguised as Chrome update

Researchers spot Android Infostealer disguised as Chrome update

Zscaler researchers spotted an Android infostealer disguised as a Google Chrome update that is capable of terminating antivirus applications and even ending calls.

Botnets getting bigger and stronger, says Kaspersky

Botnets getting bigger and stronger, says Kaspersky

Botnets are getting bigger and DDoS attacks more frequent according to Kaspersky

Video: New EPQ offers students equivalent of cyber-security AS level

Video: New EPQ offers students equivalent of cyber-security AS level

To address the urgent need for more young people to enter the cyber-security industry, the Cyber Security Challenge UK and partners have launched the new EPQ qualification.

Qatar National Bank breached, files published, Turkish fascists claim responsibility

Qatar National Bank breached, files published, Turkish fascists claim responsibility

Qatar National bank has had 1.4 GB of internal files published online including the names of intelligence agents, government departments and the Qatari royal family. A turkish fascist group has claimed responsibility.

Belgian minister of defence stresses investing in cyber-security

Belgium's minister of defence, Steven Vandeput has stated the importance of investing in technology for national security.

Judge ruled go ahead for claims of phone hacking against UK tabloid

High Court judge Mr Justice Mann has ruled the go ahead for claims against The Sun newspaper for phone hacking.

BT Tower mock cyber-investigation unveils hidden IT talents

In an effort to find the best hidden cyber-security talent, BT and the Cyber-security Challenge UK staged a mock investigation into a cyber-attack at London's BT Tower last weekend.

Mining company's data is more valuable than gold

Mining company's data is more valuable than gold

Hackers reportedly posted employee data and private documents belonging to a publicly listed gold-mining company on a paste site.

Survey: Wearable devices most likely to pose IoT security threat

Wearables are the Internet of Things (IoT) devices most likely to emerge as a security threat or cause a breach, according to a new survey by Spiceworks and Cox Business.

Uniting pro-ISIS hacking groups still unsophisticated, but sharpening skills, report says

Uniting pro-ISIS hacking groups still unsophisticated, but sharpening skills, report says

Pro-ISIS hacking groups joining forces behind a super-hacker team, the United Cyber Caliphate, are sharpening their skills and showing a willingness to coordinate and amp up cyber-attacks, a new report revealed.

Insider threat could use ransomware-as-a-service to profit from victims

Insider threat could use ransomware-as-a-service to profit from victims

Researchers now think that Ransomware-as-a-Service can be exploited particularly effectively by those with insider knowledge of an organisation

The US declares cyber-war on Islamic State

The US declares cyber-war on Islamic State

The US, finally and for the first time has announced its intentions to wage cyber-war on Islamic State

Attackers exploit MS Windows 'God Mode' for evil ends

Attackers exploit MS Windows 'God Mode' for evil ends

It appears that the developer mode of MS Windows, otherwise known as 'God Mode', is being leveraged by attackers to hide malware.

Windows XP and USB ports making cash machine vulnerable to attack

Windows XP and USB ports making cash machine vulnerable to attack

According to Kaspersky, ATMs are far easier to get into that you might think

37% of Brits share personal login details with friends or partners

Over 10 percent of the UK population has pretended to be someone else online by snooping or sending messages through someone else's social media or email accounts without their permission.

Singtel opens unique cyber-security institute in Asia-Pacific

Singapore Telecommunications (Singtel) has opened a new facility to help enterprises enhance cyber-security skills and test their networks in dealing with cyber-threats.

SWIFT confirms additional cyber-attacks on its messaging system

The financial messaging organisation SWIFT has issued a warning to its customers stating its system has undergone repeated attacks similar to those that lead to $81 million (£55.7M) from a Bangladesh bank.

RSA EMEA Summit: Writing a security strategy that will make Vivaldi proud

RSA EMEA Summit: Writing a security strategy that will make Vivaldi proud

Richard Nichols, RSA's head of EMEA strategy compared playing the violin to conducting an effective security strategy, to encourage businesses to harmonise security strategy and promote greater visibility of threats on the business.

RSA Summit: Gibson urges information sharing to beat ransomware

RSA Summit: Gibson urges information sharing to beat ransomware

The director of CERT UK laid out some of the problems facing UK cyber-space and outlined what cyber-security could do to help fix them.

Viruses and malware detected in German nuclear power plant computers

The Gundremmingen nuclear power plant located 120 km northwest of Munich has been infected with computer viruses and malware.

GozNym banking malware spotted in Europe

IBM's X-Force reported today the actors behind the hybrid GozNym banking trojan have released a new configuration that is targeting European banks.

UK public approve of Investigatory Powers Bill 'in spirit'

UK public approve of Investigatory Powers Bill 'in spirit'

Though deeply unpopular in some circles, a new YouGov poll has shown broad approval for the enumeration of government surveillance powers in the Investigatory Powers Bill.

