Category: Security

More stories

  • , , , ,

    Chinese Police Arrest 11 Over Fireball Adware

    Police in Beijing have arrested 11 individuals on charges that they developed and distributed Fireball, malicious adware that was tied to 250 million installations worldwide, according to Chinese media reports. All of the suspects work for Beijing-based Rafotech, which bills itself as being a digital marketing agency. The firm’s president, technical director and operations director […]

  • , , , ,

    $115 Million Settlement in Massive Anthem Breach Case

    Health insurer Anthem has agreed to a proposed $115 million deal to settle a class action lawsuit over a 2015 cyberattack that resulted in s breach affecting nearly 78.9 million individuals. Attorneys representing plaintiffs said in a statement the $115 million deal, if approved by the California federal court handling the consolidated case, would be […]

  • , , , ,

    FBI: Reported Internet-Enabled Crime Losses Hit $1.3 Billion

    Reported losses due to internet crime last year totaled $1.3 billion, according to the FBI’s Internet Complaint Center, or IC3. That’s, based on 298,728 complaints registered with the bureau by U.S. residents in 2016. “This past year, the top three crime types reported by victims were non-payment and non-delivery, personal data breach and payment scams,” […]

  • , , , , ,

    Apple Says Latest WikiLeaks CIA Attack Tool Dump No Threat

    WikiLeaks has released a second batch of CIA attack tools, dubbed Dark Matter, which includes malware designed to exploit Mac OS X and iOS devices. But Apple contends the attacks target vulnerabilities in its software that have long been patched and that users are not at risk. WikiLeaks released Dark Matter on March 23. It […]

  • , , ,

    Cisco Finds Zero-Day Vulnerability in CIA Attack Tool Dump

    Cisco has issued a security alert warning that 318 of its devices have a zero-day vulnerability in their firmware that unauthenticated, remote attackers could exploit “to execute arbitrary code and obtain full control of the device or cause a reload of the affected device.” The flaw exists in the Cluster Management Protocol processing code in […]

  • , , ,

    Backup Error Exposes 1.37 Billion-Record Spamming Database

    One of the world’s allegedly most prolific spamming operations inadvertently left backup databases accessible online, exposing upwards of 1.37 billion records and a raft of internal company information. Chris Vickery, a security researcher who works for the anti-virus company MacKeeper, discovered the databases, which belong to a US-based email and SMS marketing company called River […]

  • ,

    Feds Drop Child Pornography Case to Protect Exploit Code

    Federal prosecutors in the United States have opted to drop charges against a child pornography suspect rather than reveal the hacking technique used to ensnare him – a move that is sparking heated debate. On March 3, rather than detailing those techniques, the government filed a motion in U.S. District Court in Tacoma, Wash., to […]

  • , , , ,

    Cloudflare Coding Error Spills Sensitive Data

    A well-known Google security researcher discovered that Cloudflare was exposing chat messages, encryption keys, cookies, password manager data, hotel bookings and more. The content delivery network quickly confirmed the finding, traced it to a coding error involving just a single wrong character and put related remediations in place. But the leaked data had been cached […]

  • , , ,

    $5.5 Million HIPAA Settlement for Florida Provider

    Federal regulators have signed a $5.5 million HIPAA settlement with a Florida-based healthcare system for breaches related to unauthorized access to tens of thousands of patients’ information by employees that lasted for more than a year and that subsequently led to criminal charges. It’s the second largest such settlement to date. In a Feb. 16 […]

  • ,

    U.S. Rep. Michael McCaul on Homeland Cybersecurity

      U.S. Rep. Michael McCaul, R-Texas, says Washington must accept that we are losing on the global cyber battlefield. But the chairman of the Homeland Security Committee contends the Trump administration now has the opportunity to turn the tide by prioritizing cybersecurity and investing the right resources in partnerships and defense. In an exclusive audio […]

  • , ,

    FBI: Cybercrime Gang Stole $1.2 Million via Bank Malware

    Using malware to infect individuals’ PCs and drain their bank accounts continues to be a lucrative source of income for criminals, but such cybercrime has never been a risk-free undertaking. The latest example of the potential profits and pitfalls from participating in a banking Trojan attack campaign comes via Vyacheslav Khaimov, 55, who pleaded guilty […]

  • , , , ,

    IRS: New Email Phishing Combines W-2 Theft, Wire Fraud

    The IRS is warning of one of the “most dangerous” kinds of phishing scams in which fraudsters are successfully tricking organizations into sending wage data on employees and then making fraudulent wire transfers. Some companies have already lost thousands of dollars to this fraud this year, the IRS says. The fraudsters have also widened their […]

  • ,

    Heartbleed Lingers: Nearly 180,000 Servers Still Vulnerable

    Nearly three years after it was discovered, Heartbleed lingers on. A report from Shodan, a search engine for internet-connected devices, says that a Jan. 22 search identified 199,594 internet-connected devices that still remain vulnerable to the Heartbleed bug. “Legacy security issues go on and on and on and on.”  Heartbleed is the nickname for a […]

  • , ,

    Hacker Issues Twitter Security Fail Warning to Trump

    The first signs of a presidential transition to stronger cybersecurity aren’t great. A hacker claims he figured out email addresses likely associated with President Donald Trump, his wife, the vice president and a top adviser. The findings come entirely from open-source research, a bit of guessing and the apparent overlooking of a critical security feature […]

  • ,

    Report: Russia Arrests Cybersecurity Official

    Russian authorities have reportedly arrested a top computer security official at the Federal Security Service, known as the FSB, on charges of treason. Sergei Mikhailov, deputy chief at the FSB’s Information Security Center – known as the CDC – has been accused of receiving money from “foreign organizations,” Russian daily newspaper Kommersant reports, citing unnamed […]

  • , ,

    Western Union to Pay $586 Million in US Fraud Settlement

    Western Union will pay $586 million to settle U.S. civil and criminal cases that alleged the company turned a blind eye for years to criminals who used its money transfer network to commit fraud. In one of the most serious accusations, the Department of Justice alleged that Western Union knew for at least five years […]

  • , ,

    Bitcoin Exchange Crackdown: Two Employees Plead Guilty

    A Florida man is the latest to plead guilty to helping operate an unlicensed bitcoin exchange as part of a wide-ranging case that prosecutors say involves three men charged with running a massive pump-and-dump stock scheme that involved hacking into multiple financial institutions, including JPMorgan Chase. Ricardo Hill, 38, appeared Jan. 17 in Manhattan court […]

  • ,

    Obama Commutes Sentence of WikiLeaks Leaker Manning

    In his final days in office, President Barack Obama has commuted the prison sentence of Chelsea Manning, a U.S. Army private whose transfer of classified data to WikiLeaks kicked off a startling era of secrets spilling that continues to shape world politics. The shortening of Manning’s sentence also came with a pardon for Gen. James […]