SHAttered - a SHA-1 hash collisionFeb 27, 2017, 09:37 AM Ben Gane
Researchers at Google and CWI have been the first to create a practical collision attack against the SHA-1 cryptographic hash function. Previously a collision was only possible in theory with the premise that a significant amount of...
30,000 taxpayers affected by W-2 phishing scams, IRS warnsFeb 27, 2017, 09:33 AM Ben Gane
Now that tax season has begun, IRS-related phishing scams are back. This year, hackers are expanding their victim range to include school districts, NGOs and tribal organizations, according to an IRS alert released in February...
It's raining. It's pouring. This fake weather app is stealing your credentialsFeb 27, 2017, 09:31 AM Ben Gane
A new Android banking trojan poses as a legitimate weather forecast app in an effort to steal users' banking credentials. The malware, dubbed Trojan.Android/Spy.Banker.HU, mimicked the legitimate Good Weather app to skirt Google's security mechanisms and infiltrate the Play Store.
It’s All about Cybersecurity: Insider Threat Missed by the FedFeb 24, 2017, 09:02 AM Ben Gane
Recently, while reading the news I found one interesting and, in my opinion, funny case about employee-privileged abuse. Long story short, Nicholas Berthaume, a former communications analyst of the board of governors of the Federal...
Top Endpoint Security Suites Brought to You by the Number 15Feb 24, 2017, 08:53 AM Ben Gane
It’s sad but true. As a 15-year-old, I was way outside Sesame Street’s target audience when the PBS television program first aired on November 10, 1969. But what the heck, I tuned in anyway. And it just so happens that 15 is my favorite number for several reasons...
Barely 1% of Android users are running Nougat, as Apple shows how to properly update devicesFeb 24, 2017, 08:50 AM Ben Gane
What are the most commonly over-looked piece of professional security advice amongst computer users? If you answered install security patches, use unique passwords and enable two-factor authentication – give yourself a point...
Operation BugDrop - hackers steal gigabytes of data from organisations, record conversationsFeb 24, 2017, 08:48 AM Ben Gane
A reconnaissance campaign dubbed "Operation BugDrop" has stolen gigabytes of data from at least 70 organizations in Ukraine and elsewhere. The threat intelligence research team at CyberX came across the operation after discovering an in-the-wild malware campaign...
Gordon Ramsay's father-in-law charged with hacking celebrity chef's emailFeb 24, 2017, 08:46 AM Ben Gane
Five years ago I wrote an article for my old stomping ground, Naked Security, entitled"Gordon Ramsay sues over hacked emails that revealed hair transplant". It reported claims made by the potty-mouthed celebrity chef that his former business partner and father-in-law, Christopher Hutcheson, had...
'Zombie script' deluges Internet Explorer 11 with pop-up alerts until user closes tabFeb 24, 2017, 08:43 AM Ben Gane
A 'zombie script' could allow attackers to deluge Internet Explorer 11 users' browser windows with pop-up alerts until they close the tab. Security researcher Manuel Caballero developed the script by taking...