Subterms
Researchers have documented the evolution of Loda, a Remote Access Trojan (RAT) which is leaving its simple roots to become an established threat in the US and other countries. Loda was first observed in 2016. According to Proofpoint, the AutoIT-based RAT is able to access and exfiltrate both system and user information, act as a […] More
Samsung’s attempt to prevent attacks on Galaxy phones by modifying kernel code ended up exposing it to more security bugs, according to Google Project Zero (GPZ). Not only are smartphone makers like Samsung creating more vulnerabilities by adding downstream custom drivers for direct hardware access to Android’s Linux kernel, vendors would be better off using […] More
A new cyberspying campaign has been detected in the Middle East which is going after victims in Palestinian territories. An investigation into the attacks, conducted by the Cybereason Nocturnus team and made public on Thursday, suggests that one of the Gaza Cybergang groups — also known as MoleRATs — is potentially responsible. Tracked by Kaspersky […] More
The federal government has announced an AU$8.5 million investment into Australia’s cybersecurity industry, to be distributed by AustCyber, a non-profit organisation charged with growing a local cybersecurity ecosystem and facilitating its global expansion. The AustCyber Projects Fund is a AU$15 million, three-year initiative designed to help the Australian cybersecurity industry grow both locally and globally. […] More
In long belated news, it was reported today that a Florida county’s election office had its computer systems infected and encrypted by ransomware just weeks before the 2016 US presidential elections. News of the ransomware attack was reported today by the Palm Beach Post after an interview with Wendy Sartory Link, the current election supervisor […] More
Microsoft has released the public preview of an Office 365 ProPlus security feature that promises to catch malware when users open Office documents outside the Protected View sandbox. Safe Documents or ‘Safe Docs’ is Microsoft’s latest effort to shield users from malicious documents coming into an organization. While the Office Protected View sandbox does isolate […] More
Businesses are losing over $700m a month to cyber criminals because employees are falling victim to phishing attacks, business email compromise campaigns and gift card scams – and the amount of money being lost is still on the rise. Large wire transfers make a significant percentage of the successful attacks – with the criminals behind […] More
We all use passwords. We also all suck at using them. 81% of all hacking-based security breaches can be traced back to poor passwords. So, it is that the FIDO Alliance has been seeking to replace password-only logins with secure and fast login experiences across websites and apps using the emerging standard WebAuthn Their efforts […] More
