Cybercrime Week in Review 11 July 2015 Meeting the Digital Identity Challenge (Bank Info Security) Security leaders across enterprises observe that the digitization of the customer experience has taken the market by storm, and it is imperative for CISOs to adapt to these changes immediately. Hacktivist group possibly compromised hundreds of websites (CSO) A hacker…
Patch Adobe Flash Now Exploit Detected in the Wild Adobe has issued patches for Flash to address multiple vulnerabilities, including a use-after-free zero-day flaw in the in the ActionScript 3 ByteArray (CVE-2015-5119), which could allow a remote attacker to execute arbitrary code on a targeted system. “Adobe has released security updates for Adobe Flash Player for Windows, Macintosh and Linux.…
Cybercrime Week in Review 4 July 2015 Crooks Use Hacked Routers to Aid Cyberheists (KrebsonSecurity) Cybercriminals have long relied on compromised Web sites to host malicious software for use in drive-by download attacks, but at least one crime gang is taking it a step further: New research shows that crooks spreading the Dyre malware for use in…
Evasion Techniques Keep Angler EK’s Cryptowall Business Thriving The Angler Exploit Kit is turning into a model for malware rapidly integrating new evasion techniques. Starting in early June, URL patterns used by the notorious exploit kit have been changing almost daily, coinciding with it pushing Cryptowall 3.0 ransomware. SANS Internet Storm Center handler Brad Duncan,…
Cybercrime Week in Review 27 June 2015 FBI Fraud Alert: Business E-mail Compromise (PhishLabs) Federal law enforcement officials and the Financial Services Information Sharing and Analysis Center (FS-ISAC) have released a fraud alert to heighten awareness around the continued rise of business email compromise (BEC) attacks. Magazine publisher loses $1.5M in cyberfraud (New York Post)…
Gift card fraud How it’s committed and why it’s so lucrative Gift cards have caused quite a headache for retailers in the last month, exposing another way that fraudulent activity can eat into razor-thin profit margins. Gift card fraud can range from physical theft to cloning to exploiting programming errors on the merchant side. The…
Cybercrime Week in Review 20 June 2015 Increase in CryptoWall 3.0 from malicious spam and Angler exploit kit (InfoSec Handlers Diary Blog) Since Monday 2015-05-25 (a bit more than 2 weeks ago), we’ve seen a significant amount of CryptoWall 3.0 ransomware from malicious spam (malspam) and the Angler exploit kit (EK). LastPass Network Breached; Calls…
Cybercrime Week in Review 13 June 2015 PhishLabs Launches the First Spear Phishing Protection Service (PhishLabs) PhishLabs, the leading provider of 24/7 cybersecurity services that protect against the exploitation of people, announced today at the Gartner Security and Risk Management Summit 2015 the launch of its new, groundbreaking Spear Phishing Protection service. Firms Take Over…
Cybercrime Week in Review 6 June 2015 Apple Mac OSX Zero Day Bug Allows Hackers To Install Rootkit Malware (The Hacker News) A zero-day software vulnerability discovered deep in the firmware of many Apple computers could allows an attacker to modify the system’s BIOS and install a rootkit, potentially gaining complete control of the victim’s…
Celebrating the MailShark First Anniversary We are very pleased to announce that this is the one year anniversary of MailShark – it was on 20 May 2014 that we first published the website and announced the service publicly. We started MailShark as the first truly FREE (with no catches) Cloud-based Anti-Spam Anti-Virus Email Filter in…
