Featured post

Tiny Tinba Trojan Could Pose Big Threat

by on | Leave a comment
Filed under Industry News, Research Lab and tagged , , , , , .

tinba trojan

In July 2014, the original source code of Tinba was made public in an underground forum. This leaked version comes with complete documentation and full source code. This follows other source code leaks from much more infamous and prevalent threats, which researchers worry that attackers could use as the basis for new versions. Similar to what happened with the 2011 Zeus source code leak that then lead to the creation of Citadel. Continue reading

Featured post

How to Find and Remove the Cyber Attacker that Has Already Breached Your Defenses – White Paper

by on | Leave a comment
Filed under Industry News, Security 101 and tagged , , , , , .

cyber attacker

For enterprises, the current cyber threat landscape is more perilous than ever — and things are only going to get worse.

That’s because not only are today’s advanced threats designed to evade traditional legacy security systems, but the bad actors behind them are highly motivated, fully resourced, and well prepared. Continue reading

Malware Exploits Network Security Weaknesses

by on | Leave a comment
Filed under Industry News and tagged , , , , , , .

malware

In its newly-released 2014 Midyear Security Report, Cisco is warning enterprises that, while they still need to focus on plugging high-profile vulnerabilities in their network defense system, they can’t afford to ignore more mundane weak links such as outdated software, flawed code, user errors, or abandoned digital properties – because doing so plays right into the hands of bad actors who are counting on slipping through these overlooked entry points to deploy malware. Continue reading

Zeus Malware Variants Designed to Evade Client-Side Security Software

by on | Leave a comment
Filed under Industry News and tagged , , , , .

zeus malware

As reported by Zero Day’s Charlie Osborne, threat actors are using new variants of the notorious Zeus malware Trojan in an email campaign designed to steal financial data from (so far) a Canadian bank and several US business targets. Continue reading

Hackers Slip Past Two-Factor Authentication Security at 20+ Banks

by on | Leave a comment
Filed under Industry News and tagged , , .

hacker

Think that the heralded two-factor authentication is enough to thwart today’s hackers? Well, so did cyber security professionals at 34 banks across Europe and Asia – that is, until, their customers’ online accounts were ransacked in new campaign that appears to be the handiwork of cyber criminals operating out of Russia and Romania. Continue reading

Possible Point-of-Sale Attack at Goodwill Prompts Joint Investigation

by on | Leave a comment
Filed under Industry News and tagged , , , , .

point-of-sale attack

Quiz: What does it take get the US Secret Service to waltz into a Goodwill store? Hint: It’s not to shop for previously-enjoyed charcoal suits, pick up a used DVD of “Men in Black”, or make a donation (how much does a used wristwatch microphone go for these days?). Give up? Sadly, the answer is likely because we’re about to discover the grizzly details of yet another Point-of-Sale attack. Continue reading

Security Breach at UPS Store Went Undetected for Months

by on | Leave a comment
Filed under Industry News and tagged , , , , , , .

security breach at UPS stores

When The UPS Store selected the slogan “Relationships with Benefits”, they certainly couldn’t have imaged their promised perks would one day include free identity protection and credit monitoring services. However, that’s precisely what the company is offering select customers whose credit and debit card data may have fallen into the hands of cyber criminals as a result of a recently-uncovered security breach. Continue reading

Enterprise Cybersecurity Strategy Moves CEOs “Front & Center”

by on | Leave a comment
Filed under Industry News and tagged , , .

ceo

In what he hails as a wake-up call for his fellow CEOs, Sentek Global’s Eric Basu latest article on Entrepreneur.com pointedly entitled “CEOs Can No Longer Sit By on Cybersecurity” is also must-read for all executives who want their enterprise to avoid becoming the next example of failed cybersecurity – and making the headlines for all of the wrong reasons. Continue reading

Closing the Cyber Security Skills Gap Requires More Money

by on | Leave a comment
Filed under Industry News.

K

A RAND report entitled “Hackers Wanted: An Examination of the Cybersecurity Labor Market” is advising organizations in general – and the US Federal Government in particular — that in order to stay at least one step ahead of the bad guys, they need to dole out more cash so they can recruit and retain desperately-needed cyber security professionals; especially those at the high-end of the capability spectrum, who can command salaries in the $200,000 – $250,000/year range. Continue reading