Rough patch, or how to shut the window of (unpatched) opportunity

Simply throwing more staff at the patching problem won’t cut it, a study suggests. To paraphrase English novelist Jane Austen, it is a fact universally acknowledged that organizations must act with alacrity when it comes to applying software patches to their systems. A number of recent notorious incidents – think the WannaCryptor malware outbreak or the breach … More Rough patch, or how to shut the window of (unpatched) opportunity

Fake or not fake – that is the question

An interview with ESET’s Lukáš Štefanko on the thin line between what deserves the name “security app” and what can be called fake. ESET’s analysis of shady apps pretending to be security – or “antivirus” – apps that were discovered on Google Play left some questions unanswered. Lukáš Štefanko, who did the research, speaks about its wider … More Fake or not fake – that is the question

Anti-cybercrime successes in the first quarter of 2018, part 2

The long arm of the law caught up with a number of cybercriminals in the first three months of this year. Picking up where we left off in Part 1, we continue to comb through headlines in order to bring another instalment in our rundown of some of the recent law enforcement actions in its struggle … More Anti-cybercrime successes in the first quarter of 2018, part 2

PUBG ransomware wants you to play, not pay

An unusual ransomware, associated with computer game PlayerUnknown’s Battleground, has been uncovered by researchers, dubbed MSIL/Filecoder.HD by ESET. Researchers have discovered a new piece of ransomware that holds the victim’s files hostage. This one, however, comes with a rather peculiar demand in return for recovering the files, according to a Bleeping Computer report citing research by MalwareHunterTeam. When … More PUBG ransomware wants you to play, not pay

Anti-cybercrime successes in the first quarter of 2018

In our roundup of some of the most notable law enforcement actions against computer crime in the first quarter of 2018 will focus on arrests and charges involving suspected cyber-crooks. Compared to combating conventional crime, efforts to bring computer criminals to justice involves a host of specific challenges for law enforcement. The difficulties reside on … More Anti-cybercrime successes in the first quarter of 2018

Fraudsters intercept corporate debit cards and swap out chips in new scam

Criminals have devised a new scheme that aims to drain the bank accounts of large corporations. US authorities are alerting banks to a new type of payment card fraud that is targeting chips in debit cards sent through the mail, a report by KrebsOnSecurity reveals. According to a warning issued by the United States Secret Service in … More Fraudsters intercept corporate debit cards and swap out chips in new scam

Study: White House email domains at risk of being misused for phishing scams

Most of the White House’s email domains have yet to deploy an email authentication protocol known as DMARC that is designed to reduce the risk of attackers impersonating legitimate email addresses for distributing spam or phishing messages. Nearly all email domains overseen by the Executive Office of the President (EOP) of the United States – … More Study: White House email domains at risk of being misused for phishing scams