CA COUNCIL TO IMPROVE INTERNET CERTIFICATE SECURITY IN 2

At the heart of much of the Internet's security is the use of Secure Sockets Layer/Transport Layer Security (SSL/TLS), which provides encryption for data in motion. Certificate Authorities (CAs) are the trusted entities that issue TLS certificates, and as a group, the CAs are gearing up for big year in 2016, with multiple efforts designed to improve the security of the Internet....
EWEEK
READ MORE

NECURS CAMPAIGN TARGETS BANKS

A recently observed spam campaign powered by the infamous Necurs botnet has been specifically targeting banks with the FlawedAmmyy RAT, security researchers warn. First observed in 2012, the Necurs botnet is best known for the massive Locky ransomware campaigns that it powered in 2016 and 2017. Considered the largest spam botnet in the world, Necurs was sending tens of millions of emails daily at the end of last year. The botnet has managed to remain active by employing multiple Domain Generatio...
SECURITYWEEK
READ MORE

INDIAN MUSIC SITE GAANA ‘HACKED’ BY RESEARCHER

Indian music-streaming site Gaana appears to be back up and running after a security breach yesterday which exposed user log-ins....
HTTP://WWW.INFOSECURITY-MAGAZINE.COM/NEWS/PAGE-79/
READ MORE

DRIDEX/LOCKY OPERATORS UNLEASH NEW MALWARE IN RECENT ATTACK

The threat actor(s) behind many Dridex and Locky campaigns have been using a new Remote Access Trojan (RAT), Proofpoint security researchers warn. Known as TA505, the attackers have been using malware dubbed tRat, which was written in Delphi and is modular in nature. The new piece of malware was first spotted at the end of September, when it was being spread by an unattributed actor. Malicious Word documents used in the attack used macros to download the RAT. The malware was picked up by TA505 l...
SECURITYWEEK
READ MORE

MIT SCORES WORST IN CYBERSECURITY

In a cyber security survey of 485 large colleges and universities, the Massachusetts Institute of Technology came in at the bottom of the list....
CSOONLINE
READ MORE

ARTIFICIAL FINGERPRINT RING COULD COMBAT BIOMETRIC DATA THEFT

A cybersecurity company has teamed up with a 3D accessory designer to produce a ring that could tackle the issue of what to do if your biometric data is stolen. The attractive and wearable piece of jewelry features a synthetic fingerprint that can be used to unlock phones, make payments, or even access a home or office.  Unlike the actual fingerprint of a living human, which can never be replaced if lost, the artificial biometric identifier can be erased and substituted with a new version i...
INFOSECURITY MAGAZIN
READ MORE