Russian Doll-Style Malware Hunts For Users Of Pirate Bay Torrent Tracker

Kaspersky Lab researchers have detected a new malware spreading through the Pirate Bay – one of the most popular torrent trackers. The malware aims to infect users’ PCs with adware and tools for additional malware installation. It has multilayered structure and due to its hidden, seemingly endless stack of functionality, the threat has been named PirateMatryoshka, […]

Ramnit Worm/Botnet Malware Targeting Financial Organisations

It has been reported that an international phishing campaign that delivers Ramnit Worm/Botnet malware targeting financial organisations in Asia has re-emerged, and could be heading for the UK. Once the fake email is opened by a member of staff, this then executes on the victim’s machine and a malicious file is installed on the corporate network without even the knowledge of […]

W3C Finalizes Web Authentication (WebAuthn) Standard

Following the news around  the World Wide Web Consortium (W3C), the organization behind all web standards, formally promoting the Web Authentication API to the title of official web standard, James Barclay, Senior R&D Engineer at Duo Security commented below.  James Barclay, Senior R&D Engineer at Duo Security: “The WebAuthn specification is a major and collaborative leap forward in the […]

Google Reveals Chrome Zero-Day Under Active Attacks

It has been reported that Google revealed that a patch for Chrome last week was actually a fix for a zero-day that was under active attacks. The attacks exploited CVE-2019-5786, a security flaw and the only patch included in the Chrome 72.0.3626.121 version, released last Friday, March 1, 2019. According to an update to its original announcement and […]

Kaspersky Lab On Facial Recognition Technology Being Trialled In The UK

Cardiff was the UK’s first test-bed for facial recognition technology that can scan thousands of faces and match them to a watchlist.  Cardiff blazes trail for UK facial recognition technology — Mr C (@mugsensation) March 6, 2019 Expert Comments below:  David Emm, Principal Security Researcher at Kaspersky Lab:  “Facial recognition plays an ever-increasing role in our lives, and […]

3 In 5 Politicians’ Websites Don’t Use Basic HTTPS Encryption

Following a report by cybersecurity firm Comparitech that was recently published, which revealed that 3 in 5 politicians’ websites don’t use basic HTTPS encryption, Tim Helming, director of product management at DomainTools, offers the following commentary.  Tim Helming, Director of Product Management at DomainTools:  “Considering the state of both online security, and political discourse, this is a worrying study. Organisations that fail […]

Mobile Malware Attacks Doubled In 2018, Kaspersky Findings Reveal

New Mobile malware evolution 2018 findings from Kaspersky state that “Users of mobile devices in 2018 faced what could be the strongest cybercriminal onslaught ever seen.  In 2018 we recorded a doubling of the number of attacks using malicious mobile software: 116.5 million (against 66.4 million in 2017).”  Incidences of mobile banking trojans, dropper trojans, adware and miners  were all analyzed.  “New […]

The NSA Makes Ghidra, A Powerful Cybersecurity Tool, Open Source

It has been reported that the NSA has released an open-source, reverse-engineering, hacking tool, called Ghidra into the public domain.  “There’s really no downside to releasing Ghidra"… The NSA Makes Its Powerful Cybersecurity Tool Open Source via @WIRED — Nicolai Fink Gundersen (@NFGMBA) March 7, 2019 Experts Comments below:  Adam Brown, Manager of Security Solutions at Synopsys:   “Ghidra made […]

Security As A Service And Webmail Caught In Phishers’ Cross-Hairs

According to the APWG’s Q4 2018 Phishing Activity Trends Report, the number of confirmed phishing sites declined as 2018 proceeded. The total number of phishing sites detected by APWG in 4Q was 138,328 – down from 151,014 in Q3, 233,040 in Q2, and 263,538 in Q1. This general decline in the number of phishing campaigns as […]

Phishing Campaign Pretends To Be An Anti-Fraud Exercise

Following the news that CyberInt has discovered a re-emerging international phishing campaign that delivers Ramnit Worm/Botnet malware targeting financial organisations in Asia which it believes is heading for the UK as well, Corin Imai, senior security advisor at DomainTools offers the following commentary.  Corin Imai, Senior Security Advisor at DomainTools: “Unfortunately, there is no one-size-fits-all advice against phishing campaigns, which maintain effectiveness because they are continuously edited and […]