RSS Reader for Computer Security Articles
Credit to Author: BrianKrebs| Date: Mon, 22 Apr 2019 19:43:02 +0000
The owner of a Swedish company behind a popular remote administration tool (RAT) implicated in thousands of malware attacks shares the same name as a Swedish man who pleaded guilty in 2015 to co-creating the Blackshades RAT, a similar product that was used to infect more than half a million computers with malware, KrebsOnSecurity has learned.
Read More
CSO staff writer Lucian Constantin offers advice on how online retailers can prevent online payment fraud.
Credit to Author: BrianKrebs| Date: Fri, 19 Apr 2019 21:58:08 +0000
Marcus Hutchins, a 24-year-old blogger and malware researcher arrested in 2017 for allegedly authoring and selling malware designed to steal online banking credentials, has pleaded guilty to criminal charges of conspiracy and to making, selling or advertising illegal wiretapping devices.
Read More
Credit to Author: Woody Leonhard| Date: Thu, 18 Apr 2019 09:57:00 -0700
The latest Internet Explorer XXE zero-day depends on you opening an infected MHT file. MHT is an old file format that’s almost always opened by IE — no matter which browser you’re using, no matter which version of Windows. Catalin Cimpanu has a good overview of this XXE vulnerability on ZDNet.
It’s a doozy of a security hole as it affects every recent version of IE, and it infects whether you’re actively browsing with IE or not.
Credit to Author: BrianKrebs| Date: Thu, 18 Apr 2019 17:42:46 +0000
The criminals responsible for launching phishing campaigns that netted dozens of employees and more than 100 computer systems last month at Wipro, India’s third-largest IT outsourcing firm, also appear to have targeted a number of other competing providers, including Infosys and Cognizant — two other large technology consulting companies, new evidence suggests.
Read More
Credit to Author: BrianKrebs| Date: Wed, 17 Apr 2019 17:56:58 +0000
I’m not a huge fan of stories about stories, or those that explore the ins and outs of reporting a breach. But occasionally it seems necessary to publish such accounts when companies respond to a breach report in such a way that it’s crystal clear that they wouldn’t know what to do with a breach if it bit them in the nose, let alone festered unmolested in some dark corner of their operations.
Read More
Credit to Author: Woody Leonhard| Date: Tue, 16 Apr 2019 08:02:00 -0700
A week ago, Microsoft released six patches that brought many machines to their knees. As I explained last Friday, when the dust cleared, it was apparent that all six of these April patches:
would trigger blue screens on reboot on most systems running Sophos antivirus products, and many systems running AV products from Avast and Avira.
Credit to Author: BrianKrebs| Date: Mon, 15 Apr 2019 21:19:55 +0000
Indian information technology (IT) outsourcing and consulting giant Wipro [NYSE:WIT] is investigating reports from multiple security experts that Wipro’s systems have been hacked and are being used to launch attacks against the company’s customers, multiple sources tell KrebsOnSecurity. The company has refused to respond to questions about the alleged incident.
Read More