New hacker collective targets SWIFT system
Following the $81 million cyberattack in February, a second hacking group has emerged with the intention of exploiting the SWIFT money transfer system to rob banks. A report from the security firm Symantec has revealed that these cyberattacks have occurred since January and have targeted companies located in the US, Hong Kong, Australian and other […] more…G7 Boost Banking Cybersecurity as New SWIFT Threat Emerges
The G7 group of leading economies laid out a new framework for battling the hacking of financial institutions Tuesday as a new threat using the SWIFT interbank network emerged. read more more…New Trojan Used in Attacks Against SWIFT Member Banks
A second hacking group has been targeting SWIFT banks, according to a new report from Symantec. read more more…Second group of hackers found also targeting SWIFT users
A second hacking group is also trying to rob banks by exploiting the SWIFT money transfer system, following a US$81 million heist in February that used a similar approach. The cyberattacks have been going on since January and have been targeting companies in the U.S., Hong Kong, Australia, and other countries, according to a Tuesday […] more…Swift CEO reveals three more failed attacks on banking network
Banks stopped three new attempts to abuse the Swift financial transfer network this summer, its CEO Gottfried Leibbrandt said Monday, as he announced Swift’s plan to impose tighter security controls on its customers. Swift provides the network that banks use to exchange funds internationally, and hit the headlines in February when attackers almost got away […] more…Illusive Networks seeks to slow Swift attackers through deception
Today’s savvy bank robbers don’t break into vaults looking for gold or diamonds: They’re more likely to be hacking networks looking for access to the Swift payment system. Illusive Networks wants to catch them in the act. In February, hackers exploited Bangladesh Bank’s access to the Swift fund transfer network to steal US$81 million — […] more…Hacking Team 0-day Flash Wave with Exploit Kits
After Hacking Team was compromised, a lot of information were publicly disclosed beginning 5th of July, particularly its business clients and a zero-day vulnerability for the Adobe Flash Player that they have been using. Since the info about the first zero-day was made freely available, we knew attackers would swiftly move into using it. As […] more…Mile-High Hacking: Should You Worry?
For the past couple of days the security industry has been discussing claims that the systems of a commercial aircraft was “hacked” via the on-board inflight entertainment system (IFE). This became public after a search warrant was obtained by media outlets which revealed that the Federal Bureau of Investigation had applied for a search warrant […] more…Big threats using code similarity. Part 1
Today, we are announcing the release of KTAE, the Kaspersky Threat Attribution Engine. This code attribution technology, developed initially for internal use by the Kaspersky Global Research and Analysis Team, is now being made available to a wider audience. You can read more about KTAE in our official press release, or go directly to its […] more…Big threats using code similarity. Part 1
Today, we are announcing the release of KTAE, the Kaspersky Threat Attribution Engine. This code attribution technology, developed initially for internal use by the Kaspersky Global Research and Analysis Team, is now being made available to a wider audience. You can read more about KTAE in our official press release, or go directly to its […] more…Looking at Big Threats Using Code Similarity. Part 1
Today, we are announcing the release of KTAE, the Kaspersky Threat Attribution Engine. This code attribution technology, developed initially for internal use by the Kaspersky Global Research and Analysis Team, is now being made available to a wider audience. You can read more about KTAE in our official press release, or go directly to its […] more…Virtual security conferences fill void left by canceled face-to-face events
Following the swift emergence of the COVID-19 crisis, organizers of cybersecurity and hacking conferences of all sizes have been faced with three choices: Cancel their events altogether, postpone them to the presumably better future, or find some way to hold them in a virtual manner on the internet. Wild West Hacking Fest, originally slated for […] more…APT review: what the world’s threat actors got up to in 2019
What were the most interesting developments in terms of APT activity during the year and what can we learn from them? This is not an easy question to answer, because researchers have only partial visibility and it´s impossible to fully understand the motivation for some attacks or the developments behind them. However, let´s try to […] more…Black Hat 2019: Q&A with McAfee
Now in its 22nd year, Black Hat is an information security event showcasing the latest research, newest technology, scariest threats, and biggest trends. Around 19,000 security professionals will be taking over Las Vegas’s Mandalay Bay during the six-day event. Before the security world convenes the first week in August, I spoke with McAfee leadership and […] more…North Korea-linked Hackers Stole $13.5 Million From Cosmos Bank: Report
The North Korea-linked hacking group Lazarus is said to have stolen $13.5 million in a recent cyber-attack targeting SWIFT/ATM infrastructure of Cosmos Bank. read more more…Examining Code Reuse Reveals Undiscovered Links Among North Korea’s Malware Families
This research is a joint effort by Jay Rosenberg, senior security researcher at Intezer, and Christiaan Beek, lead scientist and senior principal engineer at McAfee. Intezer has also posted this story. Attacks from the online groups Lazarus, Silent Chollima, Group 123, Hidden Cobra, DarkSeoul, Blockbuster, Operation Troy, and 10 Days of Rain are believed to […] more…More information
- Protecting Online Retail in the Face of COVID-19 and Beyond
- Five Eyes governments, India, and Japan make new call for encryption backdoors
- The million-dollar Android-Chrome-OS question
- Return of the Android SMS virus – self-spreading "Selfmite" worm comes back for more
- Virtual Web Host Migrations – March 22 & 23
- Hackers plead guilty to breach that Uber covered up
- Two-Factor Authentication: Something To Consider
- Kenya Acquits Chinese, Taiwanese Cybercrime Suspects
- Proofpoint to Acquire Security Awareness Training Firm Wombat Security for $225 Million
- Resolved: eLion Tuition Bills