Security Alerts & News
by Tymoteusz A. Góral

History
#1934 EyePyramid and a lesson on the perils of attribution
In the past weeks, information-stealing malware EyePyramid made headlines after it was used to steal 87GB of sensitive data from government offices, private companies and public organizations. More than 100 email domains and 18,000 email accounts were targeted, including those of high-profile victims in Italy, the U.S., Japan and Europe.

The natural assumption for many would be that EyePyramid was a state-sponsored cyberespionage campaign. It wasn’t. It was ultimately attributed to a brother-sister team who used the malware for profit.
Read more
#1945 HTTPS adoption has reached the tipping point
#1944 Google Chrome engineer says Windows Defender “the only well behaved AV”
#1943 Misconfigured firewall blamed for hospital ransomware infection
#1942 How to succeed in online investigations and digital forensics
#1941 Apple takes down iCloud activation lock page after disclosure of security flaw
#1940 Microsoft: Windows 10 will stop a ransomware epidemic when antivirus fails
#1939 Securing your home routers - understanding attacks and defense strategies (PDF)
#1938 Witcher 3 dev forums hacked, 1.8 million accounts stolen
#1937 Security flaws in Pentagon systems "easily" exploited by hackers
#1936 Cisco updates Tetration analytics platform, aims to automate security policies
#1935 GitLab.com melts down after wrong directory deleted, backups fail
#1934 EyePyramid and a lesson on the perils of attribution
#1933 Ransomware disrupts Washington DC's CCTV system
#1932 Many Android VPN apps breaking privacy promises
#1931 Netgear exploit found in 31 models lets hackers turn your router into a botnet
#1930 Nicolas Brulez on malware reverse engineering tips and tricks (audio)
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12