French Nationals Arrested for 'Rex Mundi' Hacks

Europol announced this week that several French nationals were arrested in the past year on suspicion of being involved with Rex Mundi, a group that hacked into the systems of...
Continue reading
0 Comments

Microsoft Patches Code Execution Vulnerability in wimgapi Library

Microsoft this week patched a remote code execution vulnerability affecting the wimgapi library, which is used to perform operations on Windows Imaging Format (WIM) files. Addressed as part of Microsoft’s...
Continue reading
0 Comments

Facebook Claims 99% of Extremist Content Removed Without Users' Help

Facebook claims growing success in fight against extremist content
At this week's International Homeland Security Forum (IHSF) hosted in Jerusalem by Israel’s minister of public security, Gilad Erdan, Facebook claimed growing success in its battle to remove extremist content...
Continue reading
0 Comments

Critical Flaws Patched in Schneider Building Automation Software

Schneider Electric recently patched four vulnerabilities in its U.motion Builder software, including two critical command execution flaws. Advisories have been published by both the vendor and ICS-CERT. Schneider Electric’s U.motion...
Continue reading
0 Comments

Siemens Patches Vulnerabilities in SCALANCE, Other Devices

SCALANCE X switch vulnerability
Siemens this week published five new security advisories describing several vulnerabilities discovered in its switches, routers, building automation products, and medical devices. One of the advisories covers a high severity...
Continue reading
0 Comments

GnuPG Vulnerability Allows Spoofing of Message Signatures

GnuPG recently addressed an input sanitization vulnerability where a remote attacker could spoof arbitrary signatures. Part of the GNU Project and also known as GPG, GnuPG is a complete and...
Continue reading
0 Comments

Cortana Flaw Allows for Code Execution from Lock Screen

Cortana attack leaks passwords
One of the vulnerabilities Microsoft addressed with the June 2018 security patches was a flaw in Cortana that could allow an attacker to elevate privileges and execute code from the...
Continue reading
0 Comments

Meltdown-Like 'LazyFP' Vulnerability Impacts Intel CPUs

LazyFP vulnerability found in Intel processors
Intel and software vendors have started informing users about a new vulnerability involving side channel speculative execution that could be exploited by malicious actors to obtain sensitive information from the...
Continue reading
0 Comments

New LokiBot-Linked Android Trojan Emerges

A newly discovered banking Trojan targeting Android 7 and 8 versions is using the same command and control (C&C) server as LokiBot, Threat Fabric (formerly known as SfyLabs) reports. Dubbed...
Continue reading
0 Comments

Preventing an Inside Job: Detection, Technology and People

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing bankinfosecurity.com, you agree to our use...
Continue reading
0 Comments

PageUp Breach: Personal Data Exposed

PageUp Breach: Personal Data Exposed
image
Breach Notification , Breach Response , Data Breach HR Software Provider Says Names, Addresses, Emails and Phone Numbers Exposed( jeremy_kirk ) • June 12, 2018    Karen Cariss, PageUp CEO...
Continue reading
0 Comments

Cryptocurrency Theft: $1.1 Billion Stolen in Last 6 Months

Cryptocurrency Theft: $1.1 Billion Stolen in Last 6 Months
image
Cybercrime , Cybercrime as-a-service , Fraud Management & Cybercrime Exchanges Remain Prime Target; Easily Available Hacking Tools Aid Attackers( euroinfosec ) • June 12, 2018     Evidence continues to...
Continue reading
0 Comments

Banco de Chile Loses $10 Million in SWIFT-Related Attack

Banco de Chile Loses $10 Million in SWIFT-Related Attack
image
image
Anti-Malware , Fraud , Payments Fraud First, Attackers Distracted Bank, Using Buhtrap Malware to Cause Mayhem( jeremy_kirk ) • June 13, 2018    Photo: Wikimedia Commons A common hacker tactic...
Continue reading
0 Comments

Dixons Carphone Breach: 5.9 Million Payment Cards Exposed

Dixons Carphone Breach: 5.9 Million Payment Cards Exposed
image
Breach Notification , Data Breach , Data Loss 1.2 Million Nonfinancial Records Also at Risk, Electronics Giant Warns( euroinfosec ) • June 13, 2018    Dixons Carphone, based in London,...
Continue reading
0 Comments

European Parliament Votes to Ban Kaspersky Products

Reaction to EU vote to ban Kaspersky products
Kaspersky Suspends Collaboration With Europol and NoMoreRansom  Kaspersky Lab has suspended its collaboration with Europol and the NoMoreRansom initiative after the European Parliament passed a resolution that describes the company’s software as...
Continue reading
0 Comments

World Cup: US Spy Warns Russians Will Hack Phones, Computers

A top US intelligence official warned football fans traveling to Russia for the World Cup that their phones and computers could be hacked by Moscow's cyber spies. William Evanina, Director...
Continue reading
0 Comments

Apple Steps Up Encryption to Thwart Police Cracking of iPhones

Apple said Wednesday it was strengthening encryption on its iPhones to thwart police efforts to unlock handsets without legitimate authorization. The move by Apple, the latest in an ongoing clash...
Continue reading
0 Comments

5.9 Million Card Details Accessed in Dixons Carphone Hack

Dixons Carphone, a household name in the UK, announced ( PDF ) today that it is investigating "unauthorised access to certain data held by the company." It describes this access...
Continue reading
0 Comments

Exploit Kits Target Recent Flash, Internet Explorer Zero-Days

Exploit kits (EKs) might not be as dominant as they were several years ago, but they continue to exist and most of them already adopted exploits for recently discovered Flash...
Continue reading
0 Comments

Chinese Cyberspies Target National Data Center in Asia

Chinese hackers attack national data center in Central Asia
A China-linked cyber espionage group has targeted a national data center in Central Asia and experts believe the goal is to conduct watering hole attacks on the country’s government websites....
Continue reading
0 Comments