Researchers have stumbled upon a new phishing campaign targeting Raiffeisen Bank customers. The attack is based on the infamous Android banking Trojan, MazarBot, which has previously been distributed via SMS, email spam and numerous fake pages. The campaign seeks to trick people into filling in their logging credentials in a bogus page, which looks absolutely identical to the original Raiffeisen site. Leigh-Anne, Galloway, Cyber Security Resilience lead at Positive Technologies commented below. Leigh-Anne, Galloway, Cyber Security Resilience lead at Positive Technologies: “This type of attack relies on a phishing campaign to spread the malware. The attackers have scraped website content and bought a…
ISBuzz Team
It has been reported that a large amount of businesses are unprepared for the arrival of General Data Protection Regulation next May; one in five senior executives have little or no idea about GDPR and its impact. Despite the deadline for GDPR compliance being under a year away, the lack of knowledge around the subject will leave businesses struggling. Survey findings, from Alfresco and AIIM, revealed almost half of respondents reported GDPR content for their business isn’t kept within the business itself but third parties such as partners and suppliers, increasing the risk of hacks and not knowing exactly where data…
In addition, 41 Percent Believe Lack of Skilled Security Personnel or Training is Key Secondary Challenge Synopsys, Inc. (Nasdaq: SNPS) today announced the results of a survey of 270 IT security professionals, which found that almost half (48 percent) viewed customer-facing web applications as the area presenting the most security risk to businesses. This is in contrast to 23 percent who identified mobile applications and 18 percent who suggested desktop applications presented the biggest risk. To view the full survey results, visit https://www.synopsys.com/blogs/software-security/cyber-security-threat-survey. Andreas Kuehlmann, senior vice president and general manager at Synopsys, does not find this surprising, saying: “The level of customer…
Security solutions have great potential to improve organizational efficiency, but also to hinder day-to-day operations, limit access to information and impede employee output. As tech investments grow across industries, productivity concerns can be neglected, or worse, completely ignored. It’s easy to see how these “pitfalls of productivity” can become a reality. IT security is a top priority, and protecting data and networks requires significant resources and technology investments. Companies evaluate security solutions against a host of requirements, but at the end of the day, users need to be able to do their jobs. If not chosen with productivity in mind,…
News broke yesterday that security researchers have spotted a phishing site hosted on the aptly named .fish domain. Netcraft web tester Paul Mutton explained in a blog post that parser.fish won the prize for being the first to host malicious credential slurping content directly on its homepage. Tim Helming, director of product management at DomainTools commented below. Tim Helming, Director of Product Management at DomainTools: “While the cybercriminals operating these sites have clearly not lost their sense of irony, phishing campaigns need to be taken seriously. These websites will prey on potentially vulnerable, less savvy Internet users and will then exploit them for financial gain. DomainTools established 21 ‘.fish’…
It has been reported that more Mac malware has been seen in 2017 than in any year beforehand, according to a new report from information-security firm Malwarebytes says, and one of the company’s security experts told us that Apple’s current strategies may not be enough to stop the rising tide. James, Security Specialist at ESET commented below. James, Security Specialist at ESET: “MAC Malware has been steadily on the rise for some time- to be honest any machine that runs an operating system and connects to the internet or a network in any way shape or form is susceptible to malware. Windows has…
It has been reported that the Government will today set out its plans for arrangements that could ensure personal data would continue to move back and forth between the UK and the EU in the future in a safe, properly regulated way. In the latest of a series of papers looking at the UK’s future partnership with the EU after we have left, the Government will consider the case for a unique approach that could allow data to continue to be exchanged to ensure ongoing competitiveness, innovation and job creation. Commenting on this news is Steve Durbin, Managing Director of the…
Hackers are using vulnerabilities that are up to ten years old or older to launch cyber-attacks according to the Fortinet Q2 2017 Global Threat Landscape report. The report also revealed that the majority of cyber-attacks were launched over a weekend. Michael Patterson, CEO at Plixer commented below. Michael Patterson, CEO at Plixer: “While it isn’t surprising that older attacks still exist in the wild, companies shouldn’t be overly confident in their malware prevention systems. Many zero day and targeted attacks can definitely circumvent even the best defensive measures being developed by leading edge security companies. Even if systems are ‘blocked’…
Almost every day we read stories about companies that have suffered serious consequences for not taking cyber security seriously enough. In April of this year, payday loan company Wonga was subjected to a significant online data breach that saw the personal information of around 270,000 customers compromised. Immediately after the attack, the brand’s ‘buzz score’ fell to its lowest in years, indicating a serious dent in its reputation. Yet, it’s not just a company’s reputation that can be impacted by a breach. With the emergence of the new EU General Data Protection Regulation (GDPR), non-compliance will lead to crippling fines to contend with. From 25th May 2018,…
The think tank Reform has argued that police chiefs should be allowed to fire officers whose IT skills are not up to scratch. Emm, principal Security Researcher at Kaspersky Lab commented below. David Emm, Principal Security Researcher at Kaspersky Lab: “With the rise of crime in the cyber world, it is crucial that the skill set of police officers matches the importance of this new battleground. As with markets generally, investment tends to flow into areas where it will be most productive, and crime is no different. With so much financial activity moving online, criminals have capitalised on this by moving…
