by Sue Poremba When talking about the latest “worst breach ever” event, people usually use the words like “sophisticated” or “complicated.” And while there is no doubt that cybercriminals have come up with more sophisticated and complicated schemes to steal valuable information off the network (anybody’s network), they tend to rely on rather simple entry points: […]

By Paul Mah A researcher is set to demonstrate a method in which a hacker could use a specially crafted Thunderbolt device to inject a bootkit malware into the EFI ROM of any Mac computer that is equipped with a Thunderbolt port. In a nutshell, Trammell Hudson took advantage of a flaw in the Thunderbolt […]

BY BEN ZIGTERMAN ON MAR 25, 2014 AT 2:50 PM Microsoft is dropping support for Windows XP on April 8th, and with 95% of all ATMs still running XP, this could become a major problem for any banks that haven’t signed agreements to keep support running past the deadline. And today, we learned of an […]

By Chris Vallance BBC Radio 4 Researchers have revealed how cyber-thieves sliced into cash machines in order to infect them with malware earlier this year. The criminals cut the holes in order to plug in USB drives that installed their code onto the ATMs. Details of the attacks on an unnamed European bank’s cash dispensers […]

January 24, 2014 Russian anti-virus company Doctor Web is warning users about a dangerous Trojan for Android that resides in the memory of infected devices and launches itself early on in the OS loading stage, acting as a bootkit. This allows the Trojan to minimize the possibility that it will be deleted, without tampering with […]

The data was quietly moved around on Target’s network before it was sent to a US server, then to Russia By Jeremy Kirk | Published: 01:50, 17 January 2014 The stolen credit card numbers of millions of Target shoppers took an international trip — to Russia. A peek inside the malicious software that infected Target’s […]

By Darren Pauli on Nov 8, 2013 9:18 PM Filed under Networks Stuxnet had ‘badly infected’ the internal network of a Russian nuclear plant after the sophisticated malware caused chaos in Iran’s uranium facilities in Natanz. The malware, widely considered to have been developed by the US Government as a means to disrupt Iran’s uranium […]

by Wade Williamson on November 05, 2013 As part of my job, I spend a good deal of my waking hours thinking about information security and sharing my findings with IT security practitioners. What are the latest techniques we see from attackers, and what sorts of techniques or policies work best to mitigate them? And […]

Published on FierceCIO:TechWatch (http://www.fiercecio.com/techwatch) August 2, 2013 | By Paul Mah Security researchers at Black Hat demonstrated a couple of ways in which they were able to circumvent the Secure Boot feature in Windows 8 to install a boot rootkit on a Unified Extensible Firmware Interface equipped computer. The first exploit was demonstrated on an […]