Security concerns are top issue keeping orgs from virtualising all apps

Nearly 70 percent of high-ranking technology professionals believe that security will be less of an obstacle to greater cloud and software-defined data centre (SDDC) adoption by the end of 2016.

BeautifulPeople.com hack exposes data of 1.1 million users

BeautifulPeople.com hack exposes data of 1.1 million users

The exclusive website was breached months ago and the information of over a million of its users has been sitting on the Dark Web ever since then.

Report: Ransomware feeds off poor endpoint security

Report: Ransomware feeds off poor endpoint security

Poor endpoint security is propelling the great ransomware epidemic of 2016 — and if allowed to fester, the threat will spread to new endpoints including IoT devices, cars and ICS and SCADA systems, a new report says.

Video: Kaspersky says attacks on 'critical infrastructure' on the rise

Video: Kaspersky says attacks on 'critical infrastructure' on the rise

Information technology and process automation, essential to modern industrial facilities, are under threat from hackers who are increasingly targeting ICS and SCADA systems, says Eugene Kaspersky.

CyberCenturion crown goes to team from Gibraltar

CyberCenturion crown goes to team from Gibraltar

CyberCenturion 2016, the competition which started with around 50 teams, was narrowed down to the final 10 who competed today at Bletchley Park for the crown.

73% of global brands and organisations hit with DDoS attack in 2015

With the bombardment of DDoS attacks fairly consistent worldwide throughout 2015, it's no longer a matter of if or when attacks might happen, but how often and how long the attack will last.

Clapper: U.S. mulling ways to disclose info on Americans caught up in gov't spy net

Clapper: U.S. mulling ways to disclose info on Americans caught up in gov't spy net

James Clapper, the Director of National Intelligence has said that the government is considering ways it might disclose information about Americans under government surveillance

Clapper unhappy that Snowden sped up encryption by 7 years

James Clapper, director of national intelligence has blamed the NSA whistleblower Edward Snowden for making it harder for the US to monitor and arrest terrorists by advancing the development of more advanced and widely available encryption.

Ransomware and phishing attacks are up, once again.

Ransomware and phishing attacks are up, once again.

Verizon's new report shows, once again, that ransomware and phishing attacks are up.

Banks warned that malware that hit Bangladesh central is heading their way

Banks warned that malware that hit Bangladesh central is heading their way

A special bespoke malware seems to the at the centre of a massive cyber-fraud resulting in the theft of millions of dollars from Bangladesh Bank

Was Spotify breached? Account info shows up on Pastebin

Spotify may have experienced a security breach based on a list of customer account credentials discovered on Pastebin.

93.4 million Mexican voters exposed in massive database leak

93.4 million Mexican voters exposed in massive database leak

The electoral details of the full voting public of Mexico have been leaked and published

Intelligence court affirms FBI's right to search Americans' emails without a warrant

Intelligence court affirms FBI's right to search Americans' emails without a warrant

In a declassified ruling, a federal judge of the Foreign Intelligence Surveillance Court (FISC) ruled that the FBI's search of Americans' emails without a warrant during criminal investigations is not contradictory to the Constitution or the FISA Amendments Act.

'Bored' Filipino IT experts to be hired as white-hat hackers

In order to better improve and ensure cyber-security of government websites, Philippine senator Ralph Recto plans to recruit "bored" Filipino hackers to serve as "cyber-commandos".

Cisco flags five product vulnerabilities that could trigger denial of service

Cisco flags five product vulnerabilities that could trigger denial of service

Cisco issued five security alerts last week, issuing software updates to patch a series of vulnerabilities, any of which could potentially trigger a denial of service condition.

Sixth teen arrested in breach of UK ISP TalkTalk

A teenager turned himself in to police in Staffordshire, UK, where he was arrested on charges stemming from a breach of internet services provider TalkTalk.

WhiteHat reports The FREAKS are out

WhiteHat reports The FREAKS are out

Whitehat's top 10 web hacking techniques of 2015 have been released and the freaks have topped the list.

Bug hunter finds backdoor in Facebook left by another bug hunter

Bug hunter finds backdoor in Facebook left by another bug hunter

A series of bug bountiers have apparently open and closed a vulnerability in the social media giant, Facebook.

Anonymous hackers shut down KKK website

The website of white supremacist group the Ku Klux Klan (KKK) has been shut down by hackers associated with the hacktivist group Anonymous.

Smart cities still dumb enough to be hacked

Smart cities still dumb enough to be hacked

The root of the problem with malicious smart city hacking lies in the fact that sensors typically collect 'raw' data and then merely pass it on.

Hacked filipino voter records made public

Hacked filipino voter records made public

Filipino voting records which were breached earlier this month have now been made public and searchable.

