Half of breached firms say they were compromised due to a vulnerability for which a patch was available but not applied. Almost half (45 percent) of financial services firms in a recent survey have reported a data breach in the last two years – with many of those attacks being completely avoidable if known vulnerabilities […]
A massive proxy botnet is just the tip of the iceberg, a warning sign of a bigger operation in the works by the Ramnit operators. The recently uncovered “Black” botnet campaign using the Ramnit malware racked up 100,000 infections in the two months through July– but the offensive could just be a precursor to a […]
Production lines were halted for two days, and the effects to the global supply chain for mobile phones could be felt for the third quarter and beyond. A top iPhone supplier, Taiwan Semiconductor Manufacturing Co. (TSMC), has recovered from a WannaCry ransomware infection that impacted the majority of its fabrication tools. The incident could delay […]
The vast majority of IT decision makers appear to believe the hype surrounding artificial intelligence as a means to enhance cybersecurity. An ESET poll of 900 IT leaders in the US, UK and Germany found a disappointing 75% believe AI is a ‘silver bullet’ to helping them counter online threats. Respondents from the US (82%) were much […]
The FCC’s attempt to maintain that its comments page crashed last May as a result of a co-ordinated DDoS attack was actually built on falsehoods, it has admitted. The regulator was forced to make the admission ahead of an inspector general report into the case due to be released shortly. The comments section crashed after millions […]
US military personnel will have to switch off any devices using GPS functionality if they are deployed in “operational areas” after a new Pentagon memo. Spokesman Army Col. Robert Manning III told reporters yesterday that GPS use can “potentially create unintended security consequences and increased risk to the joint force and mission” in locations around […]
A critical subset of the ever-expanding internet of things (IoT), medical devices are increasingly vulnerable to attacks from botnets and malware, which is why the Cloud Security Alliance (CSA), in conjunction with the Open Web Application Security Project (OWASP), today announced the release of OWASP Secure Medical Device Deployment Standard V2. Recognizing the increasing number of attacks that are targeting […]
Taiwanese semiconductor firm TSMC has revealed that a malware outbreak which affected its IT systems last week could result in a 3% hit to revenue. The iPhone chipmaker said in an update on Sunday that the virus “affected a number of computer systems and fab tools” on Friday evening local time, but that it was believed there […]
The US Department of Homeland Security (DHS) has flagged a new report highlighting an increase in attacks on critical ERP apps by state-sponsored hackers, cyber-criminals and hacktivists. The joint research by Digital Shadows and Onapsis revealed that hackers are increasingly targeting known vulnerabilities to steal highly sensitive data or disrupt business processes — exploiting known vulnerabilities, supply chain gaps and misconfiguration errors. […]
Chinese shipping giant COSCO is said to have suffered a major ransomware-related outage affecting its Americas operations, although so far seems to be trying to minimize the potential news fall-out. Reports from the trade press citing internal emails suggest the firm has been hit by ransomware in the US and is asking staff not to open suspicious emails. However, […]
