Security Experts:
LATEST SECURITY NEWS HEADLINES
NEWS & INDUSTRY UPDATES
German car parts and defense firm Rheinmetall says production at its automotive plants in the US, Brazil and Mexico was disrupted as a result of a malware attack. [Read More]
One of the financially motivated threat actors operating under the Magecart umbrella appears to be testing malicious code to inject into commercial-grade layer 7 (L7) routers. [Read More]
Attacks conducted by a suspected Chinese threat actor on technology companies in Southeast Asia leveraged a version of the open-source PcShare backdoor. [Read More]
A threat actor referred to as POISON CARP has targeted senior members of Tibetan groups via WhatsApp for around six months. [Read More]
Critical infrastructure and other organizations are increasingly at risk of being targeted in attacks involving RDP and disruptive ransomware. [Read More]
Tortoiseshell threat group has been targeting job seekers in the United States, especially military veterans. [Read More]
xHunt campaign targets transportation and shipping organizations based in Kuwait using new malware. [Read More]
An investigation into banking malware targeting India has led to the discovery of a new RAT employed by the North Korean-linked Lazarus group. [Read More]
Researchers have observed a new series of phishing attacks targeting United States utilities in an attempt to deliver the LookBack RAT. [Read More]
Wyoming-based Campbell County Memorial Hospital continues to experience service disruptions after a ransomware attack hit Campbell County Health’s computer systems on Friday. [Read More]
FEATURES, INSIGHTS // Malware
It remains to be seen whether more legitimate web operations will embrace the approach, but you can count on illegitimate and malicious use of cryptomining to grow robustly.
Take a step back and realize that cryptocurrency mining is really just another form of malware, which is something you should be good at finding already.
There are several mitigation measures and best practices that you can adopt to improve your organization’s security posture and reduce the risk of supply chain infections.
In the cat-and-mouse game between security providers and malware authors, cybercriminals keep innovating and experimenting – a dynamic seen in the recent resurgence of the Locky ransomware.
While devastating to the victims, the recent rash of ransomware has been helpful in putting an objective and quantifiable face on modern threats associated in cybersecurity.
To reduce exposure to malware, security teams need to learn the DevOps techniques that are being adopted across the rest of the IT organization.
The early indicators of the WannaCry attack were evident, but it spread too quickly for human security teams to react before it spread across the world like wildfire.
If the WannaCry incident taught us anything, it’s that global, widespread ransomware can and will impact organizations without any notice. The time to prepare is now.
Investigating nefarious actors online can be dangerous, as the places hunters go are likely to be full of malware and people actively monitoring for outsiders.
When implemented in series, common malware analysis environments allow security teams to handle the vast majority of threats automatically, freeing up team resources to actively hunt more advanced threats.
SecurityWeek Daily Briefing
- Mozilla Hardens Firefox Against Injection Attacks
- California Attorney General Outlines How State Will Enforce Upcoming Privacy Law
- Critical Flaw in Sophos Cyberoam Appliances Allows Remote Code Execution
- Why All Security Disciplines Should Use the Intelligence Cycle
- Alleged Hacker Arraigned on $1.4 Million Cryptocurrency Fraud Charges
- Majority of Simjacker Attacks Aimed at Mobile Phones in Mexico
- Thoma Bravo to Acquire Sophos for $3.9 Billion
- Compromised AWS API Key Allowed Access to Imperva Customer Data
- Amazon Calls for Government Regulation of Facial Recognition Tech
- 'Attor' Cyber-Espionage Platform Used in Attacks Aimed at Russia
Copyright © 2019 Wired Business Media. All Rights Reserved. Privacy Policy