Petya ransomware is now double the trouble

The Petya ransomware now bundles a second file-encrypting program for cases where it cannot replace a computer's master boot record to encrypt its file table.Petya is an unusual ransomware threat that first popped up on security researchers' radar in March. Instead of encrypting a user's files directly, it encrypts the master file table (MFT) used by NTFS disk partitions to hold information about file names, sizes and location on the physical disk.Before encrypting the MFT, Petya replaces the computer's master boot record (MBR), which contains code that initiates the operating system's bootloader. Petya replaces it with its own malicious code that displays the ransom note and leaves computers unable to boot.To read this article in full or to leave a comment, please click here

Malware attacks on two banks have links with 2014 Sony Pictures hack

Bangladesh Bank, a commercial bank in Vietnam and ... Sony Pictures are the unlikely bedfellows in a tale of cyber intrigue uncovered by security researchers at BAE Systems.Researchers Sergei Shevchenko and Adrian Nish have found some links between malware involved in the 2014 attack on Sony Pictures and attacks on two banks involving the theft of credentials for the SWIFT financial transfer network.The U.S. Federal Bureau of Investigation said North Korea was to blame for the Sony attack (although security experts are divided on the matter).To read this article in full or to leave a comment, please click here

Worth Reading: Breaches at eMail Providers

Hundreds of millions of hacked user names and passwords for email accounts and other websites are being traded in Russia’s criminal underworld, a security expert told Reuters. The discovery of 272.3 million stolen accounts included a majority of users of Mail.ru (MAILRq.L), Russia’s most popular email service, and smaller fractions of Google (GOOGL.O), Yahoo (YHOO.O) and Microsoft (MSFT.O) email users, said Alex Holden, founder and chief information security officer of Hold Security. -via Reuters

LinkedInTwitterGoogle+FacebookPinterest

The post Worth Reading: Breaches at eMail Providers appeared first on 'net work.

Terrorists opt for consumer tools

Although cybercriminals have been turning out specialized hacking and attack tools at a rapid pace, terrorists are often using legitimate, consumer-focused technologies, according to a new Trend Micro report."They're abusing legitimate technology for their own gain," said Ed Cabrera, vice president of cybersecurity strategy at Trend Micro.Sometimes, the vendors involved shut down accounts that are being used by terrorists, he said."As accounts become not usable, they pivot to other applications," he said.To read this article in full or to leave a comment, please click here

Terrorists opt for consumer tools

Although cybercriminals have been turning out specialized hacking and attack tools at a rapid pace, terrorists are often using legitimate, consumer-focused technologies, according to a new Trend Micro report."They're abusing legitimate technology for their own gain," said Ed Cabrera, vice president of cybersecurity strategy at Trend Micro.Sometimes, the vendors involved shut down accounts that are being used by terrorists, he said."As accounts become not usable, they pivot to other applications," he said.To read this article in full or to leave a comment, please click here

Going agile requires a culture shift

“When it comes to agile development ... it is less about technology. It is more about mindset, more about culture, more about people and their passion,” says Sudhakar Gorti, CIO at Environmental Data Resources.To read this article in full or to leave a comment, please click here(Insider Story)

Using HTTP/2 Server Push with PHP

Two weeks ago CloudFlare announced that it was supporting HTTP/2 Server Push for all our customers. By simply adding a Link header to an HTTP response specifying preload CloudFlare would automatically push items to web browsers that support Server Push.

To illustrate how easy this is I create a small PHP page that uses the PHP header function to insert appropriate Link headers to push images to the web browser via CloudFlare. The web page looks like this when loaded:

There are two images loaded from the same server both of which are pushed if the web browser supports Server Push. This is achieved by inserting two Link headers in the HTTP response. The response looks like:

HTTP/1.1 200 OK
Server: nginx/1.9.15
Date: Fri, 13 May 2016 10:52:13 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Link: </images/drucken.jpg>; rel=preload; as=image
Link: </images/empire.jpg>; rel=preload; as=image

At the bottom are the two Link headers corresponding to the two images on the page with the rel=preload directive as specified in W3C preload draft.

