A 33-year-old man from Sydney, New South Wales, could be sentenced to up to 10 years in jail after allegedly hijacking computers at his workplace to mine cryptocurrency.
Read more in my article on the Hot for Security blog.
Author Archives: Graham CLULEY
Don’t have your account hijacked. Secure your online accounts with more than a password, says Google
Research published at the end of last week argues that the typical user can significantly harden the security of their online accounts by linking a recovery phone number that can send an alert if there is suspicious activity on the account.
Read more in my article on the Hot for Security blog.
$100 million GozNym cybercrime network dismantled as suspects charged
The sophisticated conspiracy saw tens of thousands of victims’ computers infected with the GozNym malware in order to steal online banking passwords, and raid accounts.
Read more in my article on the Hot for Security blog.
Forbes subscribers warned of Magecart threat skimming credit card details
The notorious Magecart malware, that blights online stores by stealing payment card details from unsuspecting shoppers at checkout, has claimed another high profile victim. Security researcher Troy Mursch raised the alarm on Twitter that the Forbes magazine subscription website had been compromised with malicious code that was siphoning off sensitive credit card information as users […]… Read More
The post Forbes subscribers warned of Magecart threat skimming credit card details appeared first on The State of Security.
Oh, the irony… Malware spread via Best of the Web security seals
The very thing that websites were using to reassure you that they were secure… was insecure, and putting website visitors’ personal data at risk.
Smashing Security #128: Shackled ankles, photo scrapes, and SIM card swaps
A bad software update causes big headaches for Dutch police, but brings temporary freedom to criminals. SIM swaps are in the news again as fraudsters steal millions. And does your cloud photo storage service have a dirty little secret?
All this and much much more is discussed in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Rip Off Britain’s David McClelland.
Israeli TV’s Eurovision webcast hijacked by hackers. Hamas blamed
Hamas hackers have been blamed for briefly hijacking an Israeli TV webcast of the Eurovision Song Contest semi-finals last night.
Microsoft worm warning: Windows users urged to patch now
Microsoft is urging computer users to patch their systems now against a critical vulnerability that could be exploited by a fast-moving worm.
Read more in my article on the Hot for Security blog.
Free eBook: A Business Owner’s Guide to Cybersecurity
Download the free VIPRE e-book “A Business Owner’s Guide to Cybersecurity” to learn more about how and where cybercriminals are likely to strike and how to protect your business from cyberattacks using a layered security approach.
Urgent! Update WhatsApp NOW to add new sticker support
Yes, you should update WhatsApp.
But not for the reasons they’re telling you.
Zara Larsson wants your password so she can watch Game of Thrones
When a celebrity asks if you can share your password…
Spying on personal alarms and GPS trackers is as simple as sending an SMS
Security experts found that the devices – manufactured in China, and rebadged by multiple companies around the world – are vulnerable to a simple hack that could allow a hacker to track their location, and even secretly listen in via the microphone.
Read more in my article on the Bitdefender BOX blog.
IRS extends tax filing deadline following attack on Wolters Kluwer CCH cloud accounting service
The IRS will waive penalties and interest if your tax filing was delayed due to the CCH outage.
Students pull off below-the-belt mailing list prank
Students at Labelle Senior High School sent an email addressed to all faculty, staff, and students about a “Mandatory Penis Inspection”…
Ever app users uploaded billions of photos, unaware they were being used to build a facial recognition system
Users have shared the private photos stored in their email and social networks with Ever – not realising that they were being used to feed a facial recognition system.
RobbinHood ransomware attack brings down parts of City of Baltimore’s computer network
For the second time in a year, Baltimore city government computers have been infected by ransomware. Malicious hackers are demanding that a ransom is paid for the safe recovery of encrypted files on affected computers and servers.
Read more in my article on the Tripwire State of Security blog.
RobbinHood ransomware attack brings down parts of City of Baltimore’s computer network
For the second time in a year, Baltimore city government computers have been infected by ransomware. Malicious hackers are demanding that a ransom is paid for the safe recovery of encrypted files on affected computers and servers.
The post RobbinHood ransomware attack brings down parts of City of Baltimore’s computer network appeared first on The State of Security.
Smashing Security #127: I do love the Dutch
Israel strikes back at Hamas’s hacking HQ, a new sextortion email comes with a twist, and Carole saves the world with some help from hacked Roomba vacuum cleaners.
All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by Malicious Life’s Ran Levi.
$40 million worth of Bitcoin stolen from Binance cryptocurrency exchange
Binance, one of the world’s biggest cryptocurrency exchanges by trading volume, says that it has suffered a security breach that saw hackers steal more than $40 million worth of Bitcoin.
Read more in my article on the Hot for Security blog.
Malware takes Wolters Kluwer CCH cloud accounting service offline
Wolters Kluwer, the company behind cloud accounting software CCH, has confirmed that its service was knocked offline after malware was discovered on its systems.
An attempt to phish my Amazon Web Services account
An email arrived purporting to be from Amazon Web Services (AWS). It claimed that unless I confirmed I had given my correct contact information for a domain’s WHOIS record, a website I administer could be suspended.
Facebook sponsored posts selling access to hacked PayPal accounts
Have you ever been curious just how much vetting Facebook does before it accepts cash for an ad or a sponsored post?
Judging by what’s popping up in some users’ newsfeeds, the answer is not that much.
Sensitive data can lurk on second-hand hard drives
Birth certificates, photographs, names, email addresses, credit card details, social security numbers. All to be found on used hard drives for sale on eBay.
Read more in my article on the Bitdefender Business Insights blog.
Israel bombs building containing alleged Hamas hackers
“HamasCyberHQ.exe has been removed” tweeted the Israeli Defense Force.
HMRC to finally erase five million voice records it collected without permission
The biometric voice data had been collected without explicit consent from people calling the HMRC’s telephone hotline for advice.
Japan is developing a computer virus to fight cyberattacks, claim reports
According to a report in the Japan Times, the Japanese Defense Ministry is considering creating “its first ever computer virus… as a defense measure against cyberattacks.”
Read more in my article on the Hot for Security blog.
Smashing Security #126: Zombie chickens and fast-food victims
What’s the worst that can happen if you join a Hollywood hard man’s Facebook page? What drove a man to hijack a website’s name at gunpoint? And can you solve the mystery of the Canadian Hamburglar?
Find out in the award-winning “Smashing Security” podcast with Graham Cluley, Carole Theriault, and special guest Mark Stockley from Naked Security.