Jay Jay

Formjacking attacks compromised over 50,000 retailer websites in 2018

Formjacking attacks compromised over 50,000 retailer websites in 2018

Cyber-criminals are continuing to exploit online shopping carts through a technique called 'formjacking' despite high-profile examples and publicity around Magecart and other threat actors.

Over 80% of enterprise IT systems feature unpatched CVE vulnerabilities

Over 80% of enterprise IT systems feature unpatched CVE vulnerabilities

CVE vulnerabilities dating back to 1999 are just one of the things researchers found when they delved into organisations' patch management practices.

54% of firms will increase their cyber-security budgets in 2019

54% of firms will increase their cyber-security budgets in 2019

Over half of all organisations will increase their cyber-security spending this year, with almost a third of them planning to boost their cyber-security budgets by 10 to 20 percent, according to a new report.

Users don't have to open malicious docs to trigger new Microsoft malware

Users don't have to open malicious docs to trigger new Microsoft malware

A new malware infiltration technique being used in the wild allows attackers to trigger payloads when victims preview documents.

Apple vows crackdown on the use of developer certificates to create fake apps

Apple vows crackdown on the use of developer certificates to create fake apps

Apple says it will terminate enterprise developer certificates immediately when it determines that they have been misused either by big tech firms or rogue developers.

More investment to fight cyber-crime urgently needed say UK police

More investment to fight cyber-crime urgently needed say UK police

Police in the UK are keenly aware of the need for additional training and tools to combat the growth of cyber-crime, but they also see a role for technology in fighting traditional forms of crime.

Microsoft decides not to fix whitelisting controls error

Microsoft decides not to fix whitelisting controls error

Attackers can infiltrate organisations even if the latter employ advanced application whitelisting controls due to a vulnerability that Microsoft has declined to patch, says Carbon Black.

BEC scams & banking trojans now organisations' biggest cyber-threats

BEC scams & banking trojans now organisations' biggest cyber-threats

BEC scams and other social engineering attacks more than doubled in Q4 2018 compared to the previous quarter, while Ransomware fell to just 0.1 percent of all email-based threats in Q4.

Germany bans Facebook from collecting user data from sister apps without user consent

Germany bans Facebook from collecting user data from sister apps without user consent

Facebook will no longer be allowed to combine German users' data taken from WhatsApp, Instagram and Facebook Messenger, according to the German competition authority.

Less than half of automotive firms test their products for security flaws

Less than half of automotive firms test their products for security flaws

Two-thirds of automotive professionals said that their companies do not test a majority of the in-car technology they develop for security vulnerabilities.