German car parts maker Gedia Automotive Group has had to shut down its IT operations following a massive cyber-attack. Poland, Hungary, Spain, China, India, USA and Mexico operations also affected
The Emotet malware has dominated the malware threat landscape despite an overall fall in malware over the last quarter of 2019.
To share best practice among ISPs the World Economic Forum and its global partners have published Cybercrime Prevention Principles for Internet Service Providers.
BitPyLock threat actors are now exfiltrating data before the ransomware encryption begins
The Muhstik botnet harvests vulnerable Tomato routers and researchers report that Muhstik mainly launches cryptocurrency mining and DDoS attacks in IoT bots to earn profit.
NSO denies involvement in case of Jeff Bezos, alleged to have had his phone hacked via a video file from the WhatsApp account of Saudi Arabia's crown prince, Mohammed bin Salman.
Massive campaign by APT group targets pharma companies in the US, Mexico, Germany, Japan and Australia amongst other regions and sectors
New online fraud scheme uses the pretext of offering compensation for personal data leaks
Unlike your typical business email compromise (BEC) attack, hackers get an insider view into organisation and business deals, with the potential to lead to similar impacts to BEC, but via a different route
67% of healthcare organisations suffered a cyber-security incident in the last 12 months, 39% down to staff, investment too low, too few training programmes to ensure staff use systems correctly.
Bapco, the national oil company of the Arabian Gulf island nation of Bahrain, was reportedly hit 29 December by a disk wiper attack that officials believe originated from Iranian-backed hackers.
A Russian cyber-crime gang has developed a new hacking tool called PowerTrick in a bid to move around target networks undetected
Threat actor Lazarus Group launched sequel of its AppleJeus operation, creating fake cryptocurrency-related websites to sow malware in the systems of those who fell for the ruse
Each UK company with an internet connection was attacked online more than once a minute in 2019
The 31 December malware attack on UK-based currency exchange company Travelex turns out to be ransomware; foreign exchange services affected
From the expected to surprising, our 200+ predictions cover Brexit, cyber-treaties to IOT regulation, the negative impact of cyber insurance and the downsides of 5G, plus AI deepfake ransomware & much more.
A Clop ransomware variant can now take down a total of 663 Windows processes including new Windows 10 apps, programming languages, debuggers, terminal programs, and programming IDE software
Malware attack on UK-based currency exchange company Travelex's systems spilled over to foreign exchange services of major financial brands
Ransomware attack takes an unidentified US maritine base offline for more than 30 hours says US Coast Guard; Security cameras, door-access control systems & critical monitoring systems affected.
In an exclusive interview with CTO at Octopi Managed Services, Ian Thornton-Trump, SC reports launch of The Octopi Hacking Archive, including1995 BBS files, provided free to aid understading of threat evolution.
Cross-site scripting or XSS is the most popular attack vector globally in 2019, accounting for 40 per cent of all cyber-attacks
A large-scale phishing campaign has been targeting online banking customers -- the majority of whom were Canadian -- for the last two years
A cryptomining botnet is using code hidden in a Taylor Swift photo to infect computers around the world.
Canadian health diagnostics company conceded paying to cyber-criminals to retrieve customer data stolen in a recent cyber-attack
Researchers at Proofpoint have found a widely-used remote access trojan being sold for below US$20 on underground forums
Data ransomers have created a public website to expose data and named recent victim companies that chose to rebuild their operations instead of paying up
Smartphones, the devices most commonly used interchangeably for personal and work purposes, have opened doors for hackers
Echobot malware has resurfaced with an increased number of vulnerabilities it can exploit in devices.
Unique malware varieties have risen by an eighth this year, according to The Kaspersky Security Bulletin: Statistics of the Year report, with Web skimmer files blamed for growth in unique malicious code.
The first time you got your hands on powerful penetration testing tools, you must have thought 'just think what I could do with this'. And that's just what the criminals think too - and then they do it.
A flaw that affects most Unix-based operating systems, including MacOS, Android and Linux, may allow attackers to defeat VPN security.
Security researchers have disclosed a flaw in the Aviatrix VPN client that give a hacker unlimited access to a victim's system - now patched.
An international offensive headed by UK & US investigators identify Russians behind global bank fraud malware campaigns
A well-resourced and successful threat actor - the Lazarus Group, widely believed to be the North Korean state - has developed fileless malware aimed at macOS for criminal purposes.
If partners in your supply chain have access or information on your data or your network, their risk is your risk
Organisations warned of full intrusion with just flaw and one phish - due to flaw they should have fixed and is actively used by multiple threat actors.
Stake your claim to be recognised as the best in the industry by winning your category in the SC Awards Europe 2020 - and this year we have four new Awards up for grabs!
An example of how detailed and sophisticated phishing scams can be is provided by a current attack targeting Steam gamers - with financial loss now a concern.
The usual suspects pulled in for questioning at CSC19, between appearing on panels, in presentations & conducting one-to-one meetings with delegates: Peter Goodman, Martin Peters & Shelton Newsham
Imminent Monitor Remote Access Trojan (IM-RAT) targetted in an international law enforcement takedown of Rat used across 124 countries and sold to more than 14,500 buyers - for less than £20 each.
A previously undetected ransomware attack has been discovered targeting Network Attached Storage (NAS) that poses new risks for back-up data usually stored on such devices.
Stantinko botnet, which has been targeting former Soviet nations since at least 2012, adds a Monero cryptomining module to its arsenal.
Polymorphic malware installed coinminer on up to 80,000 systems per day earlier this year say Microsoft researchers.
An error by an employee - in device hygiene, network safety or email security - can compromise an entire organisation's IT security this shopping season
Increasing numbers of ready-made 'exploit kits' are using extremely stealthy fileless attacks to compromise victims, creating a big challenge for defenders...
The New York City Police Department's fingerprint database was hit with ransomware in October 2018
Cyber-criminals devise card-skimming scheme that involves creating a phishing page that impersonates a retailer's third-party payment service platform
Is Zero Trust really achievable given the complexity in finance service organisations?
Brought to you in partnership with Forescout