REvil Ransomware Gang Spill Details on US Attacks

Cybercriminals behind the JBS Foods ransomware attack claim they had no intent to target United States-based firms. The group, identified as the Sodinokibi REvil ransomware gang, also said it was not afraid of being labeled a cyber-terrorist group. A spokesperson for REvil shared its positions in...

What Happened to Cyber 9/11?

A recent article in the Atlantic asks why we haven't seen a"cyber 9/11" in the past fifteen or so years. I, too, remember the increasingly frantic and fearful warnings of a "cyber Peal Harbor," "cyber Katrina" -- when that was a thing -- or "cyber 9/11." I made fun of those warnings back then. Th...

A week in security (November 5 – 11)

Last week on Malwarebytes Labs, we looked at browser lockers that fly under the radar with complete obfuscation, transport and logistics in our series about compromising vital infrastructure, Google logins now requiring JavaScript, how to create a sticky cybersecurity training program, and an...

Russia asks Apple to remove Telegram Messenger from the App Store

Russia's communications regulator Roskomnadzor has threatened Apple to face the consequences if the company does not remove secure messaging app Telegram from its App Store. Back in April, the Russian government banned Telegram in the country for the company's refusal to hand over private...

Russia Threatens to Ban Telegram Messaging App, Says It Was Used By Terrorists

Russia has threatened to ban Telegram end-to-end encrypted messaging app, after Pavel Durov, its founder, refused to sign up to the country's new data protection laws. Russian intelligence service, the FSB, said on Monday that the terrorists that killed 15 people in Saint Petersburg in April had...

A week in security (Jun 05 – Jun 11)

Last week, we interviewed our very own Pieter Arntz to get to know him a little better. We also touched on the importance of HTTPS and focused on a new social engineering scheme that triggers on mouse movement. We also took a deeper look at LatentBot, a Trojan that is being distributed by the RIG...

7 Things That Happened After WikiLeaks Dumped The CIA Hacking Files

This week WikiLeaks published "Vault 7" — a roughly 8,761 documents and files claiming to detail surveillance tools and tactics of the Central Intelligence Agency CIA. The leak outlined a broad range of flaws in smartphones and other devices that the agency uses to intercept communications and sp...

NSA’s Top-Secret SKYNET May Be Killing Thousands of Innocent Civilians

So what do you expect from an Artificially intelligent program run by the government intelligence agency? Possibly killing innocent people. The real-life SKYNET, the fictional malevolent artificial intelligence in the Terminator movies, run by the US National Security Agency NSA is a surveillance...

Paris Attacks — NO! We Can't Blame Edward Snowden and Encryption for Terror Attacks

Terrorist groups are increasingly using high-grade, advanced end-to-end encryption technologies so that no law enforcement can catch them. The deadliest terror attacks in Paris that killed 129 people were the latest example of it. How did the Terrorists Communicate and Organize the Plot? The Pari...

Nodes Studio CMS XSS / Path Disclosure / SQL Injection

Hello list! There are SQL Injection, Cross-Site Scripting and Full Path Disclosure vulnerabilities in Nodes Studio CMS. This is Russian commercial CMS, which I found at one site of Russian terrorists and propagandists. ------------------------- Affected vendors: ------------------------- Nodes...

5 Biggest Hosting Companies hacked by Syrian Electronic Army

Once again, Syrian Electronic Army SEA has gain media attention by compromising a number of popular web hosting brands of one of the leading web-hosting companies Endurance International Group INC that manages over 60 different hosting brands. SEA, a pro-hacker group supposed to be aligned with...

NSA Metadata Program Likely Not Cost-Effective, Researchers Say

While much of the coverage of the surveillance programs revealed by Edward Snowden have focused on the legality and constitutionality of the collection of metadata and Internet traffic in the name of counter-terrorism and national security, the question of whether these programs are actually cost...

The Ponemon Institute 2013 Cost of Cyber Crime Study is out

Before anyone else conjures up the image of Steve Martin in the Jerk running down the street with the new phone book and declaring the obvious to all around him, lets put this study in perspective. There is nothing new or unexpected in the 2013 study. We have had it confirmed that cybercrime is...

Data Sharing, Cooperation Key to Critical Infrastructure Security

WASHINGTON–The topic of critical infrastructure security may be the prettiest girl at the dance right now for both politicians and technology companies, but the problem of attackers going after these targets is one that security people have been dealing with for some time. But that doesn’t mean...

Mark Russinovich on His Novel Zero Day and Coordinated Cyber Attacks

Dennis Fisher talks with Mark Russinovich of Microsoft about his novel Zero Day, the idea of a coordinated cyber attack by terrorists and the difficulty of writing a technical novel for a mainstream audience. Podcast audio courtesy of sykboy65 Subscribe to the Digital Underground podcast on Image...

Operation Cupcake : MI6 hacks al-Qaeda website !

As part of its cyber-warfare operations, British spy agency MI6 has hacked into an al-Qaeda online magazine and replaced ''bomb-making '' instructions with a recipe for cupcakes, a media report said. The operation was launched by MI6 in an attempt to disrupt efforts by al-Qaeda in the Arabian...

Operation Cupcake : MI6 hacks al-Qaeda website !

As part of its cyber-warfare operations, British spy agency MI6 has hacked into an al-Qaeda online magazine and replaced ''bomb-making'' instructions with a recipe for cupcakes, a media report said. The operation was launched by MI6 in an attempt to disrupt efforts by al-Qaeda in the Arabian...

Nokia under scanner of Indian Intelligence Agency for its Push Email service and SMS !

Department of Telecommunication DOT has been asked by The Intelligence Bureau IB0 to stop the messaging services of Nokia in India until they can be monitored. Once again security concerns have clouded Intelligence department's mind and the incident is not first of its kind. Earlier too similar...