Saturday, November 2, 2024
Latest:

Computer Security Articles

RSS Reader for Computer Security Articles

Malware & Vulnerabilities

ComputerWorld Independent 

Cybercrime group abuses Windows app compatibility feature

admin , ,

Credit to Author: Lucian Constantin| Date: Thu, 04 May 2017 12:00:00 -0700

When Microsoft made it possible for enterprises to quickly resolve incompatibilities between their applications and new Windows versions, it didn’t intend to help malware authors as well. Yet, this feature is now abused by cybercriminals for stealthy and persistent malware infections.

The Windows Application Compatibility Infrastructure allows companies and application developers to create patches, known as shims. These consist of libraries that sit between applications and the OS and rewrite API calls and other attributes so that those programs can run well on newer versions of Windows.

Shims are temporary fixes that can make older programs work even if Microsoft changes how Windows does certain things under the hood. They can be deployed to computers through Group Policy and are loaded when the target applications start.

To read this article in full or to leave a comment, please click here

Read more
ComputerWorld Independent 

Ransomware attacks are taking a bigger toll on victims' wallets

admin ,

Credit to Author: Michael Kan| Date: Thu, 27 Apr 2017 11:26:00 -0700

Hackers spreading ransomware are getting greedier. In 2016, the average ransom demand to free computers hit with the infection rose to $1,077, up from $294 the year before, according to security firm Symantec.

“Attackers clearly think that there’s more to be squeezed from victims,” Symantec said in a Wednesday report

In addition, the security company has been detecting more ransomware infection attempts. In 2016, the figure jumped 36 percent compared with the prior year.  

To read this article in full or to leave a comment, please click here

Read more
ComputerWorld Independent 

Ransomware attacks are taking a bigger toll on victim's wallets

admin ,

Credit to Author: Michael Kan| Date: Thu, 27 Apr 2017 11:26:00 -0700

Hackers spreading ransomware are getting greedier. In 2016, the average ransom demand to free computers hit with the infection rose to $1,077, up from $294 the year before, according to security firm Symantec.

“Attackers clearly think that there’s more to be squeezed from victims,” Symantec said in a Wednesday report

In addition, the security company has been detecting more ransomware infection attempts. In 2016, the figure jumped 36 percent compared with the prior year.  

To read this article in full or to leave a comment, please click here

Read more
ComputerWorld Independent 

How your company needs to train workers in cybersecurity

admin , , ,

Credit to Author: Matt Hamblen| Date: Tue, 25 Apr 2017 09:21:00 -0700

With workplace cyberattacks on the rise, industry experts are pressing businesses to train their workers to be more vigilant than ever to protect passwords and sensitive data and to recognize threats.

“It is imperative for organizations of all sizes to instill among employees the critical role they play in keeping their workplace safe and secure,” said Michael Kaiser, executive director of the National Cyber Security Alliance, a group that promotes education on the safe and secure use of the internet. The group’s members include such major technology companies as Cisco, Facebook, Google, Intel and Microsoft.

To read this article in full or to leave a comment, please click here

Read more
ComputerWorld Independent 

Researchers remotely kill the engine of a moving car by hacking vulnerable car dongle

admin , , ,

Credit to Author: Darlene Storm| Date: Mon, 24 Apr 2017 09:54:00 -0700

Israeli firm Argus Cyber Security recently reported that it had been able to remotely “take control of a car via Bluetooth” thanks to vulnerabilities in the Bosch Drivelog Connect OBD-II dongle.

While the hack wouldn’t affect 90 percent of cars and produce an army of “zombie cars” like was pulled off by cyber-terrorist Cipher (Charlize Theron) in the eighth installment of the Fast and Furious series, Argus researchers were able to remotely kill the engine of a moving car.

Famed car-hacker Charlie Miller isn’t too worried about a Fate of the Furious type of car hacking at this point. Bad guys remotely taking control of cars by hacking may currently be something we only see done in the movies, but the CIA was interested in hacking cars for what WikiLeaks claimed could be used to pull off “nearly undetectable assassinations.” 

To read this article in full or to leave a comment, please click here

Read more
ComputerWorld Independent 

There's now a tool to test for NSA spyware

admin ,

Credit to Author: Michael Kan| Date: Sat, 22 Apr 2017 04:43:00 -0700

Has your computer been infected with a suspected NSA spying implant? A security researcher has come up with a free tool that can tell.

Luke Jennings of security firm Countercept wrote a script in response to last week’s high-profile leak of cyberweapons that some researchers believe are from the National Security Agency. It’s designed to detect an implant called Doublepulsar, which is delivered by many of the Windows-based exploits found in the leak and can be used to load other malware.

The script, which requires some programming skill to use, is available for download on GitHub.

To read this article in full or to leave a comment, please click here

Read more
ComputerWorld Independent 

Hackers use old Stuxnet-related bug to carry out attacks

admin ,

Credit to Author: Michael Kan| Date: Thu, 20 Apr 2017 13:57:00 -0700

Users that run unpatched software beware. Hackers have been relying on an old software bug tied to the Stuxnet worm to carry out their attacks.

Microsoft may have initially patched the flaw in 2010, but it’s nevertheless become the most widespread software exploit, according to security firm Kaspersky Lab.

On Thursday, Kaspersky posted research examining the use of exploits, or malicious programs designed to take advantage of certain software flaws. Once an exploit goes to work, it can typically pave the way for other malicious programs to install onto a computer.

To read this article in full or to leave a comment, please click here

Read more
ComputerWorld Independent 

DHS's ICS-CERT warns of BrickerBot: IoT malware that will brick vulnerable devices

admin , , ,

Credit to Author: Darlene Storm| Date: Wed, 19 Apr 2017 08:21:00 -0700

Since the emergence of Mirai, you may have wondered if your IoT device has ever been infected with malware; you even may have rebooted the device which would remove the infection. But if your IoT device becomes infected with BrickerBot, you will know because the malware will “brick” it. Just the same, some people will believe the hardware failed.

Radware security researchers previously said BrickerBot malware was responsible for permanent denial of service attacks (PDoS) that would “destroy” the infected devices. PDoS, also known as “phlashing,” is “an attack that damages a system so badly that it requires replacement or reinstallation of hardware. By exploiting security flaws or misconfigurations, this type of cyberattack can destroy the firmware and/or basic functions of system.”

To read this article in full or to leave a comment, please click here

Read more