Cybersecurity

Users Report Spam in Non-compromised Gmail Accounts

Users Report Spam in Non-compromised Gmail Accounts

It was reported this week that a number of Gmail users have complained of spam appearing in their Sent folders, with some seeing “via telus.net” in the spam email’s From field. Some of the users, who posted their concerns on Gmail’s Help Forum, said that even accounts protected with 2-factor authentication and those that even changed their password had been affected by the issue.     Google clarified that the issue was due to a spam campaign that uses forged email headers to make it look like users were spamming themselves. This resulted in the messages wrongly appearing in the Sent […]

British Finance Firms Urged to Join Against Cybercrime

British Finance Firms Urged to Join Against Cybercrime

The KPMG and industry body UK Finance called Britain’s financial firms to come together in the fight against cybercrime in a report last Monday. The report stressed the importance of taking a revamped approach instead of just spending more. David Ferbrache, technical director and head of cyber and space at KPMG, urged the firms to work with governments and law enforcement to pass the cost onto cybercriminals by rendering their markets, tools, and systems ineffective. While some groups, such as the Cyber Defence Alliance, already have a group effort including some of the world’s biggest banks, Ferbrache says that the initiatives […]

Painting Tool Malware Harvests Facebook Credentials and Payment Information

Painting Tool Malware Harvests Facebook Credentials and Payment Information

Researchers from Radware recently reported that a painting software called StressPaint that carries a malware has already affected around 45,000 Facebook users after being spread just a few days ago. The malware is said to steal the credentials, payment information, and various other data from Facebook page owners which can be used for identity theft, malvertising or propaganda campaigns. The app does this by copying the content of Chrome browser cookies and login date files. Any Facebook credentials are then sent to a C2 server. The malware can often go undetected by the device’s antivirus software as it only goes […]

ZTE Says Judicial Recourse Against US Ban if Necessary

ZTE Says Judicial Recourse Against US Ban if Necessary

Chinese telco giant ZTE lashed out at the US for imposing an export ban on its products last Friday, saying that it may take legal action to protect the interests of the company and its investors. The phonemaker said that it had invested significant efforts since April 2016 to ensure its practices and processes were in compliance with export laws. Despite this, US Bureau of Industry Security still triggered the Suspended Denial Order which bans ZTE from buying components and software from US manufacturers for seven years. The US justified the ban by saying that company had issued false statements […]

New Study Says China, Japan, Australia Prime Targets of Botnets

New Study Says China, Japan, Australia Prime Targets of Botnets

CenturyLink’s Threat Research Labs recently released data showing that countries with robust or growing IT infrastructures are still hot targets for cybercriminals. The researchers found that APAC countries China, Japan, South Korea, Taiwan, and Australia received the most attacks from botnets this year. Previously it had been the US, China, Germany, Russia, and the UK. However, it was noted that US, China, and Russia are also the top origins of malicious traffic, while China, South Korea, Japan, India, and Hong Kong hosted the most command-and-control servers used by hackers for gathering and directing botnets. Such botnets are often comprised of […]

Homeland Says US Will Take Tougher Stance Against Cyber Criminals

Homeland Says US Will Take Tougher Stance Against Cyber Criminals

At the recently held RSA conference last Tuesday, Homeland Security Secretary Kirstjen Nielsen issued some words of warning to cyber criminals, saying that the US will not tolerate cyber meddling aimed at the heart of the country’s democracy. Nielsen said that “complacency is being replaced by consequences” and threatened attackers that the US will not be passive while its networks are being compromised. She also urged that malicious behaviour be punished, and added that the federal government will be using all the tools at its disposal to dispense the appropriate punitive actions. Nielsen also explained that cybersecurity is now a […]

Major Tech Companies Sign Cybersecurity Tech Accord

Major Tech Companies Sign Cybersecurity Tech Accord

At the recently held RSA conference, 34 tech firms including Microsoft, Facebook, Cisco, and SAP have signed an agreement called the Cybersecurity Tech Accord where they vowed to protect users from cybersecurity threats and not participate in any government-supported cyber attacks. Those who have signed the accord are required to commit to four pillars: 1. Building stronger defenses to protect all internet users around the globe. 2. Oppose any offensive cyber attacks. 3. Empower people, businesses and developers. 4. Work together and with other private and public sector partners to mitigate threats. Microsoft President Brad Smith emphasized that the wave […]

UK Cyber Authority Issues Warning Against ZTE

UK Cyber Authority Issues Warning Against ZTE

The UK National Cyber Security Centre (NCSC) had reportedly sent a letter to telcos urging them not to use equipment from ZTE, saying that the Chinese telecoms giant carried too much risk. The NCSC apparently said that new equipment and services from another Chinese supplier would render the country’s existing mitigations ineffective. ZTE competitor Huawei is already major supplier of networking equipment for fixed and wireless networks in the UK and is also engaged in 5G trials and Internet of Things (IoT) research.   The warning comes as another blow to ZTE after the US had imposed an export ban […]

Germany Points to Russia for Recent Cyber Attack

Germany Points to Russia for Recent Cyber Attack

German Foreign Minister Heiko Maas said Sunday that the German government is suspecting Moscow to be behind the recent cyber attack on the Foreign Ministry. Maas cited a number of “problematic” actions taken by Russia aside from the cyber attack, such as delaying the implementation of a ceasefire in eastern Ukraine, the poison gas attack in Britain, its support of the Syrian government, and its efforts to influence Western elections. Maas added that they reached a point where they had to assume the attacks had come from Russia, and said that they were condemning those negative contributions. Source: Reuters

Australian Ministers, Google, Apple to Meet for Cybersecurity

Australian Ministers, Google, Apple to Meet for Cybersecurity

It was reported this week that the Australian government has sent a number of officials and cybersecurity experts to the RSA Conference in the US to show off local talent and deepen cyber-alliance ties between the two countries. Minister for Law Enforcement and Cyber Security Angus Taylor, Commonwealth Cyber Coordinator Alastair MacGibbon, and Australian Federal Police Assistant Commissioner Neil Gaughan is set to meet with officials from Washington, Department of Homeland Security, and the FBI this week. The will also be having a meeting with representatives from Apple, Google, Paypal, and Twitter to discuss tech challenges faced by law enforcement. […]