It has been reported that Elon Musk told hackers at the private DEF CON conference last week that Tesla will share its security software with other car makers as open source. He says it’s a bid to make autonomous vehicle software safer by opening the software to more scrutiny, according to people who attended the gathering. IT security experts commented below. Art Dahnert, Managing Consultant at Synopsys: “It’s promising that Tesla will share its wealth of security knowledge and possible software. The automotive industry as a whole needs to catch up to the rest of the high tech innovators that have embraced an…
ISBuzz Team
It’s being reported that Security researchers from Proofpoint have discovered a new malware strain that they named Marap and which is currently distributed via massive waves of spam emails carrying malicious attachments (malspam). Andy Norton, Director of Threat Intelligence at Lastline: “There is a constant evolution in the tools, techniques and procedures in use by the malicious threat actors. Marap, whilst new, has inherited some code sequences from previous strains of malware. Modlarity is also becoming common amongst the newer generation of loaders. There is increased risk from modular payloads because one infected device may need a completely different set of mitigations than another device infected…
A new variant of the Princess Locker ransomware is being distributed called Princess Evolution. Like its predecessor, Princess Evolution is a Ransomware as a Service, or RaaS, that is being promoted on underground criminal forums. As this ransomware is being distributed through different affiliates, there are numerous methods that are possibly being used to distribute this ransomware. One method being used to distribute the ransomware is through the RIG Exploit Kit, which was discovered by TrendMicro. Andy Norton, Director of Threat Intelligence at Lastline: A new variant of the Princess Locker ransomware is being distributed called Princess Evolution. Like its predecessor, Princess Evolution is a Ransomware as…
The recent boom in cyber crime means it is no longer a problem reserved for IT departments. It’s now a responsibility for the entire organisation – from C-level executives to those in marketing and sales, everyone must work together to tackle the threat. Traditionally we have seen the majority of attacks aimed at businesses that hold valuable data and information, such as those in insurance or financial services. But with hackers growing more sophisticated and looking to pick apart system vulnerabilities anywhere they can, no one is safe. This is why effective cyber security is vital. Here are some steps…
President Trump has relaxed the US’ cyber attacks rules and web security company High-Tech Bridge’s CEO Ilia Kolochenko commented below. Ilia Kolochenko, CEO at High-Tech Bridge: “I have no doubts that the underlying motives of this decision are colourable and purport to bring peace and prosperity. However, I think the decision will inevitable escalate an already tense situation amongst nation states. Following the US example, many other countries may consider this option, virtually declaring cyber war on each other. In a worst case scenario, the future may resemble the chemical weapon usage during World War I: once countries finally understood the evil…
Nation state attackers are on the hunt for the next vulnerable target. No longer satisfied with infiltrating government institutions or mining for sensitive military data, they are broadening their efforts to target industrial facilities and businesses with the intent to destabilize and disrupt organizations and their countries. It’s scary to consider that more than 60 countries have developed or are developing cyberweapons for computer espionage and attacks. More terrifying still is that the more common cybercriminal is learning quickly from these “military-grade” cyberweapons, closing the gap between nation state attacks and other forms of cybercrime quickly. And the impact is costly.…
Instagram has been hacked and users say their emails have been changed to .ru domains. Hackers were able to get in and change user’s information such as usernames, profiles photos, passwords, and linked Facebook accounts among other things. Instagram has given instructions to users on how to restore their affected accounts and revoke access to third-party apps. Niles Rowland, Director of Product Development at The Media Trust: “Instagram’s guidance on hacked accounts demonstrates the company’s efforts to protect user data from unauthorized collection and use. The fact that the guidance includes instructions on how to remove access to third-party apps…
Earlier this month bleeping computer reported on an ongoing extortion email campaign that emailed recipients their password and stated hackers had recorded the them over their webcam while they visited adult sites. Over the past week, scammers are now utilizing a new extortion email campaign that claims the recipient’s phone was hacked, includes a partial phone number of the recipient, and further states that they created videos using the recipient’s webcam. It then demands $1,000 USD in bitcoins or the hacker will release the video and other information. This new campaign was brought to their attention last week by security researcher SecGuru who has seen…
In response to new research findings from Risk Based Security that over 2.6 billion records have been exposed in 2,300 data breaches so far this year, with fraud accounting for 47.5 percent of exposed records and while hacking accounting for 54.6 percent of all reported breaches, experts with OneSpan and NuData Security offer perspective. Michael Magrath, Director, Global Regulations & Standards at OneSpan, Inc. “2.6 billion records is a staggering number. Sadly, Americans have become accustomed to breach notification letters arriving in the mail with offers of free credit reporting. Not surprisingly the report notes that phishing for usernames and passwords then using the stolen credentials to access systems or services stands…
Research released yesterday from IP EXPO Europe has revealed that blockchain is baffling Brits as businesses forge ahead with adopting the technology. According to reports, the research, a third of Brits wouldn’t trust an organisation using blockchain because they don’t know what it is, 11% believed they knew what blockchain was but wouldn’t trust an organisation using this technology, and 53% had never even heard of blockchain before. Travis Biehn, Technical Strategist at Synopsys: “Enterprise blockchain adoption has reached a fever pitch internationally in 2018. However, the security community has been late to the game in terms of securing these platforms against attack. While the…