Attackers are increasingly targeting computers in hotel business centers to steal sensitive information, the US Secret Service has warned. A law enforcement task force arrested members of a criminal gang who allegedly installed keylogger malware on computers in several Dallas/Fort Worth area hotels, according to an advisory obtained by security writer Brian Krebs this week.…
DetailsAttackers know that if they want to compromise an organization an email with a malicious link or attachment is often the path of least resistance. Armed with a wealth of information freely shared online, attackers use social engineering as a means to entice employees into opening the message, and if the malware is successful, the…
DetailsMalwarebytes, started ten years ago by then 14-year-old Marcin Kleczynski, has raised $30 million in its first round of funding, the anti-malware company announced on Thursday. The company said the funding from Highland Capital Partners would be used to increase the global footprint of California-headquartered Malwarebytes, which has over 60 million quarterly active users. Launched…
DetailsEveryday businesses make decisions. The saying, “it’s a business decision,” is loathed by some in the security industry and largely because security was not involved in the decision. Many of these decisions should involve the security team. However, this assumes security’s embedded into the business and not on the outside looking in. Anyone who’s been…
DetailsYou know the illustration The March of Progress? The name itself might not ring a bell for everyone, but more than likely you’ve seen it: it’s the illustration showing human evolution from the earliest primate ancestors on the far left, throughout various phases of evolutionary development, to modern humans ultimately taking their place on the…
DetailsThe Securities Industry and Financial Markets Association (SIFMA), an industry trade group for banks securities firms and asset managers, is worried about catastrophic attacks against their members, Bloomberg reported today. Bloomberg reports on an internal document they have seen, stating: “The document sketches an unusually frank and pessimistic view by the industry of its readiness for…
DetailsThe Senate Intelligence Committee approved a cybersecurity bill on Tuesday which is intended to help companies and government agencies defend against cyber-attackers. The Cybersecurity Information Sharing Act would make it easier for businesses and governments to share information with each other about cyberattacks. Businesses have previously shied away from formal and informal information sharing because…
DetailsThis morning a partial analysis of the NSA’s XKEYSCORE code was published in Germany. Jacob Applebaum, an evangelist for the The Onion Project (TOR), was one of the authors. The report details specific rules written for one of the NSA’s data collection tools, XKEYSCORE, which collects the IP addresses of TOR bridges, and users of…
DetailsGoogle has blocked access to a confidential Goldman Sachs email that was sent by mistake to a Gmail address. The financial company is now seeking a second court order to delete the message altogether from Google servers. An external consultant was testing changes to an internal reporting and validation process and intended to send the…
DetailsThe encryption vendor SafeNet publishes a Breach Level Index that records actual reported incidents of data loss. Whilst the number of losses attributed to malicious outsiders (58%) exceeds those attributed to malicious insiders (13%), SafeNet claims that insiders account for more than half of the actual information lost. This is because insiders will also be…
Details