Cyber-Crime News, Articles and Updates

Wikileaks releases CIA tool set which help malware onto air-gapped PCs

WikiLeaks on Thursday dumped more leaked CIA documents with its latest Vault 7 disclosures, this time publishing materials from a tool suite called Brutal Kangaroo that allows attackers to indirectly infiltrate a closed network or air-gapped computer using a compromised flash drive.

On the digital frontline: The rise of automated cyber-warfare

Nicola Whiting explains why the defence sector is turning to automated cyber-security to win the fight against cyber-criminals and state-sponsored hackers.

White hats share insights on modern attack campaign strategies

New findings from 451 Research reveal real-world insights into modern attack campaign strategies, planning and execution.

25% of Australian companies hit by phishing attack this week

The phishing attacks against Australian energy customers grew yesterday with Mailguard reporting an enormous number of phishing attempts made centered on fake Origin Energy bills.

Queen's Speech: Promise of a new digital charter to tackle extremism

With the incoming Brexit negotiations, the Queen said her ministers will seek to "provide certainty for individuals and businesses".

'Doubleswitch' campaign targeting activists via social media

In a new campaign, attackers are locking out activists from their social media accounts.

Trustwave: 63 percent of breaches observed targeted payment card data

New report from security company Trustwave illustrates a wave of crime looking to steal payment information from those in the hospitality, retail and food and beverage industries.

South Korean web hoster pays US$ 1 m ransom to release customer files

South Korean firm NAYANA was hit with a Linux ransomware attack that demanded an unprecedented 550 Bitcoins (BTC) or £1.27 million ransom.

What do we learn about clandestine operators from the Shadow Brokers leak?

Andrei Barysevich discusses how the Chinese and Russian cyber communities have reacted to the Shadow Brokers leak.

ECB to force all Eurozone banks to report cyber-security breaches

The European Central Bank has announced it is looking to encourage information sharing between financial institutions, and the mandatory reporting of incidents appears to be a big part of its cyber-resilience strategy.

Guilty as charged! UK man hacks US DoD communications system

A UK citizen has pleaded guilty on 15 June to hacking into a US Department of Defense (DoD) communications system three years ago

Europol arrests counter anti-virus, malware crypter services customers

Six customers of a malware crypter service were arrested throughout Europe Tuesday following a year-long initiative called Operation Neuland, Europol said in a release.

Nuance says that biometrics have reached their "coming of age"

The biometrics firm argues that the issues with biometrics often cloud over the benefits gained from using them.

Differences revealed in personal security habits of UK and US workers

New research from Wombat provided an analysis of personal security behaviours of UK and US workers that play a big role in securing information, devices and systems both at work and home.

The threats to businesses posed by the deep and dark web

Josh Lefkowitz looks at the issue of the dark web for businesses, the dangers it poses and how these dangers can be mitigated.

Wannacrypt makes enterprises wanna cry - if storage isn't attack ready

Dan Florea explores how backup storage products can help reduce RTO to near zero, allowing organisations to run as normal in the event of a cyber-attack.

Apple contractors based in China caught selling customer data

Authorities in China have unmasked a massive underground market where Apple contractors were selling user data of Apple's Chinese customers.

Don't be fooled by tax scams this quarter as hackers ramp up activity

David Emm discusses the various types of tax scams and top tips for staying safe when managing tax affairs this year.

Hackers post plastic surgery clinic's patient files after blackmail campaign

Hackers on Tuesday publicly posted more than 25,000 files and private images stolen from a Lithuanian plastic surgery clinic

Russian closer to extradition for accusations of LinkedIn and Dropbox hacks

A Russian accused by the FBI of hacking into a number of US companies is a step closer to extradition from the Czech Republic.

Over half a billion domains infected by RoughTed malvertising campaign

While it peaked in March 2017, the scourge has been rolling out for more than a year with a dark cornucopia encompassing scams and exploit kits that go after a broad range of targets using their operating system, browser and geolocation to inject the appropriate payload, Segura wrote.

Ransom isn't random: How small businesses can fend off targeted attacks

Itay Glick discusses why it is more efficient for hackers to target small businesses and how organisations can protect themselves and avoid becoming a victim.

Researchers spot enhancements on Qakbot malware to infect new systems

Cylance researchers spotted enhancements on the Qakbot malware that let it infect new systems and lock out administrators.

Lazarus code used in WannaCry, but attack may not be state sponsored

Symantec bolstered the amount of evidence it has gathered that ties the code and tools used by the cyber-gang known as Lazarus to the WannaCry/WanaCrypt0r ransomware attacks.

Outlaw marketplace on Dark Web shuttered abruptly

Outlaw, a veteran marketplace on the Dark Web, was shuttered abruptly last week with no plausible explanation, according to Bleeping Computer.

ATMs rigged by Brazilian cyber-crooks to steal payment card chips

In an effort to work around the security measures built into EMV credit cards, a Brazilian criminal gang has created a skimmer-type device that steals the chip right out of the card when it is inserted into a compromised ATM.

Slammer worms its way to top of most wanted malware list

Enterprises are increasingly being hit with exploit kits, especially Rig EK, and the Slammer worm has resurfaced, according to Check Point's latest monthly Global Threat Impact Index.

ATM Black Box attack heists lead to arrest of 27 European cyber-crooks

Efforts of a number of EU Member States and Norway have culminated in arrests of 27 people connected to ATM "Black Box" attacks across Europe.

'MacronGate' reportedly linked to black hat troll

Qurium researchers claim to have traced the falsified emails allegedly stolen from then French President Emmanuel Macron claiming the then candidate had offshore accounts in the Bahamas during his 2017 campaign to the black hat troll weevlos.

New mobile banking malware obfuscates its malicious code parts

Banking malware targeting mobile users requires little tech know-how to develop and operate, so it stands as an insistent battle for security professionals.