Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days.
Below you’ll find a quick recap of topics followed by links to news articles and/or our blog posts providing additional insight. Be sure to check back each Friday for highlights of the goings-on each week!
The attackers behind the ongoing Pawn Storm campaign have just added an Adobe Flash Zero Day attack to their arsenal. Our researchers have just uncovered evidence that Pawn Storm attackers have found and are actively exploiting a new, unpatched vulnerability affecting Adobe Flash.
This week we released our first Japanese Cybercriminal Underground research paper. The underground market is both immature and fairly isolated from broader trends, with Japanese cybercriminals gathering in exclusive forums. The only interaction they have with foreign parties is buying malware and attack kits that they are unable to develop themselves.
Russian computer attacks have become more brazen and more destructive as the country grows increasingly at odds with the U.S. and European nations over military goals first in Ukraine and now Syria. A number of attacks now being attributed to Russian hackers have riveted intelligence officials as relations with Russia have deteriorated.
Multiple command-and-control (C&C) servers used by the DRIDEX botnet have been taken down by the Federal Bureau of Investigation (FBI), following the action taken by the National Crime Agency (NCA) in the UK. U.S. law enforcement officials obtained court orders that resulted in the seizure of multiple servers used by DRIDEX.
Microsoft has issued a “critical” patch for every supported version of Windows. The software giant said in its monthly security bulletin as part of its so-called Patch Tuesday that Windows Vista and later, including Windows 10, require patching from a serious remote code execution flaw in Internet Explorer.
The U.S. navy is reinstating classes on celestial navigation for all new recruits, teaching the use of sextants because of rising concerns that computers used to chart courses could be hacked or malfunction. Recruits to the academy in Annapolis, Maryland, have seen study of the stars return to their curriculum for the first time since it was dropped in 2006.
Lawmaker warns that lack of cybersecurity standards in government and private sector is “of great concern.” New regulations could rattle the tech industry.
Please add your thoughts in the comments below or follow me on Twitter; @ChristopherBudd