ESET Ireland is warning Irish computer users to watch out for an email that pretends to come from Vodafone, but carries the Nemucod trojan. ESET Ireland has come across another widely targeted malicious email. This one pretends to be a bill from Vodafone and claims: Dear Customer, You can now take a look and manage your latest Vodafone bill for invoice date 02/08/2017. Your total bill for this month is £ 263.71 Don’t forget, your line rental is charged a month in advance and calls are charged in arrears Click here to view your bill Clicking on the link downloads a ZIP…
ISBuzz Team
The not-for-profit ethical hacker research community Open Bug Bounty recently announced a major milestone: its community has helped fix over 70,000 vulnerabilities since being founded by a group of security researchers and enthusiasts in June 2014. Open Bug Bounty is a non-commercial project designed to connect security researchers and website owners in a transparent and open manner. It is part of a growing crowd security testing industry, mainly represented by commercial services managing bug bounties. According to the Open Bug Bounty website, the main purpose of the project is to make the World Wide Web a safer place without putting unreasonable…
A researcher has found an often-misconfigured protocol puts sex toys, heart monitors, and even oil pipelines and particle accelerators at risk of attack. Cesare Garlati, Chief Security Strategist at the prpl Foundation commented below. Cesare Garlati, Chief Security Strategist at the prpl Foundation: “More and more industries are starting to rely on connected devices and smart sensors to help and make life more efficient. However, these cases are yet another reminder of how the Internet of Things, praised for convenience and connectivity, is very vulnerable to cyber-attacks; and therefore, presents a tangible risk to human lives.” “Protection for these dangers requires a…
An email prankster has fooled a number of White House officials into thinking he was other officials. The prankster even convinced the White House Official tasked with cyber security that he was Jared Kushner and received that official’s private email address unsolicited. Tim Erlin, VP at Tripwire commented below. Tim Erlin, VP at Tripwire: “While these particular incidents were undertaken to be funny, the implications of how easily the individuals involved were entrapped should be clear. The difference between this prankster and a serious criminal is only in the disclosure of the results. A serious criminal wouldn’t have shared the outcome with…
Internet of Things (IoT) security experts from Tripwire and Rubicon Labs reacted this afternoon to news of today’s US Senate introduction of the IoT Cybersecurity ImprKovement Act of 2017. Craig Young, Security Researcher with Portland, Oregon-based Tripwire, who has done extensive research of smart homes and a variety of consumer IoT devices, commented below. Craig Young, Security Researcher with Portland at Tripwire: “This is a great step in the right direction from my point of view. We do however need to proceed with caution and ensure that all legislation is written with an understanding of the technology and the potential for…
Today, the cryptocurrency, Bitcoin, has split in two as a ‘breakaway’ group of Bitcoin miners and developers plan to create a new network that increases the transaction capacity of Bitcoin. Currently, the Bitcoin network has a limit of 1 mb block of transactions every ten minutes, with a plan to scale Bitcoin by evolving it into a settlement network containing only large transactions. For smaller transactions, there will be a network of payment hubs run by organisations or individuals that settle on the blockchain; called the ‘lightning network’. Mustafa Al-Bassam, security expert at Secure Trading and also a reformed ex-hacker, commented below…
Following the news regarding the NHS Trust, which runs St Helens and Whiston hospitals, accidentally posting hundreds of trainee doctors’ personal details online, Matt Lock, Director of Sales Engineers at Varonis commented below. Matt Lock, Director of Sales Engineers at Varonis: “The loss of personal information is becoming commonplace. It’s important for companies to secure their data, educate their employees and contractors to ensure they have good cyber hygiene and take the steps to automate the prevention of human error – in this case preventing inappropriate access to personal information and incorporating utilities to prevent the exposure. The way that…
In response to news that Mandiant Security has been the latest to bear victim of a public hack and the target of a #LeakTheAnalyst campaign launched by hackers, Matt Walmsley, EMEA Director at Vectra commented below. Matt Walmsley, EMEA Director at Vectra: “The hack of Mandiant is a stark reminder that anyone can be the target of a data breach – it just takes the persistent application of skill and resource.” “The brand reputation of FireEye has taken quite a hit, as the hackers ballsey message demonstrating how businesses can be embarrassed and damaged by a successful hack” “With hackers boasting to…
News broke today that power firms around the world are being warned about how to spot if they are being targeted by hackers who shut down parts of Ukraine’s electricity grid. The warnings have emerged from analysis of the malware used in an attack in Ukraine in December, which left about 230,000 people without power for hours after substations were shut down via implanted malware. IT security experts from Nozomi Networks and Tripwire commented below. Andrea Carcano, Co-Founder & Chief Product Officer at Nozomi Networks: “Operators of industrial control systems need the ability to automatically identify potential issues in real-time – whatever…
IZurich’s research that has found that 875,000 SMEs across the UK have been affected by a cyber-attack over the last 12 month, Gordon Morrison, Director of Government Relations at McAfee commented below. Gordon highlights the challenges SMEs face in introducing cybersecurity into their organisation and how the government’s Cyber Essentials scheme can help get them on the right track. Gordon Morrison, Director of Government Relations at McAfee: “No matter how big the business, no organisation is too small to be a target for cybercriminals. For many large enterprises, with the IT and security support in house, taking a comprehensive and…
