Category Archives: Information Security

Millions Of Systems Worldwide Found Exposed On The Public Internet

New Project Sonar scans uncover unnecessarily open ports in systems worldwide: Australia, China, France, US, Russia, and UK, among nations most at risk.

More then 10 million systems worldwide on the Internet leave a door open to their relational databases and millions of nodes leave telnet, printer, and other ports exposed, according to new data from Rapid7’s Project Sonar.

Read More Darkreading

Fed reports 50-plus breaches from 2011 to 2015, some instances of espionage

Potential rewards for hacking central bank are high for attackers with a sophisticated skill set

The U.S. Federal Reserve, the nation’s central bank, detected more than 50 cybersecurity breaches between 2011 and 2015, including a handful attributed to espionage.

The Fed’s Washington-based Board of Governors identified 51 information disclosures during the five-year period, according to information obtained through a Freedom of Information Act request by Reuters.

Read More Computerworld

Android Spyware Snoops on Government, Military Security Job Seekers

New Android spyware, apparently targeting government security job seekers, has been detected in Saudi Arabia. The code is poor but the malware works efficiently, claims McAfee in a report published yesterday.

The spyware openly masquerades as a chat app called Chat Private. McAfee claims it is working in tandem with a job site that offers work for security personnel in government or military jobs. In reality the site seems much like any other job site and advertises many different job sectors, including for example, media, accounting, education, medical and so on.

Read More Securityweek

US finds no cyber threats, despite declaring “national emergency”

A report said that not one malicious cyber-threat was found, and the federal government spent more money than it received in collected sanctions.

kim-jong-un-generic-north-korea
(Image: via file footage/CBSNews.com)

Six months after issuing an executive order to handle the “national emergency” that the US faced amid the growing wave of cyberattacks, the Obama administration has yet to find any threats.

Read More ZDNet

ZCryptor Ransomware Spreads via Removable Drives

A large number of ransomware families have emerged over the past several months, and a new one is now making the rounds, Microsoft researchers warn.

Dubbed Ransom:Win32/ZCryptor.A, the ransomware abuses infection vectors used by other malware, such as spam emails, macro malware, and fake installers. Unlike other ransomware families out there, however, this piece of malware also exhibits worm-like behavior, which allows it to self-propagate from a compromised machine.

 

Read More Securityweek

Microsoft, Google, Twitter, Facebook Agree To EU Hate Speech Rules

Heavy-hitters in the tech industry agree to adhere to the European Commission’s hate speech rules and vow to remove infringing postings within 24 hours after notification.

8 Ways To Secure Data During US-EU Privacy Fight

8 Ways To Secure Data During US-EU Privacy Fight

European regulators and tech giants Google, Microsoft, Twitter, and Facebook have struck an agreement to combat terrorism via a code of conduct that calls for the prompt removal of hate speech, the European Commission announced Tuesday.

Read More Informationweek

Investigation Suggests Insider Involvement in $81 Million Theft at Bangladesh Central Bank

The official Bangladesh government probe into the $81 million dollar theft via SWIFT in February has suggested the possibility of insider involvement. In February 2016 attackers successfully tricked the New York Federal Reserve Bank into transferring $81 million from the Bangladesh central bank to accounts in the Philippines. Before today, the primary Bangladesh line has been to blame SWIFT for the breach.

Read More Securityweek