Security

Cyber Security Reviews – Security will bring to our readers whats happening on the Security scene around the world.

0 Comments
A new version of Matrix-themed ransomware MegaCortex is targeting organizations with demands of up to $5.8m to regain access to their encrypted data, according to Accenture researchers. In version two, the authors have improved automation and usability and made it harder to stop, according to Leo Fernandes, senior manager of the firm’s iDefense Malware Analysis
0 Comments
A new initiative has been announced by the Automotive Industry Action Group (AIAG) to help automotive suppliers compare their current capabilities to industry best practice. Developed in partnership with NCQ, the Cyber Safe Bundle includes a one-time virtual audit, along with either a basic or advanced enterprise risk assessment. Together, these resources allow suppliers to
0 Comments
Chair of the Digital, Culture, Media and Sport Committee Damian Collins MP has written to Facebook VP for global affairs and communications Sir Nick Clegg about discrepancies relating to the Cambridge Analytica investigation. Collins asked the former Deputy Prime Minister and Liberal Democrats leader, who joined Facebook in October 2018, about who at Facebook knew
0 Comments
by Danny Bradbury Tampering with surveillance cameras is a common activity for Hollywood heroes and criminals alike. Now, researchers have shown how they can do it in real life. Remember Speed, the 1994 movie where Keanu Reeves and Sandra Bullock had to keep a bus moving above a certain speed to stop Dennis Hopper blowing
0 Comments
Dwindling resources, experience and skills are the biggest challenges facing the cybersecurity profession today, according to new research from the Chartered Institute of Information Security. Nearly half (45%) of those polled for the institute’s annual survey, The Security Profession in 2018/19, pointed to lack of resources as the biggest issue they face, followed by lack
0 Comments
by John E Dunn Researchers at Armis Labs have discovered 11 potentially serious security flaws affecting the Wind River VxWorks real-time operating system (RTOS), described by the company as “the most widely used operating system you may never have heard about”. Collectively named ‘Urgent/11’ by Armis Labs, the flaws affect an estimated 200 million devices
0 Comments
Researchers are warning of a potentially serious Android ransomware threat that spreads via malicious links in SMS messages and posts in forums. ESET malware researcher, Lukas Stefanko, explained in a blog post that Android/Filecoder.C has been active since at least July 12 — distributed via Reddit posts and an Android developers forum known as “XDA
0 Comments
by Paul Ducklin Global financial services company Capital One has just announced a massive data breach: If you want to learn more about the Capital One cyber incident, please visit capitalone.com/facts2019/ — Capital One (@CapitalOne) July 30, 2019 The breach notification starts in general terms: Capital One Financial Corporation announced today that on July 19,
0 Comments
Capital One has announced a major breach of customers’ personal data, affecting over 100 million Americans and a further six million in Canada. The financial institution blamed “unauthorized access by an outside individual” who has been arrested by the FBI and is now in custody. “The largest category of information accessed was information on consumers
0 Comments
by John E Dunn Network Attached Storage (NAS) company Synology has issued an urgent warning for owners to check their box’s security settings after it emerged cybercriminals are targeting numerous NAS vendors with a new wave of ransomware. At first it was thought that recent attacks could be exploiting an unknown software vulnerability in Synology’s
0 Comments
A British cybersecurity researcher who was arrested in the US for historic hacking offenses has been spared jail time. Marcus Hutchins, 25, sprang to fame in 2017 when he discovered a “kill switch” which helped to mitigate the impact of the infamous WannaCry worm. However, a few months later things turned sour after he was
0 Comments
Ransomware dominated the first half of 2019, while mobile banking malware threats grew by more than 50% from 2018 to 2019, according to Check Point’s Mid-Year Trends Report. “This year collaborations between threat actors allowed even more destructive attacks that paralyzed numerous organizations worldwide. What ends with a ransomware attack usually starts with a more
0 Comments
Web traffic during Amazon Prime Day, in which 250 e-commerce merchants participated, reflected a significant uptick in the US, according to Akamai. The fifth annual event spanned 48 hours this year, resulting in a 14% spike in web traffic. “This increase in participation and strong revenue figures mean that traffic was up as shoppers researched
0 Comments
The latest edition of nonprofit VideoLAN’s VLC media player software has what Germany agency CERT-Bund is calling a serious security flaw that allows hackers to install and run software without user knowledge, according to NewsX.  “This is just one in a long and constant stream of flaws in VLC. I absolutely would not recommend that
0 Comments
by Danny Bradbury Apple released fixes for various products this week, including several nasty arbitrary code execution (ACE) flaws, and a bug that has been public with proof-of-concept code for two months. CVE-2019-8656, discovered by cybersecurity researcher Filippo Cavallarin, enabled an attacker to bypass Apple’s Gatekeeper functionality with a suitably formed Zip file. Gatekeeper is
0 Comments
The financially motivated threat group known as FIN8 has recently reemerged after being somewhat dormant, according to new research from Gigamon’s applied threat research (ATR) team.  Researchers have published findings that show FIN8 continues to evolve and adapt its tools. As part of the threat research, ATR discovered a reverse shell from FIN8, dubbed BADHATCH,
0 Comments
London’s Metropolitan Police has admitted that its public-facing news platform was compromised last Friday evening, leading to the publication of a string of offensive messages on Twitter. Observers first noticed something was wrong after the Met’s Twitter feed, which has over one million followers, started to issue some bizarre messages at around 11pm. These included