Monday, November 4, 2024
Latest:

Computer Security Articles

RSS Reader for Computer Security Articles

Cybercrime & Hacking

ComputerWorld Independent 

Chinese hackers go after third-party IT suppliers to steal data

admin ,

Credit to Author: Michael Kan| Date: Tue, 04 Apr 2017 14:52:00 -0700

Companies that choose to outsource their IT operations should be careful. Suspected Chinese hackers have been hitting businesses by breaching their third-party IT service providers. 

Major IT suppliers that specialize in cloud storage, help desk, and application management have become a top target for the hacking group known as APT10, security providers BAE Systems and PwC said in a joint report.

That’s because these suppliers often have direct access to their client’s networks. APT10 has been found stealing intellectual property as part of a global cyberespionage campaign that ramped up last year, PwC said on Monday.

To read this article in full or to leave a comment, please click here

Read more
ComputerWorld Independent 

Banking hackers left clue that may link them to North Korea

admin ,

Credit to Author: Michael Kan| Date: Mon, 03 Apr 2017 16:33:00 -0700

The notorious hackers behind a string of banking heists have left behind a clue that supports a long-suspected link to North Korea, according to security researchers.

The so-called Lazarus Group has been eyed as a possible culprit behind the heists, which included last February’s $81 million theft from Bangladesh’s central bank through the SWIFT transaction software.

However, hackers working for the group recently made a mistake: They failed to wipe the logs from a server the group had hacked in Europe, security firm Kaspersky Lab said on Monday.

To read this article in full or to leave a comment, please click here

Read more
ComputerWorld Independent 

Project launches to find out if there is truly a link between cybercrime and autism

admin ,

Credit to Author: Darlene Storm| Date: Mon, 03 Apr 2017 08:57:00 -0700

Is there really a link between autism and cybercrime? A project launched today intends to find out.

When President Donald Trump proclaimed April 2 to be World Autism Awareness Day – actually it was the ninth annual such day – he cited CDC estimations that “Autism spectrum disorders affect an estimated one out of every 68 children in America.”

It seems Hollywood is trying to show how common autism is; Billy, the blue ranger, in Power Rangers, and Sesame Street’s Muppet Julia are recent characters with autism spectrum disorder which are not portrayed as Rain Man-like savants.

To read this article in full or to leave a comment, please click here

Read more
ComputerWorld Independent 

IDG Contributor Network: Insiders — the invisible threat lurking in your office

admin ,

Credit to Author: Robert C. Covington| Date: Fri, 31 Mar 2017 06:23:00 -0700

With all of the focus in the business world recently related to hackers, we have tended to overlook a group of potential bad actors who have already penetrated our perimeter security, and have access to our facilities — our employees and contractors. While our security teams usually monitor firewall and intrusion prevention logs, the threat from insiders is, in many cases, completely ignored. 

While some insiders are intent on stealing data or damaging systems for profit or some other motive, many more expose their employers to harm just by making mistakes. Whether intent exists or not, the damage is just as bad

To read this article in full or to leave a comment, please click here

Read more
ComputerWorld Independent 

Google patches Chrome bug from fizzled Pwn2Own hack

admin , ,

Credit to Author: Gregg Keizer| Date: Thu, 30 Mar 2017 12:03:00 -0700

Google yesterday updated Chrome to patch several vulnerabilities, including a bug in the browser’s JavaScript engine that a Chinese team tried to exploit at a recent hacking contest.

The update to version 57.0.2987.133 contained fixes for five vulnerabilities, one marked “Critical” — the most serious rating in Google’s system — and the others tagged “High.”

Of the four vulnerabilities ranked High, one was attributed to “Team Sniper,” one of five groups from Chinese company Tencent Security that participated in this year’s edition of Pwn2Own, one of the world’s best-known hacking contests. Pwn2Own ran March 15-17 alongside the CanSecWest conference in Vancouver, British Columbia.

To read this article in full or to leave a comment, please click here

Read more
ComputerWorld Independent 

Trump extends Obama executive order on cyberattacks

admin , , ,

Credit to Author: Martyn Williams| Date: Thu, 30 Mar 2017 03:24:00 -0700

President Donald Trump is extending by one year special powers introduced by former President Barack Obama that allow the government to issue sanctions against people and organizations engaged in significant cyberattacks and cybercrime against the U.S.

Executive Order 13694 was introduced on April 1, 2015, and was due to expire on Saturday, but the president sent a letter to Congress on Wednesday evening saying he plans to keep the order active.

“Significant malicious cyber-enabled activities originating from, or directed by persons located, in whole or in substantial part, outside the United States, continue to pose an unusual and extraordinary threat to the national security, foreign policy, and economy of the United States,” Trump wrote in the letter. “Therefore, I have determined that it is necessary to continue the national emergency declared in Executive Order 13694 with respect to significant malicious cyber-enabled activities.”

To read this article in full or to leave a comment, please click here

Read more
ComputerWorld Independent 

New Mirai IoT variant launched 54-hour DDoS attack against a U.S. college

admin , ,

Credit to Author: Darlene Storm| Date: Wed, 29 Mar 2017 08:10:00 -0700

A new variant of the Mirai IoT malware was spotted in the wild when it launched a 54-hour DDoS attack against an unnamed U.S. college.

While the attack occurred on February 28, Imperva Incapsula is informing the world about it today. The researchers believe it is a new variant of Mirai, one that is “more adept at launching application layer assaults.”

The average traffic flow was 30,000 requests per second (RPS) and peaked at about 37,000 RPS, which the DDoS mitigation firm said was the most it has seen out of any Mirai botnet so far. “In total, the attack generated over 2.8 billion requests.”

To read this article in full or to leave a comment, please click here

Read more
ComputerWorld Independent 

New Mirai IoT variant launched 54-hour DDoS attack against a US college

admin , ,

Credit to Author: Darlene Storm| Date: Wed, 29 Mar 2017 08:10:00 -0700

A new variant of the Mirai IoT malware was spotted in the wild when it launched a 54-hour DDoS attack against an unnamed US college.

While the attack occurred on February 28, Imperva Incapsula is informing the world about it today. The researchers believe it is a new variant of Mirai, one that is “more adept at launching application layer assaults.”

The average traffic flow was 30,000 requests per second (RPS) and peaked at about 37,000 RPS, which the DDoS mitigation firm said was the most it has seen out of any Mirai botnet so far. “In total, the attack generated over 2.8 billion requests.”

To read this article in full or to leave a comment, please click here

Read more