Infosecurity News

  1. Banking Statement Phish Carries Nasty PowerShell Payload

    Claiming to be a financial document, this attack's attachment uses a three-pronged execution path.

  2. SANS Warns of Shellshock Attacks on NAS Kit

    Unpatched QNAP devices are at high risk, says training institute

  3. DNS Attacks Ravage Three-Quarters of US/UK Firms

    Cloudmark study claims critical business and customer data at risk

  4. OphionLocker Uses Advanced Crypto and Tor for Bitcoin Payment

    Latest ransomware spotted by researchers uses Elliptic Curve Cryptography

  5. Hundreds of Thousands of Wordpress Sites Serving SoakSoak

    A vulnerability in the RevSlider plug-in opens the door to complete website compromise.

  6. Malwarebytes Flaw Found in Upgrade Mechanisms

    Users of the consumer version of the Malwarebytes Anti-Malware and Anti-Exploit should upgrade to the latest version of the security software as soon as possible.

  7. Hackers Offer ‘100% Guarantees’ on Dark Web Goods

    Dell SecureWorks report finds increased competition is forcing better customer service

  8. GCHQ Launches Android Crypto App for Kids

    Cryptoy is designed to get more children interested in cybersecurity

  9. Feds Warn US Firms of Iranian Cyber Campaign

    Flash report comes just days after Operation Cleaver revelations

  10. Pirated Assassins Creed Spreads Malware

    The malware intercepts text messages and harvests information from the phone.

  11. Dyreza Banking Threat Back to Target North America

    Microsoft said that the busy Dyreza RAT has a fresh attack vector using a wire transfer phish.

  12. Cameron Calls in the Spies to Deal With Child Abuse Online

    GCHQ and NCA to co-operate, but critics say it’s simply electioneering

  13. China Responsible for 85% of Global Phishing Domains – APWG

    Cyber-criminals targeting victims inside Great Firewall are blamed for malicious domain registrations

  14. ICS-CERT: BlackEnergy Attacks on Critical Infrastructure Target Known Vulnerabilities

    In a new wrinkle in an ongoing attack, the BlackEnergy malware is targeting internet-connected human-machine interfaces (HMIs).

  15. Charge Anywhere Admits Breach May Have Given Hackers Access for Five Years

    Mobile payments processor only partially encrypted data travelling across its network

  16. Ukraine Attacks Rained Down on Cyber Monday – Report

    Imperva spots attackers using shopping period as cover to steal data and break systems

  17. Serious Flaw Found in Alibaba's English e-Commerce Site

    An attacker could alter product prices, delete goods or close a merchant’s shop on the site.

  18. RedOctober Rises Again with Cloud Atlas APT

    Cloud Atlas uses an unusual set of tactics that are not very common in the APT world, including using cloud accounts for C&C communications.

  19. Advanced Inception APT Malware Likely State-Sponsored

    The highly sophisticated malware targets wireless and PC users in high-value positions.

  20. (ISC)2 Panel Debate Calls for “Change of Culture” to Mitigate Cyber Threat

    Panel also urges greater government transparency

Why not watch?

  1. Navigating Exposures in Energy ICS Environments

  2. How to Manage Your Risks and Protect Your Financial Data

  3. Dispelling the Myths of Defense-Grade Cybersecurity

  4. Alert Fatigue: What Are You and Your Security Teams Missing?

What’s hot on Infosecurity Magazine?