The new Android banking malware ESET recently discovered on Google Play was spotted in the wild again, now improved and targeting more banks. Further investigation of this resurfacing threat has uncovered its code was built using source code that was made public a couple of months ago. ESET have discovered a new version of the trojan on Google Play, masquerading as yet another legitimate weather app, this time World Weather. As it turns out, both of these Android trojans are based on a free source code that was made public online. Allegedly written from scratch, the “template” code of the Android malware along with…
ISBuzz Team
Almost half of all phishing attacks (fraudulent email messages or copycat websites that appear legitimate) registered in 2016 by Kaspersky Lab’s heuristic detection technologies were aimed at stealing their victim’s money, according to an analysis of the financial threat landscape by the company’s experts. Compared to 2015, the amount of financial phishing attacks increased 13.14 percentage points in 2016 to comprise 47.48 per cent of all phishing attacks blocked by heuristic detection technologies. In 2016 Kaspersky Lab’s anti-phishing technologies detected almost 155 million user attempts to visit different kinds of phishing pages. Of those, almost half of heuristic detections were…
Following the news that the Mirai botnet has once again evolved to make a Windows botnet, Alex Mathews, Lead Security Evangelist at Positive Technologies commented below. Alex Mathews, Lead Security Evangelist at Positive Technologies: “There was never any doubt amongst the security industry that the Mirai botnet would evolve to inlcud other types of devices. “More dangerous versions of Mirai botnet will appear as malware authors discover and use serious, previously unknown vulnerabilities (zero-days) in devices’ firmware. If that happens, there will be very little users can do to protect themselves – there were numerous reports of such vulnerabilities in recent years. “In 2013,…
You may not think you’re at risk of a cyber-attack, but in today’s digital world, it’s a huge problem. Hackers can learn anything about you by stealing data, such as social security numbers, computer passwords, credit card information, health care data, bank account information, and more. According to an IBM study, as reported by CBS, approximately 1.5 million cyber-attacks occur annually. That’s three attacks per minute! Businesses are at a huge risk of attack. If a hacker can get ahold of their customer data files, they can easily get their hands on hundreds or thousands of people’s data in one…
Following the news that New York State’s new Cybersecurity Requirements for Financial Services Companies take effect on March 1, 2017. IT security experts from CipherCloud, InfoArmor, NuData Security commented below. Willy Leichter, VP of Marketing at CipherCloud: “A state the size of New York can effectively create nationwide requirements. A similar trend started 15 years ago when California passed S.B. 1386, creating the first legal requirements for public notification of personal data breaches. This public scrutiny of data breaches has had an enormous impact on how organizations approach security, and to led to 47 US states (and many other countries) enacting similar data privacy laws.” .…
ESET appoints new leaders for business, technology and operations. ESET announced a major refocus of its operations to grow by appointing three new leaders to its key departments of business, technology and operations. The change in the company’s management will bring significant results across the organisation, not only pushing it into the top global IT security vendors, but will also help the company to build stronger leadership and profesional expertise in the industry. All appointments are effective immediately. “In thirty years, ESET has grown into one of the industry’s leading antimalware and endpoint security vendors, which has helped over 100 million users keep…
Following the news that Vehicle Technology and Aviation Bill unveiled the need for insurance to covers drivers both when they are in control and when the vehicle is in charge. Dik Vos, CEO at SQS commented below. Dik Vos, CEO at SQS: “While the benefits of self-driving vehicles speak for themselves, there are currently a few teething problems with these machines. The Vehicle Technology and Aviation Bill announced yesterday wisely covers all potential liability grey areas highlighted by recent examples, such as Google’s previous test fleet of driverless cars which saw 11 incidents, sparking a debate about who was liable for crashes involving driverless vehicles;…
Ponemon has published research that looks at the state of cyber security, particularly in the Oil and Gas industry. Edgard Capdevielle, CEO at Nozomi commented below. Edgard Capdevielle, CEO at Nozomi Networks: “While the oil and gas industries aim to make improvements to their cyber security risk posture, it’s not straight forward and this recent survey reinforces the fact that even those within the industry foresee major shortfalls. The combination of rapidly advancing digitally connected industrial components against an escalating threat landscape, with operators facing energy price pressures which in turn can restrain investments, have combined to create a truly…
In today’s evolving technology landscape consumers are becoming more demanding and looking for a fantastic service, in an increasing choice of communication service provider (CSPs). This is highlighted by a recent report by Ovum that reveals 82 per cent of consumers have stopped doing business with a brand following a bad experience. As a result of this fickle “loyalty”, poor service and out of date offerings can quickly lead to customer churn. Quad play is increasingly becoming the norm, with many customers buying their communications services as a package, making this a problem that CSP leaders must take seriously to…
Following the news of the Google Chrome hack that prompts users to download “missing font” malware, Tod Beardsley, Research Director at Rapid7 commented below. Tod Beardsley, Research Director at Rapid7: “The “HoeflerText font not found” malware lure, which targets Google Chrome users on Windows, continues to make the rounds via compromised WordPress sites. This attack was first documented by researchers at Proofpoint in mid-January, and gets a lot of design elements right where other malware lures fail. The prompt is disguised as a seemingly-legitimate popup sourced from the browser. So far, the attacks appear to be limited to compromised WordPress sites…
