Heimdal Security - Must-read cyber security news

By Heimdal Security | The most important cyber security news of the week, hand-picked and summed up so you can stay on top of things at all times.

VMware Patches 'Hard-to-Exploit' DoS Vulnerability

<b>An update released by VMware for its NSX-V network virtualization solution patches an important denial-of-service (DoS) vulnerability.</b><p>The security …

Police Can Hurt Dark Net Drug Rings by Leaving Dealers Bad Reviews, Study Suggests

A seller's reputation goes a long way on the dark net.<p>As dark net drug marketplaces continue to pop up, law enforcement agencies are playing a game of online whack-a-mole. Giving dark net sellers bad reviews and scores can be an effective way of keeping potential first-time buyers away, a new study …

Darknet

Facebook Password Stealer Pilfers Data from Wannabe Attackers

With that said, it comes as no surprise that computer criminals would seek to capitalize on wannabe attackers’ interest in cracking a target’s …

Security

Security Tips for Parents with Kids Going Back to School

Cybersecurity is just as important for ordinary people—both adults and children—as it is for companies and professional organizations.<p>I first online …

Gmail now warns iOS users about suspicious links in fight against phishing threats

Stop! Should you really be clicking on that link you just received in your email?Gmail's iOS app is now offering some additional safety nets for the …

Identity Theft

HBO offered its hackers $250,000 after attack, leaked email claims

The fallout from the HBO hack, which has already seen episodes of “Games of Thrones” scripts and episodes leaked online, the distribution of stars’ …

New Trojan malware campaign sends users to fake banking site that looks just like the real thing | ZDNet

Trickbot is now redirecting to a counterfeit site that displays the correct URL and the digital certificate of its genuine equivalent.<p>A notorious …

Lloyds Bank

Google adds phishing protection to Gmail for iOS

A few months ago, Google brought phishing protection to Gmail on Android. Now the company is doing the same for the iOS version of the app. The …

Google

Biological malware: Scientists use DNA to hack a computer

Malware coded into DNA samples was able to take control of the computer analysing them.<p>Scientists at the University of Washington in Seattle, have …

Phishing tops list of most prevalent security threats facing organisations globally

Results of SANS Institute 2017 Threat Landscape survey paints users and endpoints as primary targets, and part of the solutionSecurity professionals …

Cybersecurity

Android app stores flooded with 1,000 spyware apps | ZDNet

Three fake messaging apps in the Google Play Store have been found to be distributing SonicSpy malware.<p>Hackers have flooded Android app stores, …

Hackers are now using the exploit behind WannaCry to snoop on hotel Wi-Fi | ZDNet

Researchers say the APT28 hacking group has scraped the EternalBlue exploit from Shadow Brokers' public dump and is using it to steal data from hotel …

TalkTalk fined £100,000 after carelessly exposing customer data...

UK telecoms operator TalkTalk has been fined £100,000 for failing to protect the personal information of consumers, after the details of 21,000 …

Ukrainian man, 51, cuffed on suspicion of distributing NotPetya

Sergey Neverov accused of posting Petya-A tutorial + ransomware linksA middle-aged Ukrainian has been arrested on suspicion of acting as an agent in …

Crime

Ransomware turns even nastier: Destruction, not profit, becomes the real aim | ZDNet

Leaks and dumps are handing more tools for creating ransomware and other malicious software to cybercriminals.<p>Get used to global malware campaigns …

Almost half of popular consumer websites have poor password requirements

Although other forms of authentication are gaining traction, the password is still the most common method of identifying yourself to websites. Levels …

Amazon Web Services

Promoting data security in the workplace

No matter the workplace, data security is often a top concern for management professionals. Security breaches can end up threatening the livelihood …

The return of Mamba ransomware

Encryption Malware Descriptions Ransomware Targeted Attacks<p>At the end of 2016, there was a major attack against San Francisco’s Municipal …

The Shadow Brokers Have Made Almost $90,000 Selling Hacking Tools by Subscription, Researcher Says

An anonymous researcher has been able to identify the email address of people who have subscribed to the monthly dump service by the mysterious hacking group.<p>In June, the mysterious group who for almost a year has been dumping hacking tools and exploits stolen from the NSA launched a subscription …

Security

67% of Malware Attacks Came via Phishing in Second Quarter

During the second quarter, cyberattacks soared 24% worldwide with phishing attacks playing a large role and Adobe Flash one of the favorite attack …

Cybersecurity

Plenty to as Microsoft and Adobe Fix 115 Bugs

This month’s Patch Tuesday update round from Microsoft fixed 48 vulnerabilities, but only two have been publicly disclosed prior to release, with …

HBO hackers demand money, leak more stolen data and GoT scripts

The hackers who’ve breached HBO and supposedly made off with 1.5TB of the company’s data have released a second data dump.<p>According to the Associated …

Cyberwar: A guide to the frightening future of online conflict | ZDNet

With cyberwarfare, the battlefield is going online. Here's everything you need to know.<p><b>What is cyberwar?</b><p>At its core, cyberwarfare is the use of …

Cybersecurity

Spam Rate Hits Two-Year High

<b>In July 2017, global spam rate reached the highest level registered since March 2015, fueled by the emergence of malware families attempting to</b> …

UK mandates hacking protection for the cars of the future

New government guidance coming out of the UK will require automobile engineers to make sure their connected and automated vehicles are better …

Hacked Chrome web dev plugin maker: How those phishers tricked me

I'm a bloody idiot, says programmer after failing to turn on two-factor authenticationThe chap behind Chrome Web Developer, a popular third-party …

Security

WannaCry Hackers Are Using This Swiss Company To Launder $142,000 Bitcoin Ransoms

Remember those pesky WannaCry ransomware hackers? They’re starting to shift their bitcoin around and <i>Forbes</i> has learned they’re using a Swiss cryptocurrency exchange called ShapeShift to do it.<p>WannaCry infected as many as 200,000 computers when it broke out in May, locking up systems and demanding …

Bitcoin

Infosec Pros: AI Could Soon Be Used Against Us

A majority of information security professionals believe that artificial intelligence (AI) technology will be used in attacks against them in the …

Hackers cash out on WannaCry ransom money

As law enforcement agencies continue to be on the hunt for the group behind WannaCry, the ransomware authors have just withdrawn a handsome $140,000 …