Network World – Page 13

Attackers go on malware-free diet

To avoid detection, some hackers are ditching malware and living “off the land” — using whatever tools are already available in the compromised systems, according to a new report from Dell SecureWorks.

In fact, this has been the case for nearly all the intrusions analyzed by the Dell SecureWorks’ Incident Response Team last year.

The cyber criminals typically start out with compromised credentials, said Phil Burdette, senior security researcher at Atlanta-based Dell SecureWorks, Inc.

“For example, they might use phishing attacks,” he said. “They’ll send an email purporting to be from the IT staff, asking users to log in and test their credentials because the IT staff has just created a new email server. Once a user logs in, those same credentials would then be used to access the company’s virtual private network solutions.”

To read this article in full or to leave a comment, please click here

Attackers go on malware-free diet Read More »

MIT scores worst in cybersecurity

Network World, Reprint

In a cybersecurity survey of 485 large colleges and universities, the Massachusetts Institute of Technology came in at the bottom of the list.In a report released today, SecurityScorecard analyzed the educational institutions based on web applicatio…

MIT scores worst in cybersecurity Read More »

Security experts mostly critical of proposed threat intelligence sharing bill

Network World, Reprint

This fall, the Senate is expected to take another look at the Cybersecurity Information Sharing Act, or CISA, but many security experts and privacy advocates are opposed.Cybersecurity has been in the news a lot this summer, and not just with several…

Security experts mostly critical of proposed threat intelligence sharing bill Read More »

Ashley Madison still a top lure for scammers and crooks

Network World, Reprint

The Ashley Madison breach has been a Christmas-in-August present for spammers and scammers of all kinds, and your company could be the next target.
Here are some scams to watch out for.
Phishing
There is a significant amount of spam related to the …

Ashley Madison still a top lure for scammers and crooks Read More »

Court: FTC can take action on corporate data breaches

Network World, Reprint

The US Court of Appeals has ruled that the FTC mandate to protect consumers against fraudulent, deceptive and unfair business practices extends to oversight of corporate cybersecurity efforts — and lapses. But security experts are split about whet…

Court: FTC can take action on corporate data breaches Read More »

Study: 81% of large health care organizations breached

Network World, Reprint

In the past two years, 81 percent of hospitals and health insurance companies have had a data breach, according to a report released by KPMG.”These are all incidents where they have determined they lost data,” said Greg Bell, Cyber US Leader at KPMG…

Study: 81% of large health care organizations breached Read More »

Intel: Criminals getting better at data exfiltration

Network World, Reprint

Enterprises tend to be highly focused on keeping attackers out of their systems, but most of the actual damage happens not when the bad guys first break in, but when they’re able to successfully steal data — and the techniques they’re using to do t…

Intel: Criminals getting better at data exfiltration Read More »

The Web’s ten most dangerous neighborhoods

Network World, Reprint

Wouldn’t it be convenient if all the spam and malware sites were all grouped together under one top-level domain — .evil, say — so that they would be easy to avoid? According to a new study from Blue Coat, there are in fact ten such top-level doma…

The Web’s ten most dangerous neighborhoods Read More »

CSO burnout biggest factor in infosec talent shortage

Network World, Reprint

The real cause of the talent shortage in the information security field isn’t a lack of new people entering the profession, but retention and churn at the highest levels, according to a new report by IDC.
“It’s a fairly common theme to suggest that…

CSO burnout biggest factor in infosec talent shortage Read More »

Amazon dumps Flash, and the Web is better off

Network World, Reprint

Amazon will stop accepting Flash ads on its advertising network on Tuesday, and it will help make the entire Web more secure, security experts say.
According to Amazon, the move was prompted by a recent update from Google Chrome that limited how Fl…

Amazon dumps Flash, and the Web is better off Read More »

Most corporate risk due to just 1% of employees

Network World, Reprint

Just 1 percent of employees are responsible for 75 percent of cloud-related enterprise security risk, and companies can dramatically reduce their exposure at very little additional cost by paying extra attention to these users.According to newly-rel…

Most corporate risk due to just 1% of employees Read More »

Tips for protecting your business against cyber extortion

Network World, Reprint

CrytoLocker is malware cyber criminals use to encrypt the contents of a computer until users pay up.But that’s only one type of cyber extortion, according to Tim Francis, enterprise cyber lead at Hartford, Conn.-based insurance company Travelers.Cri…

Tips for protecting your business against cyber extortion Read More »

Review: Canonical continues cloud push with Ubuntu 15.04

Network World, Reprint

According to the latest statistics from The Cloud Market, Ubuntu now accounts for 59% of all images on the Amazon EC2 platform. Windows has 8%, and the other distributions of Linux split the remaining 33%.To read this article in full or to leave a comm…

Review: Canonical continues cloud push with Ubuntu 15.04 Read More »

GameOver ZeuS criminals spied on Turkey, Georgia, Ukraine and OPEC

Network World, Reprint

The criminals behind the GameOver ZeuS Botnet didn’t just steal $100 million from banks — they also spied on several countries on behalf of Russia, according to a Black Hat presentation Wednesday by an FBI agent and two other security experts.

These countries included Ukraine, Turkey, Georgia, and OPEC members, according to FBI special agent Elliott Peterson.

The gang, which called itself Business Club, had two leaders, one of whom was Evgeniy Bogachev who is still uncaught. The FBI is offering a $3 million reward for information leading to Bogachev’s arrest.

[ Follow all the stories out of Black Hat 2015 ]

To read this article in full or to leave a comment, please click here

GameOver ZeuS criminals spied on Turkey, Georgia, Ukraine and OPEC Read More »

T-Mobile caught in crossfire of injected ad war with Flash Networks

Network World, Reprint

LAS VEGAS – An ongoing conflict between website owners and ad injectors who place unwanted ads on those websites has just flared up into full-blown war, with advertisers and carriers caught in the crossfire.

Take, for example, T-Mobile, which is proudly named as a customer by Flash Networks, a company that brags about creating “new monetization opportunities” for mobile operators when it “inserts the most relevant engagement display into the selected webpages.”

This seems to have been a surprise to T-Mobile. Cynthia Lee, the company’s senior digital media manager, adamantly denied that T-Mobile was using Flash Networks to inject ads into webpages it was serving up to mobile customers.

To read this article in full or to leave a comment, please click here

T-Mobile caught in crossfire of injected ad war with Flash Networks Read More »