During the Virus Bulletin closing keynote, Brian Honan urged the security industry to share more, victim-shame less and work harder to establish trust.
Source: Security Industry Failing to Establish Trust
A malware campaign utilizing bogus “HoeflerText” popup warnings is back in full swing targeting Google Chrome and Firefox browsers with Locky ransomware attacks and the NetSupport Manager RAT.
Source: ‘HoeflerText’ Popups Target Browsers With RAT and Locky Ransomware
GitLab fixed a vulnerability recently that could have opened its users up to session hijacking attacks.
Source: Session Hijacking Bug Exposed GitLab Users Private Tokens
Cyberwar has evolved from the theoretical to the ominous. TechRepublic went inside one of the defenders vs. hackers war games that’s helping countries prepare to defend themselves.
Source: Defending against cyberwar: How the cybersecurity elite are working to prevent a digital apocalypse – TechRepublic
A new Petya ransomware outbreak is wreaking havoc across the globe, reportedly using the same SMB exploit WannaCry used but with a few added twists. Learn more.
Source: The Petya Ransomware Outbreak: What You Need to Know Now (Updated)
The former contractor reportedly spent 20 years pilfering government secrets and helping himself to the cream of the NSA’s hacking tools library.
Source: Former NSA contractor indicted over 50TB gov’t classified data theft | ZDNet
An installer purporting to be Microsoft Security Essentials is actually malware that can lead to a support call scam.
Source: Fake Microsoft Installer Hicurdismos Leads to Malware, Support Call Scam | Threatpost | The first stop for security news
IoT devices running the authentication protocol OpenSSH are being compromised and used as proxies in attacks that aim to take over accounts at popular web services,
Source: Akamai Warns of Account Takeovers Staged from Cameras, Routers