Credit card fraudsters moving fast before US chip and pin adoption

Credit card fraudsters moving fast before US chip and pin adoption

The adoption of EMV in the US is quickly closing off the lucrative trade in card details, driving up the price of stolen data.

British holidaymakers targeted by online travel agent scams

British holidaymakers targeted by online travel agent scams

Holidaymakers are being ripped off by a number of scams originating from online travel agents with fake reviews and rigged pricing.

47% of EU businesses don't know where their data is located

Almost half (47 percent) of IT leaders in EU-based businesses are unaware of the geographical location of critical and personal data.

Cyber-crime as a business rampant, new study

Cyber-crime as a business rampant, new study

Attacks are getting fiercer and attackers more sophisticated and organised, according to the "2016 Trustwave Global Security Report," released this week.

Australia's prime minister confirms Australian Bureau of Meteorology attack

Australian prime minister Malcolm Turnbull confirmed that the Australian Bureau of Meteorology was indeed a target of a cyber-attack last year.

South Korea no 1 origin point for DDoS attacks

South Korea no 1 origin point for DDoS attacks

According to a new report by Imperva, South Korea serves as the most prolific point of origin for global DDoS attacks.

Hacker taps US Congressman's cellphone

Hacker taps US Congressman's cellphone

After a hacker got into the phone of Democratic Congressman Ted Lieu, the California lawmaker is asking for an investigation.

Is Hybrid AI the future of cyber-security?

Is Hybrid AI the future of cyber-security?

The future of cyber-security looks part human and part machine, according to MIT's Computer Science and Artificial Intelligence Laboratory but what does the broader industry think?

Data breach threats keep 51% of biz leaders from sleeping at night

Over half (51 percent) of senior decision-makers in large businesses are kept awake at night due to the threat of a data breach caused by a cyber-attack.

US-based IP addresses created the most cyber-attacks in three years

Cyber-attacks from US-based IP addresses have reached the highest point in the last three years.

Apps leaking credit card data on enterprise mobiles rose 17% in Q1

From Q4 2015 to Q1 2016 there was a 17 percent rise in apps and websites leaking credit card data on enterprise mobile devices.

Hacktivist school set up on dark web

Aspiring hacktivists can now login to a chat service hosted by Anonymous to learn coding and encryption.

Millennials more likely to store sensitive data on mobile devices, study

Millennials more likely to store sensitive data on mobile devices, study

An Equifax study found millennials were more likely to store sensitive data on their personal devices.

Wheat a moment: Multigrain malware uses DNS to steal POS data

Wheat a moment: Multigrain malware uses DNS to steal POS data

Multigrain malware targets specific processes operating on point-of-sale systems and then exfiltrates data to command and control servers via DNS queries.

APT spies used malware made for jealous spouses

APT spies used malware made for jealous spouses

Trend Micro has dissected malware used in the Operation C-Major attack officers of the Indian army and tracked it back to malware that originated from Pakistan.

SC Congress Amsterdam: Cyber-warfare - "we are all involved in this"

SC Congress Amsterdam: Cyber-warfare - "we are all involved in this"

Although some would argue that cyber-war is still in its infancy, it is - according to our panel of experts at the SC Congress Amsterdam - well under way across the globe.

World's largest international cyber-defence exercise underway in Tallinn

Some 26 nations and more than 550 computer experts are engaged in the worlds biggest 'live fire' international cyber-defence exercise - Locked Shields.

SC Congress Amsterdam: Info sharing essential to combating cyber crime

SC Congress Amsterdam: Info sharing essential to combating cyber crime

A panel convened at SC Congress Amsterdam's session on preventing cyber-crime. They agreed that we need to consider the threat, our response and how we might become equally and better organised than our opponents.

SC Congress: Are you ready for the new EU data protection regulation?

SC Congress: Are you ready for the new EU data protection regulation?

Jamie Randall, Elisabeth DeLeeuw and Dai Davis joined SC Congress Amsterdam's panel to talk about some of the problems, and potential benefits of the upcoming EU data protection regulations.

MouseJack vulnerability affects over 80% of businesses worldwide

Microsoft patched various vulnerabilities in its products last week including the 'MouseJack' flaw, however it is still affecting most organisations.

Hacker behind Hacking Team breach publishes how-to guide

Phineas Fisher, the hacker who claimed responsibility for breaching Hacking Team last year, published a how-to guide detailing his process in executing the attack.

Python malware slithers its way into European organisations

A strain of malicious code written entirely in Python, dubbed PWOBot, has been discovered infecting a number of organisations based in Europe, specifically in Poland.

Cyber-security new atom bomb, says Apple co-founder Steve Wozniak

Cyber-security is the greatest threat since the atom bomb, said Apple co-founder Steve Wozniak.

SC Webcasts UK

Sign up to our newsletters

FOLLOW US