The main trend in malware in February, as it was in January and had been throughout 2017, is the rise of ransomware. Detections of new families are reported on a daily basis, and variants of previously known strains are also frequently noted. The threat was significant throughout all of last year and into this, and […]
Malware: A month in review – February 2018 Read More »
2018 started with a bang when, on 3 January, Google Project Zero dropped a bomb in the shape of two papers detailing three vulnerabilities which affected “every Intel processor which implements out-of-order execution…which is effectively every processor since 1995”. The vulnerabilities were dubbed Meltdown and Spectre, and such was their importance that mainstream news outlets
Processor vulnerabilities raise the Spectre of global Meltdown Read More »
Nearly every single organisation has third-party suppliers, and with these external services comes risk. Two areas to consider with third-party risk concern brand reputation and compliance with the law. Last year we saw some major cyber incidents that demonstrated only too well that companies must think not only about their own security practices, but also
Third-party suppliers: the weakest link? Read More »
The growing popularity of Tor and other anonymising tools has provided unprecedented opportunities for paedophiles to view and share child pornography online. Before Darknet access became widespread, offenders were forced to purchase obscene materials in high-risk transactions which could expose their real-world identities. These days however, it is a very different story. Explicit images of
Hiding in Plain Sight – Child Abusers on the Darknet Read More »
Ever since the takedown of AlphaBay back in July 2017, the Darknet marketplaces have been plunged into disarray. Law enforcement agencies have been gaining momentum and successfully shutting a number of sites down, while site administrators have simultaneously been performing exit scams to profit from their fellow Darknet users. This report aims to take a
Darknet markets: no honour among thieves Read More »
Vulnerabilities are ubiquitous across nearly everyone’s network infrastructure, and managing them is a monumental task. Staying on top of these flaws is extremely important as they present a viable infection vector for threat actors. Although it is not always an option to patch certain vulnerabilities without a negative knock-on effect to other software, it is
Vulnerability situational awareness Read More »
The recent push for independence in Catalonia has highlighted the part that cyber hacktivism can play in promoting and supporting popular street activism and protest. The long-awaited referendum for Catalonia’s secession was held on 1 October 2017, despite being deemed illegal by both the Spanish government and the country’s Constitutional Court. However, even before the
Street activism meets online hacktivism in Catalonia Read More »
After the recent chaos of Darknet marketplaces being shut down by law enforcement and site admins performing exit scams, many vendors are shunning marketplaces in favour of setting up their own Darknet websites. This trend is emphasised by the growing number of web design services being offered on various markets and forums. @DAARK describe themselves
Darknet web design services on the rise Read More »
In South Dakota, reports have emerged of an oil spill: TransCanada has announced that the Keystone pipeline it owns and operates in the state has been closed down and investigations are being carried out after 210,000 gallons of oil leaked from it on 16 November. The leak occurred days before a Public Service Commission in
Keystone pipeline oil spill in South Dakota could lead to new cyber campaigns Read More »
