Cyber Security News

The Tiny Chip Saga
Date

The Tiny Chip Saga

On Thursday, October 4, 2018, Bloomberg published an article which claimed that Chinese spies were able to gain privileged access to just under 30 major US companies. This access was granted through the spies planting tiny microchips inside motherboards used for Supermicro servers that eventually ma

LoJax: First UEFI Malware seen in the Wild
Date

LoJax: First UEFI Malware seen in the Wild

Most hackers and threat actors are often content to copy the work of others. This means that most of the world’s cyber-attack campaigns are conducted using tried and tested tactics and already existing, if slightly modified, malware variants. When a new and original method of attack becomes apparent

Facebook Hacked: 50 million Accounts Affected
Date

Facebook Hacked: 50 million Accounts Affected

On September 28, 2018, Facebook announced that it had suffered a major security breach. The social media giant simultaneously announced that 50 million user accounts were accessed by unknown attackers. The discovery was made by Facebook engineers on the previous Tuesday and that the attackers manage

Google Play Store Swarmed with Malware
Date

Google Play Store Swarmed with Malware

Recent reports across multiple platforms would indicate that hackers are still able to exploit the Google Play Store to upload malware with the intention of infecting Android devices. This is by no means a new phenomenon but hackers prove again that they are a resourceful bunch. No matter what count

Virobot Malware Emerges
Date

Virobot Malware Emerges

A recently discovered malware strain can be seen as a Swiss Army knife. Not only can it function as ransomware it can also log and steal their keystrokes and add infected computers to a spam-sending botnet. Multi-tasking malware is by no means a new phenomenon, malware authors will look to add new c

Credential Stuffing: The Financial Sector’s New Headache
Date

Credential Stuffing: The Financial Sector’s New Headache

Banks and other financial institutions have long been the targets of hackers. Not only do they deal with massive amounts of funds daily, but they are also entrusted with valuable personal information that stealing it is a major goal for many cyber criminals. This treasure trove of personal informati

Fallout Exploit Kit Distributing SAVEFiles Ransomware
Date

Fallout Exploit Kit Distributing SAVEFiles Ransomware

Last week this platform published an article which covered the emergence of a new exploit kit called Fallout discovered by security researchers at FireEye. Initially the exploit kit has been used to distribute the SmokeLauncher trojan and the GandCrab ransomware. This week, it has started to distrib

Trend Micro Apps booted from Mac App Store
Date

Trend Micro Apps booted from Mac App Store

Apple has recently pulled several Trend Micro apps from its app store. These include the free packages Dr. Cleaner, Dr. Antivirus, and Dr. Archiver listed has been developed by Trend Micro. The reason for the apps receiving the boot: they exfiltrate user data for the user’s browser history. The disc

Fallout Exploit Kit Emerges
Date

Fallout Exploit Kit Emerges

The use and popularity of hackers using exploit kits seems to be waning. This decline in use has been attributed to arrests, prison sentences, and service disruptions caused by law enforcement in partnership with security firms. This is most certainly good news but does not mean their use is complet

PowerPool exploiting Window’s Zero-Day
Date

PowerPool exploiting Window’s Zero-Day

Security researchers at security firm ESET have witnessed the threat group “PowerPool” exploiting a Windows zero-day vulnerability. The vulnerability is being used by the threat group to elevate the privileges of a backdoor in targeted attacks. The flaw was disclosed on August 27 with the proof of c