Pen #testers #break down #bank security #flaws

While banks have built effective barriers for external attacks, researchers warn they have not done nearly as much work to fight threats on their internal networks. Earlier this month, a third-party software vulnerability resulted in a Mexican bank heist that scored at least $15.4 million. In early 2017 there was…


read more

The #hidden #security #risks #threatening your #business

Your business IT systems may be protected by passwords and firewalls, but common security blind spots could be leaving sensitive customer information vulnerable to attacks from cyber criminals. Since Australia’s Notifiable Data Breaches (NDB) scheme came into effect earlier this year, 63 businesses have reported data breaches. This is a…


read more

Security #warning: Your #suppliers are #now your #weakest #link

Cybersecurity agency warns of 796 attacks against business, says that hackers will attempt to reach their targets through their suppliers. Hackers targeting business supply chains and the proliferation of destructive worms are two of the biggest cyber-threats that organisations should prepare to face in the coming year, security experts have…


read more

New #macOS #Backdoor #Linked to #Cyber-espionage #Group

A recently discovered macOS backdoor is believed to be a new version of malware previously associated with the OceanLotus cyber-espionage group, Trend Micro says. Also known as APT 32, APT-C-00, SeaLotus, and Cobalt Kitty, OceanLotus is believed to be operating out of Vietnam and has been targeting high-profile corporate and…


read more

Microsoft #patches Malware #Protection Engine to #protect against #devastating memory #corruption #attack

Microsoft warned that the vulnerability could allow attackers to execute arbitrary code and take control of a system. Microsoft has released an update to its Microsoft Malware Protection Engine (MMPE) to guard against a remote execution attack that could cause memory corruption and hand full system control over to a…


read more

Google #killing Chrome #extensions for #mining #cryptocurrency

Citing the need to protect users from cryptojacking, Google has announced the end of Chrome extensions that mine cryptocurrency. Cryptojacking, the act of secretly using a computer’s CPU to mine cryptocurrency like Bitcoin or Monero without the user’s knowledge or consent, has been on the rise due to the popularity…


read more

Cyberattack #knocks #Energy #Services Group #offline

A cyberattack against Energy Services Group (ESG), which handles customer transactions for natural gas pipelines owned by several energy firms, has knocked the company’s systems offline. ESG, which provides business process solutions for firms such as Energy Transfer Partners, has not released any details regarding the attack, but the company…


read more

Companies #sacrifice #security for #mobile #convenience, survey #finds

Ninety-three percent of organizations recognize that mobile devices present a serious and growing security threat, yet many organizations are failing to take even the most basic precautions, according to a recent report by Verizon. Almost a third of respondents even admitted to having sacrificed mobile security to improve expediency and/or…


read more

A #whole new #ball game: #Sports world #adapts to #growing #cybersecurity #threats

Imagine the fallout if the NHL was hacked and its star players — think Sidney Crosby, Auston Matthews and Connor McDavid — had their home addresses, phone numbers and other personal information made accessible online. It’s an all-too-familiar scenario for Canadian lacrosse player Kevin Crowley, who was among the victims…


read more