SEARCH
All Articles
Mirai Malware Expands Reach to New Processors
Researchers have uncovered a new version of the Mirai malware that targets several different processor architectures, including OpenRISC.
Mozambique’s Scheme to End SIM Swap Fraud
Mobile payments are very popular in African companies and SIM card fraud is a massive problem. At the Kaspersky Security Analyst Summit, CERT Mozambique discussed how the banks and mobile operators worked together to ensure thieves didn't loot customer accounts just by stealing phone number.
Amazon Increases Security For CloudFront Domains
Amazon CloudFront now requires domain owners to have an SSL certificate for alternate domain names to help prove ownership.
Chamois: The Big Botnet You Didn’t Hear About
The Android security team was busy battling the Chamois malware family on Google Play starting in 2016. Android security engineer Maddie Stone outlined the steps Google has taken to reduce the number of devices infected with this technically complex malware.
Marketplace Sells Digital Fingerprints for Credit Card Fraud
Criminals can buy digital fingerprints such as user behavior, cookies, and device information on the Genesis marketplace to fool banks' anti-fraud systems and conduct credit card fraud.
Decipher Podcast: Patrick Wardle
Mac security researcher Patrick Wardle joins Dennis Fisher to discuss his research and Mac malware.
Apache Patches Serious Privilege Escalation Flaw
Apache has fixed a root privilege escalation vulnerability in its popular web server software, which runs on millions of servers.
Criminals Sell Stolen Data on Social Media
There's no need to go to underground forums and criminal marketplaces to trade crimeware tools and buy/sell stolen information when it's all on social media, such as Facebook.
Facebook Stops Asking for Email Passwords
In a bizarre series of events, Facebook decided to ask some users to provide the passwords to their email accounts when signing up for new Facebook accounts. When asked, the company agreed to stop.
U.S.-Based Malware Hosting Setup Possibly Tied to Necurs Botnet
Bromium researchers have been tracking a phishing and malware campaign, possibly linked to the Necurs botnet, that uses infrastructure in the U.S.
Cloudflare Warp VPN Aims to Bring Security to Mobile Connections
Cloudflare is rolling out a new mobile VPN service called Warp that's built on top of its 1.1.1.1 DNS resolver.
Some Data Breach Victims Don’t Hear From the FBI Right Away
Many organizations are unaware of the intrusion in their networks until the FBI comes calling. An Inspector General audit found that poor record keeping means some organizations don't hear from the FBI, or hear too late to do anything about it.
Critical Magento Flaw Puts Commerce Sites at Risk
A SQL injection flaw in the Magento platform could open up many commerce sites to attack.
Microsoft Got 99 Domains Used to Phish Someone
Microsoft has taken over 99 domains used by the Phosphorus attack group, which has ties to the Iranian government.
Researchers Still Unraveling LockerGoga Ransomware
Researchers are still trying to figure out how LockerGoga infects its targets, and what the group behind this damaging ransomware variant really wants. Can't be just money.