Cybersecurity

Kaspersky Warns of Mamba Ransomware Return, Encrypts Entire Hard Drive

Kaspersky Warns of Mamba Ransomware Return, Encrypts Entire Hard Drive

Last Thursday, researchers from Kaspersky Lab warned that the infamous Mamba ransomware is back. Known to encrypt all hard drive data, it uses sophisticated algorithms which currently cannot be decrypted. First detected in September 2016, the Mamba ransomware makes use of an open source software called DiskCryptor to seize hard drives. Attackers are known to use Mamba to lock down on corporate entities and big organizations. The Mamba was reported to disrupt the San Francisco Municipal Transportation Agency in November 2016, forcing engineers to temporarily open gates and allow travelers to ride trains for free. Today, researchers say that the […]

Cyber Insurance Demand Increases in China Following WannaCry Outbreak

Cyber Insurance Demand Increases in China Following WannaCry Outbreak

Hong Kong — Cyber insurance needs for companies throughout Greater China and parts of Asia are expected to grow significantly, according to the American International Group Inc (AIG). The prediction is based on increased inquiry rates after the WannaCry outbreak in May.   AIG said firms asking about cyber insurance rose to 37% worldwide, while it increased to 87% last May in Greater China and Hong Kong. The WannaCry attack affected more than 200,000 computers in critical infrastructures across 150 countries.   Companies take interest in cyber insurance because they know it will protect their business, according to AIG business […]

Microsoft Stops Recognizing Chinese Secure Certificates from WoSign

Microsoft Stops Recognizing Chinese Secure Certificates from WoSign

Microsoft will no longer be using Certificate Authorities (CAs) from WoSign and its ancillary company StarCom, for failing to comply to security standards. Aside from Microsoft, other major tech companies have previously dropped WoSign, including Mozilla, Google, and Apple. StarCom came under fire in October 2016 for having subpar management capabilities, according to SSL Labs, while WoSign acquired its tainted reputation for deceiving its users. Microsoft stated WoSign and StarCom had unsatisfactory practices, including duplicate certificate serial numbers, accidental certificate revocations, and mis-issuing certificates, to name a few. CAs are supposed to provide digital certificates for identity verification online. They […]

U.K. Considers Fines for Nat’l. Infrastructures That Neglect Cybersecurity

U.K. Considers Fines for Nat’l. Infrastructures That Neglect Cybersecurity

Last Tuesday, news reported that the U.K. government is seriously examining plans to impose fines on national service providers that fail to implement effective cybersecurity measures. The move is intended for national infrastructures that provide services like energy, healthcare, water, electricity, and transportation. Its aims to provide legal regulations to help safeguard critical services from cyber attacks.   The government pursued the consultation following setbacks caused by the WannaCry ransomware outbreak on National Health Service operations. In line with this coming proposal, the government is reviewing the EU’s Network and Information Systems (NIS) Directive. Penalties could be up to £17 […]

Mastercard and AFI Hosts Cybersecurity Seminar in Malaysia

Mastercard and AFI Hosts Cybersecurity Seminar in Malaysia

A large-scale cybersecurity training seminar was organized in Malaysia by Mastercard and the Alliance for Financial Inclusion (AFI) for 70 financial regulators across 35 countries. The event titled Cybersecurity Challenges and Resilience Management aimed to inform participants of best practices in preventing breaches, detecting threats, and responding to cyber attacks. The training also suggested policies that can reinforce protection for digital transactions. According to AFI executive directive Dr. Alfred Hannig, the seminar was developed under the guiding principles of the AFI Public-Private Dialogue (PPD) and the global platform.    Hannig stated that PPD partners’ need for comprehensive technical seminars ranked […]

Philippines Ranks 8th in 2016 Most Targeted Country for Mobile Malware

Philippines Ranks 8th in 2016 Most Targeted Country for Mobile Malware

News last Monday reported that the 8th most targeted country for mobile malware in 2016 is the Philippines, with 34.97% of Filipino smartphone users catching some form of malware infection. The figures were presented in the 2017 Cybersecurity Summit last August 3 by Vitaly Kalmuk, head of the Asia Pacific research team in the Asia Pacific. According to Kamluk, the Philippine’s rising rate of mobile malware outbreak is attributed to the wide-spread use of low-end Android units. Vendors of the said phones are slow in providing updates, and simply do not have enough resources to generate them. Stephan Neumeier, Kasperky […]

Risk of Cyber Threats Compel Ships to Use Radio Navigation Again

Risk of Cyber Threats Compel Ships to Use Radio Navigation Again

Concerns regarding the vulnerabilities of GPS ship navigation is pressing countries worldwide to come up with a reliable back-up plan that uses traditional radio frequency. Ships currently rely on GPS for satellite navigation, which is highly susceptible to signal jamming from hackers. To resolve this, nations are pushing to develop a secondary system called eLoran (long-range navigation) that works using radio frequency. With 90% of global trading coursed through sea transport, it is crucial to ensure navigation safety. South Korea is the first to implement this technology, with other countries like the U.S., Russia, and Britain to follow through. The […]

Russian Pleads Guilty, Hijacked PCs for Botnet Ops in Minnesota

Minnesota, USA – Russian Maxim Senakh found guilty in Minnesota for taking part in the Ebury botnet operation that stole usernames and passwords from people using Linux computers. Senakh is said to be responsible for hijacking thousands of computers to scam users. In 2015, he was charged in Finland and extradited in the United States for cyber abuse and fraud allegations. According to the indictment issued by the US Department of Justice, Senakh and his associates controlled computers to create online traffic that supported fraudulent operations. The attackers also gained income from generating fake clicks on internet ads. Moreover, the […]

Top German Police Official Urges for Stronger Anti-Cybercrime Laws

Top German Police Official Urges for Stronger Anti-Cybercrime Laws

Berlin — Germany’s Federal Criminal Police Office (FCPO) president Holger Muench is pushing for stronger regulations against cybercrime to aid authorities in apprehending perpetrators of illegal online operations. Muench gave the statement following a recent case against a British hacker who admitted to shutting down Deutsche Telekom internet services. The court ended up giving a suspended sentence to the attacker. In an interview, Muench said laws in Germany must be modified to answer for grave damages caused by cybercrimes. Existing laws also prevent police from investigating major cyber attacks launched by botnet operators.   Muench explained that hacking threatens economic […]

Hackers to Leak More Game of Thrones Episodes on August 6

Hackers to Leak More Game of Thrones Episodes on August 6

Variety.com received an email from HBO attackers who stated that they will gradually release stolen Game of Thrones episodes each week. The upcoming leak is scheduled today at 5pm IST, and 12pm GMT.    Employees are worried that their personal details were also hacked, but HBO CEO Richard Plepler stated they don’t believe their entire email system had breached. But Variety.com says, a security firm discovered thousands of internal files that had been stolen. Security company Kaspersky Lab commented that the incident is a new development in cybercrime, since hackers aimed to vandalize instead of monetize attacks back in the […]