New Mirai Variant Unleashes 54-Hour DDoS Attack

Wed, 29 Mar 2017 16:01:40 +0000

New Variant of Infamous IoT Botnet Launches Attack Against Network of U.S. College A newly discovered variant of the Mirai botnet was responsible for powering a 54-hour distributed denial of service (DDoS) attack, Imperva researchers reveal. read more

VMware Patches Flaws Disclosed at Pwn2Own

Wed, 29 Mar 2017 14:08:06 +0000

VMware has released updates and patches for its ESXi, Workstation and Fusion products to address critical and moderate severity vulnerabilities disclosed at the Pwn2Own 2017 competition. read more

This Stealthy Malware Remained Unnoticed for Three Years

Wed, 29 Mar 2017 13:28:58 +0000

Stealthy command and control methods allowed a newly discovered malware family to fly under the radar for more than three years, Palo Alto Networks security researchers reveal. read more

Siemens RUGGEDCOM Devices Affected by Several Flaws

Wed, 29 Mar 2017 11:52:38 +0000

Siemens has shared recommendations for mitigating several medium and high severity vulnerabilities affecting some of the company’s RUGGEDCOM products. read more

US-CERT's Warning on SSL Interception vs. Security is a False Dichotomy

Wed, 29 Mar 2017 11:43:00 +0000

Sometimes a headline succinctly and cleverly captures the essence of a simple situation. Note last week’s headline about the apprehension of a nearly naked suspect: “Man in Boxers Leads Police on Brief Chase.”  read more

NukeBot Source Code Leaked After Marketing Fail

Wed, 29 Mar 2017 09:12:32 +0000

The developer of the NukeBot banking Trojan has decided to release the malware’s source code after he failed to convince the cybercrime community that his creation is worth buying and that he is not a scammer. read more

Russian Pleads Guilty to Role in Linux Botnet Scheme

Wed, 29 Mar 2017 07:38:41 +0000

Maxim Senakh, 41, of Velikii Novgorod, Russia, pleaded guilty on Tuesday before a U.S. judge to charges related to an international scheme involving the Linux botnet known as Ebury. read more

Cerber Ransomware Tries to Evade Machine Learning Security

Wed, 29 Mar 2017 04:45:23 +0000

The Cerber ransomware is using new evasion techniques designed elude machine learning security solutions, and has been observed being dropped onto compromised systems alongside the Kovter click-fraud Trojan. read more

PyCL Ransomware Test Campaign Spotted in the Wild

Tue, 28 Mar 2017 18:29:59 +0000

A new ransomware family being dropped by the RIG exploit kit (EK) appears to be in the testing phase and could surface as a major threat, security researchers warn. read more

Apple Patches Hundreds of Vulnerabilities Across Product Lines

Tue, 28 Mar 2017 16:26:56 +0000

Apple Patches Desktop, Mobile, Wearable Platforms to Fix More than 200 Security Vulnerabilities read more

1.4 Billion Records Compromised in 2016: Report

Tue, 28 Mar 2017 16:11:29 +0000

Nearly 1.4 billion records were compromised in 2016 as a result of roughly 1,800 data breaches, according to Gemalto’s latest Breach Level Index report. read more

Targeted Attacks on Industrial Sector Increasingly Common: Kaspersky

Tue, 28 Mar 2017 13:35:34 +0000

Kaspersky Lab’s recently launched ICS-CERT department has published a report detailing the industrial sector threat landscape based on data collected by the company in the second half of 2016. read more

The Power and Importance of Peer Review

Tue, 28 Mar 2017 13:09:30 +0000

As a Security Professional, If You’re Not Having Your Work Peer Reviewed You’re Not Doing it Right. read more

Shamoon 2 Used Rudimentary Method for Network Distribution

Tue, 28 Mar 2017 10:43:00 +0000

Palo Alto Networks researchers have continued to analyze the Shamoon 2 attacks and determined that the method used by the malware to spread on the targeted organizations' networks is rudimentary, but efficient. read more