The complete code can be found in this gist but the core of the code looks like this: 

    <?php
    function pushImage($uri) {
        header("Link: <{$uri}>; rel=preload;  Continue reading

Next-generation Endpoint Security Market Bifurcation

My colleagues Doug Cahill, Kyle Prigmore, and I just completed a research project on next-generation endpoint security.  Just what the heck is next-generation endpoint security?  Cybersecurity professionals remain pretty confused around the answer to this question.  For the purposes of its research project, ESG defined next-generation endpoint security as (note: I am an ESG employee):Endpoint security software controls designed to prevent, detect, and respond to previously unseen exploits and malware.As part of this project, ESG interviewed dozens of organizations that were either supplementing or replacing traditional antivirus software on PCs of all kinds.  I’ve written a few blogs about why these organizations were moving beyond AV alone, how they selected new endpoint security products, and some details about their testing and deployment methodologies.  Aside from this technology overview however, I did come away with some strong theories about the next-generation endpoint security market in general. To read this article in full or to leave a comment, please click here

Next-generation Endpoint Security Market Bifurcation

My colleagues Doug Cahill, Kyle Prigmore, and I just completed a research project on next-generation endpoint security.  Just what the heck is next-generation endpoint security?  Cybersecurity professionals remain pretty confused around the answer to this question.  For the purposes of its research project, ESG defined next-generation endpoint security as (note: I am an ESG employee):Endpoint security software controls designed to prevent, detect, and respond to previously unseen exploits and malware.As part of this project, ESG interviewed dozens of organizations that were either supplementing or replacing traditional antivirus software on PCs of all kinds.  I’ve written a few blogs about why these organizations were moving beyond AV alone, how they selected new endpoint security products, and some details about their testing and deployment methodologies.  Aside from this technology overview however, I did come away with some strong theories about the next-generation endpoint security market in general. To read this article in full or to leave a comment, please click here

IDG Contributor Network: Low-income neighborhoods have worse cell phone service, study finds

Poor neighborhoods in the U.S. get 15 percent less cell phone coverage than their richer counterparts, a new study has found.

This confirms the “existence of a mobile-divide in the U.S.,” say the researchers from Imperial College Business School in an abstract of their paper published in Telecommunications Policy via ScienceDirect.

“Operators install two fewer mobile antennas per tract in lower income areas for equal distributions of subscribers,” the London business school says. That’s across the board, and it includes both urban and rural areas. So, it isn’t just a rural-divide issue, the researchers say.

To read this article in full or to leave a comment, please click here

IDG Contributor Network: Low-income neighborhoods have worse cell phone service, study finds

Poor neighborhoods in the U.S. get 15 percent less cell phone coverage than their richer counterparts, a new study has found.This confirms the “existence of a mobile-divide in the U.S.,” say the researchers from Imperial College Business School in an abstract of their paper published in Telecommunications Policy via ScienceDirect.“Operators install two fewer mobile antennas per tract in lower income areas for equal distributions of subscribers,” the London business school says. That’s across the board, and it includes both urban and rural areas. So, it isn’t just a rural-divide issue, the researchers say.To read this article in full or to leave a comment, please click here

How Important Is Network Hardware?

In this episode of Network Matters with Ethan Banks, learn about the pros and cons of specialized network hardware. Ethan explains when and where custom hardware makes sense, when commoditized hardware fills the bill, and the role software plays.

Flash Player update fixes zero-day vulnerability and 24 other critical flaws

Adobe Systems has released a security update for Flash Player in order to fix a publicly known vulnerability, as well as 24 privately reported security flaws.The company issued a warning about the zero-day -- previously unknown and unpatched -- vulnerability on Tuesday, saying that it is aware of an exploit available in the wild. The flaw, tracked as CVE-2016-4117, was reported by security researchers from FireEye.To read this article in full or to leave a comment, please click here

1 2,893 2,894 2,895 2,896 2,897 3,767