It was reported this morning that a malicious WordPress plugin has been discovered which has been used to hijack more than 200,000 websites. The plugin called Display Widgets has been found to contain a backdoor that could allow hackers to access what is posted on the site and modify content on infected pages. Colin Domoney, Consultant Solution Architect at Veracode commented below. Colin Domoney, Consultant Solution Architect at Veracode: “One of the greatest threats of malicious WordPress plugins is that the technical or cybersecurity skill level of the average WordPress user tends to be significantly lower than that of a corporate…
ISBuzz Team
CCLearner, a utility program used to clean unwanted files including temporary internet files and invalid Windows Registry entries from a computer, has been hijacked and used by hackers to relay information about users. IT security experts commented below. Michael Patterson, CEO at Plixer: “Any and all software developed for Internet use can be hacked and compromised. Due to the behavior of approved software, it has made the detection of unwanted software and malware difficult to track down. The industry is in dire need of laws which specify how data can be collected from customers and where it can go and how…
Check Point’s August Global Threat Impact Index shows Roughted remained the top malware, followed by Globalimposter and HackerDefender in third place Check Point® Software Technologies Ltd. (NASDAQ: CHKP) revealed that banking trojans were extensively used by cyber-criminals during August, with three variants appearing in the company’s latest Global Threat Impact Index. The Zeus, Ramnit and Trickbot banking trojans all appeared in the top ten. These Trojans work by identifying when the victim is visiting a banking website, and then use keylogging or webinjects to harvest basic login credentials or more sensitive information such as PIN numbers. Alternatively, Trojans may also direct…
Ilia Kolochenko, CEO of Web Aecurity Company at High-Tech Bridge: “The great fuss around the Equifax breach exposes our unpreparedness to handle major data breaches in a pragmatic and professional manner. We can observe uncertainty, bias, fear, doubts and anger on all sides of the incident. “Those emotions are understandable, but in cybersecurity they are a pretty bad ally. We should not forget about the presumption of innocence, and ascertain all the facts before making conclusions or especially accusatory judgements. Someone’s negligence is undoubtedly at fault here, however without a thorough technical investigation, we risk blaming innocent and professional people.…
Retailers are responding to cyber attacks on average twice a week — this is according to the latest research from Zynstra, an enterprise-grade IT software provider. 16% of retailers said they experienced an attack or attempted attack every day, 11% said they responded 2-3 times per week, and 64% said once a month. The incidence of cyber attacks was found to be especially high in the grocery industry with 29% of respondents dealing with attempted security breaches every day, and 55% every week. In other retail verticals, 65% of respondents in the sports and outdoor sector said they responded once a…
Following the news that Apple is bring biometrics to the iPhone X, Robin Tombs, CEO and founder at Yoti, whose biometric tech is used by partners such as the NSPCC provides an insight on this below. Robin Tombs, CEO and Founder at Yoti: “Today’s announcement from Apple reaffirms that tech companies are increasingly turning to biometrics to boost security – and it’s no surprise. Biometrics make it easier for people and businesses to know who they’re dealing with – proving identities using a face or fingerprint, instead of ID documents and passwords that are easily lost, stolen or forgotten. As more of our lives…
Employees can be your biggest asset. If not managed properly, they can also be your weakest link. The trick lies in empowering them to do their jobs properly using the technology at their disposal, while preventing them from making mistakes with your data, or simply going rogue and causing intentional damage. Using a mixture of process, policy and technology, you can maintain an efficient, secure workforce that won’t mishandle valuable information. This article shows you how. Earlier this year, HANDD Business Solutions surveyed over 300 IT professionals in the UK about their information security concerns. 43% of them said that…
News has broken that Armis has identified a new airborne cyber threat, “BlueBorne,” that exposes almost every device to remote attack. Eight Bluetooth-related vulnerabilities (four that are critical) affecting over 5 billion Android, Windows and Linux devices could allow attackers to take control of devices, access corporate data and networks, and easily spread malware to other devices Armis, the enterprise IoT security company, today announced the discovery of a set of zero-day Bluetooth-related vulnerabilities affecting billions of devices in use today dubbed, “BlueBorne.” Nearly all devices with Bluetooth capabilities, including smartphones, TVs, laptops, watches, smart TVs, and even some automobile audio systems, are vulnerable to…
With the World Cup 2018 just around the corner, the FA is advising that England players and staff do not use public or hotel Wi-Fi whilst in Russia, due to hacking fears. The Football Association is concerned that sensitive information such as injury, squad selection and tactical details could be exposed. Hubert Da Costa, VP EMEA at Cradlepoint commented below. Hubert Da Costa, VP EMEA at Cradlepoint: “As high-profile data breaches keep stacking up, more organisations are realising they need to prepare in advance for situations where their people might be tempted to use unsecured public Wi-Fi. Reducing risk is…
The latest HBO hack and leaked episodes of Game of Thrones shone a spotlight on the need for protecting proprietary data. For every new encryption or password management point solution enterprises put in place, there are likely hundreds of hackers figuring out a way to compromise those security countermeasures. Enterprises need to rethink their strategies to stay one step ahead; otherwise, they are just going to experience breaches over and over again. Ankur Laroia, Solutions Strategy Leader, Alfresco Software, speaks to Information Security Buzz about how businesses can implement open, transparent processes and change their way of thinking to help…
