World’s Largest Spam Botnet Adds DDoS Feature

Following the news that Necurs, the world’s largest spam botnet with nearly 5 million infected bots, of which one million active each day, has added a new module that can be used for launching DDoS attacks. Ben Herzberg, Security Research Group Manager at Imperva Incapsula commented below.  Ben Herzberg, Security Research Group Manager at Imperva Incapsula: “It […]

Underestimating The Attack Severity In The Krebs Altair Breach Notification Story

Krebs on Security recently reported on the suppression of a particularly insidious breach at Altair Technologies, but an even bigger story may be the impressive efficiency of this attack. Jeff Hill, Director, Product Management at Prevalent, Inc commented below. Jeff Hill, Director, Product Management at Prevalent, Inc: “Ironically, Altair’s awkward attempt to cover up or otherwise downplay […]

These Are Some Of My Favourite Things

As an Expert Witness, Digital Forensics First Responder Investigator, and a provider of specialist training in the disciplines of in-depth Cyber Security Management, and Digital Forensics and Investigations, to underpin both operational engagements, and my academic teaching, and training commitments in Dubai for Meirc, I need to selected a trusted tool-sets and utilities to support […]

Security Lapse That Exposed Critical Servers At A NYC Airport

Security researchers have found a security lapse at Stewart International Airport that exposed server backups to the Internet for more than a year. The backups contained sensitive information including one file with a list of usernames and passwords for various devices and systems, allowing full access to the airport’s internal network. The drive was installed […]

World’s Largest Spam Botnet Now Has DDoS Capabilities

A new module has been added to Necurs, the world’s largest spam botnet, and can be used for launching DDoS attacks. The news comes from security researchers who believe the capability was added almost six months ago, and despite a Necurs yet to be attributed to a DDoS attack, if it did decide to use […]

Most Attackers Need Less Than 12 Hours To Break In

A Nuix study of DEFCON pen testers shows that the usual security controls are of little use against a determined intruder. Lamar Bailey, Sr. Director, Security R&D at Tripwire points out the weaknesses of the research. Lamar Bailey, Sr. Director, Security R&D at Tripwire: “Pentesters are a valuable resource to evaluate the security stance of an application, system, or network. However, […]

Malicious Weather App Found On Google Play

ESET research finds Android users were the target of new banking malware with screen locking capabilities, which was disguised as a weather forecast app on Google Play.  ESET researchers discovered new variant of botnet-forming Android banking malware, detected by ESET asTrojan.Android/Spy.Banker.HU, based on source code made public a couple of months ago.  Their investigation leads to […]