Stories by John E Dunn

Spam industry reinvented as messages containing malicious links surge

By John E Dunn | 20 August, 2014 23:38

Spam might no longer be the gigantic overhead it once was but the number of unsolicited messages containing malicious links appears to be surging, according to figures from SaaS security firm ProofPoint.

Data breaches compromise seven million UK credit and debit cards since 2011, says Worldpay

By John E Dunn | 19 August, 2014 23:00

Data breaches have compromised nearly seven million UK credit and debit cards over the last three years, with breached businesses each paying out almost a million in forensic and remediation costs, payments processor Worldpay has calculated.

Former employees have become 'application menace' new study claims

By John E Dunn | 19 August, 2014 17:06

Many SME employees retain alarming levels of access to critical business applications after they've stopped working for a company, a survey for cloud services firm Intermedia has claimed.

Massive 300Gbps DDoS attack on media firm fuelled by unpatched server flaw

By John E Dunn | 18 August, 2014 02:51

Hacktivists summoned up a massive and previously undocumented 300Gbps DDoS attack earlier this summer by exploiting an obscure motherboard-level flaw on 100,000 unpatched servers, VeriSign has revealed in its latest quarterly Trends report.

Ancient Stuxnet flaw still being used to attack millions of Windows XP PCs

By John E Dunn | 15 August, 2014 19:01

A software vulnerability exploited by cyberweapons including Stuxnet and Flame is still being used to attack millions of users around the world four years after it was patched, a Kaspersky analysis has suggested.

Kovter blackmail Trojan hunts for victims as CryptoLocker fades

By John E Dunn | 14 August, 2014 23:48

Infections caused by the innovative Kovter police blackmail Trojan continued to surge between May and June, security firm Damballa has reported. Could old-style police ransom attacks, once seen as past it, be on their way back with a vengeance?

Android Trojan passes off crafty RAT as ESET security software

By John E Dunn | 13 August, 2014 23:17

Security firm ESET has discovered a crafty Android ‘backdoor' remote access Trojan (RAT) passing itself off as a variety of apps, including the firm's own Mobile Security software.

Chromebooks sales predicted to hit 14.2 million by 2017. Will this wake Nadella up?

By John E Dunn | 12 August, 2014 23:19

Global sales of Google's Chromebooks will rise 79 percent this year reach 5.2 million units and will reach to 14.2 million by 2017, Gartner has said. Not bad for a computer platform that still isn't sold in many countries.

Magnitude exploit kit changes tack to make money from CryptoWall ransomware

By John E Dunn | 12 August, 2014 23:19

The Russian Magnitude malware exploit kit has moved on to the territory vacated by the defunct Blackhole Exploit Kit after successfully developing a new and highly profitable business model, according to security firm Trustwave.

London is laptop, smartphone and tablet theft capital of UK, police figures confirm

By John E Dunn | 12 August, 2014 23:18

Four out of ten electronic devices reported stolen in the UK last year belonged to people living or working in London, a Freedom of Information analysis by security firm ViaSat UK has found.

Gemalto pounces on SafeNet for cloud encryption and authentication

By John E Dunn | 10 August, 2014 02:32 | 1 Comment

European smartcard security vendor Gemalto has announced a deal to buy US cloud and encryption management vendor SafeNet for $890 million (£530 million).

Yahoo ad system used to push CryptoWall ransom 'malvertising'

By John E Dunn | 08 August, 2014 22:44

The world has come to fear the effects of ransom malware but how does it get near the PCs of its victims in the first place?

CryptoLocker victims offered free decryption tool to get back scrambled files

By John E Dunn | 07 August, 2014 04:17

At last, hope for victims of the CryptoLocker ransom Trojan who believed they would never see their scrambled files again: security firms FireEye and Fox-IT have set up a free website that can be used to retrieve encryption keys for individual files.

Verdasys renames itself in honour of endpoint security product Digital Guardian

By John E Dunn | 06 August, 2014 18:32

Endpoint security firm Verdasys has renamed and re-launched itself as Digital Guardian in honour of its flagship software product, the company has announced.

Synology users told to update DiskStation NAS drives after 'SynoLocker' ransom attack

By John E Dunn | 06 August, 2014 18:30

Users of Synology's market-leading DiskStation NAS drives are being urged to update their drive's management software immediately after what appears to be an unprecedented targeted attack by CryptoLocker-like ransom malware.

CSO Corporate Partners
  • f5
  • Webroot
  • Trend Micro
  • NetIQ
rhs_login_lockGet exclusive access to CSO, invitation only events, reports & analysis.
CSO Directory

Audit Management Solutions

Manage the complete audit lifecycle from audit universe identification and risk assessment to management/board reporting and quality assurance.

Security Awareness Tip
Security ABC Guides

Warning: Tips for secure mobile holiday shopping

I’m dating myself, but I remember when holiday shopping involved pouring through ads in the Sunday paper, placing actual phone calls from tethered land lines to research product stock and availability, and actually driving places to pick things up. Now, holiday shoppers can do all of that from a smartphone or tablet in a few seconds, but there are some security pitfalls to be aware of.