Malware/Cybercrime news, information, and how-to advice

st louis federal reserve bank
healthcare security hp

man binoculars watching

Advertisers need to start monitoring ad security

Law enforcement activity and improved security has forced criminals to look for easier targets, so they've zeroed in on advertising networks – and advertisers are stuck paying the bill.


New encryption flaw, LogJam, puts Web surfers at risk

The flaw is closely related to FREAK and involves downgrading TLS connections to a weak key

bug hiding face

URL-spoofing bug in Safari could enable phishing attacks

A researcher developed code that can trick Safari into showing a different URL in its address bar than the one currently loaded

egret mirror image

DDoS reflection attacks are back – and this time, it's personal

This time, instead of hitting data center servers or DNS servers, the attackers are going after personal computers on misconfigured home networks.

starbucks sign

What every CSO should be doing now about the Starbucks potential hack

Don’t lose an opportunity to create a great teachable moment.


Many ransomware victims plead with attackers

TeslaCrypt creators negotiated with victims, earned over $76,000 in two months

security tools 1

Top security tools in the fight against cybercrime

There’s no silver bullet, so load up with as many of these as you can.

adware malware banners

Malicious adware more than doubled last year

The amount of malicious adware more than doubled last year as cybercriminals adjust their strategy in the wake of better security elsewhere, according to a new malware report

american justice courtroom gavel legal system law justice flag 000000804982

Law firm says human error to blame for client breaches in 2014

The Privacy and Data Protection team at BakerHostetler, a law firm with offices across the U.S, has released a report stating that human error was responsible for the majority of the security incident cases they worked in 2014.

keyboard chinese flag china hacker

Penn State disables network after attack, says China is to blame

The Penn State College of Engineering took their network offline on Friday, after being targeted by what the school is calling two "sophisticated" cyber attacks. The university engaged FireEye to help with incident response, and...

Once, Twice, Three times a Malady

Website of celebrity English chef Jamie Oliver is compromised for a third time to host malware

chinese hacker microsoft

China-based hackers used Microsoft's TechNet for attacks

The group, nicknamed DeputyDog, takes aim at governments and companies, FireEye said

machine learning cyborg humanoid robot

Bots now outnumber humans on the web

Bot traffic has surpassed humans this year, now accounting for 59 percent of all site visits, according to a report released today

walter white

New 'Breaking Bad' ransom Trojan is no laughing matter, says Symantec

Encrypts files, demands $800 and tells users "I am the one who knocks"

wordpress dot org

Unusual Wordpress attack steals login credentials

Wordpress is a common target for criminals who redirect innocent users to malware download sites -- but a new type of malware steals user login credentials instead.

hack security malware

Visitors to top porn sites hit by malvertising attack

A malicious advertisement posted through an ad network tried contained a Flash Player exploit

ecommerce thinkstock

Criminals attempt 25 million payments and logins a month

During the last quarter of 2014 and the first quarter of 2015, 4 percent of all attempts to create new online accounts were definitely illegitimate, as were 2.3 percent of all account logins, and 3.2 percent of all payment attempts.

storage shed

Companies are falling behind on securing their SAP environments

More than 95 percent of SAP systems deployed in enterprises are exposed to vulnerabilities that could lead to a full compromise of business data, a security firm claims.

Load More