The visit to London last week by Saudi crown prince Mohammed bin Salman drew well publicised protests, with hundreds of people gathering outside Downing Street to demonstrate against UK arms sales to Saudi Arabia and Riyadh’s military actions in Yemen, where thousands of civilians have been killed. Meanwhile, hacktivists claimed cyber attacks on the Bank […]
UK-Saudi deals lead to online and offline protests Read More »
Hacking is often portrayed in the media as an elite technical activity, undertaken by highly-skilled individuals. While this is certainly the case at the most advanced levels, the availability of easy-to-use tools and scripts is increasingly lowering the barrier to entry for novice hackers. Admittedly, this is not a new phenomenon. Popular pen testing suite
Mass exploitation and DDoS attack tools emerge with powerful capabilities Read More »
The main trend in malware in February, as it was in January and had been throughout 2017, is the rise of ransomware. Detections of new families are reported on a daily basis, and variants of previously known strains are also frequently noted. The threat was significant throughout all of last year and into this, and
Malware: A month in review – February 2018 Read More »
2018 started with a bang when, on 3 January, Google Project Zero dropped a bomb in the shape of two papers detailing three vulnerabilities which affected “every Intel processor which implements out-of-order execution…which is effectively every processor since 1995”. The vulnerabilities were dubbed Meltdown and Spectre, and such was their importance that mainstream news outlets
Processor vulnerabilities raise the Spectre of global Meltdown Read More »
Nearly every single organisation has third-party suppliers, and with these external services comes risk. Two areas to consider with third-party risk concern brand reputation and compliance with the law. Last year we saw some major cyber incidents that demonstrated only too well that companies must think not only about their own security practices, but also
Third-party suppliers: the weakest link? Read More »
The growing popularity of Tor and other anonymising tools has provided unprecedented opportunities for paedophiles to view and share child pornography online. Before Darknet access became widespread, offenders were forced to purchase obscene materials in high-risk transactions which could expose their real-world identities. These days however, it is a very different story. Explicit images of
Hiding in Plain Sight – Child Abusers on the Darknet Read More »
Ever since the takedown of AlphaBay back in July 2017, the Darknet marketplaces have been plunged into disarray. Law enforcement agencies have been gaining momentum and successfully shutting a number of sites down, while site administrators have simultaneously been performing exit scams to profit from their fellow Darknet users. This report aims to take a
Darknet markets: no honour among thieves Read More »
Vulnerabilities are ubiquitous across nearly everyone’s network infrastructure, and managing them is a monumental task. Staying on top of these flaws is extremely important as they present a viable infection vector for threat actors. Although it is not always an option to patch certain vulnerabilities without a negative knock-on effect to other software, it is
Vulnerability situational awareness Read More »
The recent push for independence in Catalonia has highlighted the part that cyber hacktivism can play in promoting and supporting popular street activism and protest. The long-awaited referendum for Catalonia’s secession was held on 1 October 2017, despite being deemed illegal by both the Spanish government and the country’s Constitutional Court. However, even before the
Street activism meets online hacktivism in Catalonia Read More »
