Security Experts:

long dotted

NEWS & INDUSTRY UPDATES

Uber has entered a non-prosecution agreement to resolve a criminal investigation into a 2016 data breach that the company tried to cover up. [Read More]
A Romanian national accused of operating bulletproof hosting services for the Gozi banking trojan was extradited to the United States from Colombia. [Read More]
The FBI and Justice Department disrupted the activities of a hacking group that was sponsored by the North Korean government and that targeted U.S. hospitals with ransomware. [Read More]
Thai activists involved in the country’s pro-democracy protests had their cell phones or other devices infected and attacked with government-sponsored spyware. [Read More]
Former CIA programmer Joshua Schulte was found guilty of the 2017 "Vault 7" leak of the US spy agency's most valuable hacking tools to WikiLeaks. [Read More]
News Analysis: Cybersecurity experts toss bouquets at Apple for removing attack surface from its flagship platforms and call on competing OS makers to match Cupertino’s attempts to neutralize the mercenary spyware business. [Read More]
Emsisoft has released free decryptors for the AstraLocker ransomware variants to help victims recover data. [Read More]
A man has been arrested and charged for allegedly making millions of dollars through a scheme that involved the sale of fake Cisco devices from China. [Read More]
Joshua Schulte, a former CIA software engineer accused of causing the biggest theft of classified information in CIA history, defended himself at a retrial. [Read More]
Apple plans to add a new ‘Lockdown Mode’ that significantly reduces attack surface and adds technical roadblocks to limit sophisticated software exploits. [Read More]

FEATURES, INSIGHTS // Tracking & Law Enforcement

rss icon

Eric Knapp's picture
Because transactions using virtual currencies happen anonymously, they confuse issues of jurisdiction and can become difficult to enforce. When authorities do take action, cybercrime simply re-images itself with a new currency and a new platform.
Oliver Rochford's picture
As the “Snowden leaks” continue in their revelations and unraveling of the twisted web of government surveillance, it is becoming clear that the foundation of trust in the Internet as a shared commons has been thoroughly undermined.
Jon-Louis Heimerl's picture
The power of metadata does not come in that data itself but in the ability of that data to be processed and correlated in an automated fashion. What many believe is meaningless data can reveal more than one would think.
Chris Coleman's picture
Over the past year the buzz around tracking threat actors has been growing and in my opinion hitting the height of the hype cycle. Relying on behavior profiles alone is a great way to get an unwelcomed outcome.
Eric Knapp's picture
The NSA tapping into our digital lives is a heinous breach of privacy, say those on the opposing team. I say, “meh.” Assume that everything you do and say is being watched and heard, always.
Mark Hatton's picture
They always say in the investment world that cash is king. We are now seeing that in terms of cyber as well. Stealing cash, it’s even better than stealing money.
John Vecchi's picture
Understanding the various types of malicious actors targeting your networks, including their motivations and modus operandi, is key to identifying, expelling and expunging them.
Gant Redmon's picture
When it comes to cybercrime, the police really can’t and aren’t going to protect residents of your town. The same goes for all towns and cities. Unless you’re talking a high six-figure theft, it's unlikely an officer will be assigned to your case.
Rod Rasmussen's picture
In this second column in a two part series, Rod tackles the impact of the DNSChanger malware and simple solutions to counter similar DNS attacks on enterprises and major government agencies.
Chris Poulin's picture
To effectively defend yourself against an enemy, you have to think like your adversary. Put yourself in their mind, their shoes. What’s the motive? How determined are they? Will they stop at a well-hardened network perimeter or move on to other tactics, including social engineering? Once you suffer a breach, how do you share your analysis?