Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days.
Below you’ll find a quick recap of topics followed by links to news articles and/or our blog posts providing additional insight. Be sure to check back each Friday for highlights of the goings-on each week!
A malicious email campaign against Russian-speaking enterprises is employing a combination of exploits and Windows components to deliver a new backdoor that allows attackers to take over the affected system.
People are increasingly taking to online dating to find relationships. However, the kind (and amount) of information divulged—about the users themselves, the places they work, visit or live—are useful to attackers who leverage this information to gain a foothold into your organization.
As chat technologies continue to attract enterprise and consumer use alike, they also garner the attention of malicious actors. Trend Micro researchers turned their attention to popular chat solutions to find out how these could be leveraged by hackers.
Earlier this year, Marcus Hutchins was dubbed a hero for finding the WannaCry ransomware kill switch. However, Hutchins was arrested Aug. 2 for allegedly creating the banking trojan Kronos. He was released on bail on Monday and will face a six-count federal indictment; it alleges he created and sold Kronos.
First reported on in 2016, OnionDog has been known as an attack against South Korean infrastructure. Trend Micro’s latest research shows that it was, in fact, a cyber-drill instead of an active attack. Based on samples they determined that this drill used live malware to test susceptibility of a targeted attack.
According to recent statistics, there were more than 2 billion active Android users across the globe in May 2017, and many of these endpoints are leveraged by users for work purposes. In this type of landscape, it’s imperative that all Android users remain in the know about newly discovered threats.
British government proposes penalties as ‘last resort’ for those failing to adequately assess cyber risks and prevent damage. Organizations could face fines of up to four percent of global turnover, if they fail to take measures to prevent cyber-attacks that could result in major disruption to public services.
Sony is teaming up with IBM to use blockchain to create a secure academic platform for storing records. The Japanese firm wants to use its platform as a way for schools to store educational information, such as degrees, diplomas, tests and more, as a kind of ‘digital transcript.
Due to increased awareness of cyber vulnerabilities associated with DJI products, the U.S. Army will immediately stop using drones made by the world’s largest manufacturer, DJI of China, and has ordered that batteries and storage media be removed and applications uninstalled.
A report from Cisco stated that there were over one million unfilled cybersecurity positions globally in 2016. Enterprises need information security talent. However, the scale and urgency of the issues exceeds the response time of conventional market mechanisms.
Founded 14 years ago, the world’s biggest student-run cyber security event will get even bigger this year: Cyber Security Awareness Week (CSAW) announced it will expand to Israel, which will become the fifth country to host the final rounds of competitions that test the skills of future cyber sleuths and protectors.
Please add your thoughts in the comments below or follow me on Twitter; @JonLClay.