The ModPOS malware has already hit multiple national retailers and compromised millions of cards, according to new research released this morning, but there are likely to be more infections still out there since this particular malware is extremely …
Retailers targeted by sophisticated ModPOS malware Read More »
Much like Pandora identifies patterns in music to come up with new songs that its users might like, OpenDNS is listening to the traffic patterns of the Internet as a whole in order to spot patterns of malicious activity.The company processes more th…
OpenDNS listens for malicious melodies Read More »
A new botnet is specifically targeting large corporations, taking over user machines to generate high-value ad fraud, according to a new report from Pixalate.The Xindi botnet first appeared last fall, but has really taken off since August. It has al…
New ad-fraud botnet targets major corporations, universities Read More »
In a sign of the increasing professionalization of the space, exploit kit activity increased 75 percent in the third quarter of this year compared to the same period last year, based on DNS activity, according to the latest edition of the Infoblox DNS Threat Index.
The index measures the creation of malicious DNS infrastructure, including exploit kits. Four exploit kits—Angler, Magnitude, Neutrino, and Nuclear—accounted for 96 percent of total activity in the category for the third quarter, reported IID, the company providing data for the index.
Criminals use DNS infrastructure in three ways, according to Rod Rasmussen, president and CTO at IID.
To read this article in full or to leave a comment, please click here
Exploit kit activity up 75 percent in third quarter 2015 Read More »
Layered security is currently considered a best practice for enterprises, since a single layer of defense against attackers is no longer enough. Sometimes, however, these layers can have unintended consequences and even make a company less secure th…
The dark side of layered security Read More »
Applications written for iOS devices have more vulnerabilities than those written for Androids, and this has the potential for security problems in the future as attackers move to application-based threat vectors.According to a new report from mobil…
iOS apps more vulnerable than Android Read More »
ExpiredImage by ThinkstockApplications that have reached the ends of their lives are no longer maintained by their original developers, and do not receive security updates. However, many users forget to remove these applications from their machines, or…
10 riskiest applications that have passed their expiration dates Read More »
ExpiredImage by ThinkstockApplications that have reached the ends of their lives are no longer maintained by their original developers, and do not receive security updates. However, many users forget to remove these applications from their machines, or…
10 risky software that have passed their expiration dates Read More »
In a study released this morning, nine out of 10 corporate board members said that regulators should hold businesses liable for breaches if they haven’t taken reasonable steps to secure customer data.This was a surprise to Veracode, the company that…
9 of 10 directors support regulator action on cybersecurity Read More »
Cybercriminals based in Russia and Eastern Europe typically avoid targets in their home countries, but a botnet called Tinba is proving to be an exception, according to a new report from the Dell SecureWorks’ Counter Threat Unit.
The Tinba Banking Trojan, also known as Tiny Banker because of its small file size, is targeting the biggest banks and payment service providers in Russia, said Brett Stone-Gross, senior security researcher at Dell SecureWorks.
It is believed to be controlled by a group operating out of Eastern Europe.
A total of 34.5 percent of the victims of the botnet were located in Russia, and another 22 percent of victims were in Poland.
To read this article in full or to leave a comment, please click here
East European botnet targets Russian banks Read More »
CSOs and CISOs are becoming more powerful, and their wielding that power to demand more from their technology vendors, to throw out underperforming tech, and to take more risks on new and innovative approaches.Boards are genuinely more concerned abo…
CSOs demanding more from cybersecurity tech Read More »
Despite recent moves against Adobe Flash by Google and Firefox and its declining use by websites, Adobe Flash remains a significant security vulnerability for end users, with 80 percent of computers running an end-of-life version of the plugin.Accor…
Despite recent moves against Adobe, 80% of PCs run expired Flash Read More »
Iranian hackers are targeting Android systems using AndroRat and DroidJack remote-access Trojans, and are getting support from local-language forums.According to research released this morning by Recorded Future, these particular RATs provide the ab…
Iranian hackers get tech support on forums Read More »
Risky businessImage by Tobias Van Der ElstThe average employee uses 30 cloud services at work, according to cloud security vendor Skyhigh Networks.To read this article in full or to leave a comment, please click here
10 riskiest cloud services Read More »
Healthcare has become a favorite target for criminals, and some medical organizations are reacting by looking at outside providers to keep their data secure. But jumping to the cloud without first taking some precautions can be a mistake, experts sa…
Experts urge caution when putting health data in the cloud Read More »
