Month: September 2017

  • Packers, How They Work, Featuring UPX

    This article is featured in the new DZone Guide to Proactive Security. Get your free copy for more insightful articles, industry statistics, and more! Read full news article on Dzone  

  • Singapore government assures SingPass-MyInfo will stay secure

    The Singapore government has assured that the move to link all 3.3 million citizen accounts, used to access e-government services, to an autofill form system will not leave user data any less secured. Its CIO agency GovTech announced earlier this week that all registered SingPass users would be given a MyInfo profile, enabling certain fields…

  • CCleaner malware targets major tech companies

    The recent CCleaner malware outbreak where hackers used a popular PC clean-up tool to spread malware was perhaps a more targeted and sophisticated attack than it initially seemed. Researchers discovered that the malware was specifically trying to gain access to internal networks in at least 20 tech companies, including Google, Samsung, Microsoft, Sony, HTC, Linksys,…

  • Iranian hackers target US, Saudi aviation sector

    A cyber espionage group suspected of working in Iran for its government is targeting the aviation and energy industries in Saudi Arabia, the US and South Korea. According to US security firm FireEye, the hacking group that it calls Advanced Persistent Threat 33 (or APT33) has been targeting critical infrastructure, energy and military sectors since…

  • Ransomware is reaching ‘epidemic levels’

    12 mins ago Ransomware has been named as one of the most pressing threats to society by officers at Europol. The force has released a new report which claims that ransomware is reaching “epidemic” Read full news article on BetaNews  

  • Report: Countless PCs vulnerable to newly discovered firmware attack [Update]

    After analyzing more than 70,000 Macs, the team at Duo Security uncovered a firmware vulnerability that could affect countless PCs. And although the research was done on Macs, Windows PCs are even more likely to be at risk. Read full news article on The Next Web  

  • Windows Defender Antivirus Bypass Allows Any Malware to Execute on a Windows Machine

    New Method that Involved With Defender Antivirus scanning process over SMB leads to  Windows Defender Antivirus Bypass and allows any Malware to Run into Windows OS. This FlowTricks Windows Defender, to Scan other Files or scans no files Instead of Scanning Malicious File when we Execute the Malicious file and Windows Load the Execution Process.…

  • Friday Squid Blogging: Squid Empire Is a New Book

    Friday Squid Blogging: Squid Empire Is a New Book Regularly I receive mail from people wanting to advertise on, write for, or sponsor posts on my blog. Read full news article on Schneier on Security  

  • Java security plagued by crappy docs, complex APIs, bad advice

    Relying on search engines to find answers to coding problems has become so common that two years ago it was suggested computer programming be renamed “googling Stack Overflow,” in reference to the oft-visited coding community website. Read full news article on The Register  

  • Report: Countless PCs vulnerable to newly discovered firmware attack

    After analyzing more than 70,000 Macs, the team at Duo Security uncovered a firmware vulnerability that could affect countless PCs. And although the research was done on Macs, Windows PCs are even more likely to be at risk. Read full news article on The Next Web  

  • States want more from DHS after confusing update on 2016 election hacking activity

    U.S. states targeted by Russian hackers last year are pushing back after the Department of Homeland Security provided what they say is inaccurate information about attempts to breach their election systems prior to Election Day. Read full news article on Cyberscoop  

  • Monero-Mining Campaign Takes the Easy Road to Cash Gains

    A nefarious cryptocurrency mining operation has been going on since at least May 2017, with attackers infecting unpatched Windows 2003 webservers. So far, the bad actors have managed to net more than $63,000 worth of Monero on the backs of unsuspecting administrators whose machines have been enslaved for their processing power—all without putting too much…