Many users have complained that their computers were accessed by hackers via the popular remote access and support tool TeamViewer, but the company says its systems have not been breached.
read more
Third SWIFT Attack Transfers $12 million to Hong Kong, Dubai and U.S.
The third known and second successful attack against banks using the SWIFT money transfer network impacted an Ecuadorian bank between January 12 and January 22, 2015. During this period at least 12 fraudulent transfer requests instructed San Francisco-based Wells Fargo to send $12 million belonging to Ecuador's Banco del Austro (BDA) to accounts in Hong Kong, Dubai and the US. Wells Fargo complied.
read more
ABB Patches Password Flaws in Substation Automation Tool
Switzerland-based power and automation technologies provider ABB has released a software update for one of its substation automation products to address several vulnerabilities related to the storage of passwords.
read more
User Data Possibly Stolen in Scrum.org Hack
Scrum.org informed users on Tuesday that their account information might have been compromised after hackers exploited a new vulnerability in third party software used to operate the website.
read more
Old Drupal Flaw Still Used to Hack Websites
More than 19 months after it was patched by Drupal developers, a critical SQL injection vulnerability in the popular content management system is still being exploited by malicious actors to hack websites.
read more
Update Tools Preinstalled on PCs Expose Users to Attacks
Software update and support tools preinstalled on PCs from some of the world’s biggest original equipment manufacturers (OEMs) introduce serious vulnerabilities that expose users to remote attacks.
read more
A New Model for Cyber Risk Management: Observe, Orient, Decide, and Act
To respond to mounting cyber-attacks, advanced persistent threats, and insider leaks, enterprises and government entities need reliable, real time visibility into their IT security posture. Unfortunately, it can take weeks or months to detect intrusions using traditional methods, during which time attackers can exploit vulnerabilities to compromise systems and extract data.
read more
ZCryptor Ransomware Spreads via Removable Drives
A large number of ransomware families have emerged over the past several months, and a new one is now making the rounds, Microsoft researchers warn.
read more
Windows Zero-day Exploit for Sale: Bids Start at $95,000
Trustwave SpiderLabs has discovered a 0-day Windows exploit being offered for sale on an underground forum for Russian speaking cyber criminals. Although the researchers cannot be absolutely certain that the exploit is genuine, they suspect it is – and further expect that the exploit will find its way into criminal hands.
read more
Tor Browser Gets Multiple Security Enhancements
Recently released version 6.0 of the Tor (The Onion Router) browser brings along multiple privacy and security improvements, along with other fixes.
read more
