The U.S. government may be thwarting thousands of daily attempts to penetrate its IT systems, but the number of successful attacks clearly is increasing, giving the appearance that the bad guys are winning at least a few battles, if not the war. Making matters worse, the security safeguards breached are roughly the same as those used by most U.S. businesses, noted Core Security's Eric Cowperthwaite.
latest insights
seculert blog
Hackers Humiliate U.S. State Department
The U.S. government may be thwarting thousands of daily attempts to penetrate its IT systems, but the number of successful attacks clearly is increasing, giving the appearance that the bad guys are winning at least a few battles, if not the war. Making matters worse, the security safeguards breached are roughly the same as those used by most U.S. businesses, noted Core Security's Eric Cowperthwaite.
New Variant of Matsnu Trojan Uses Configurable DGA
The Domain Generation Algorithm (DGA) used by a new variant of the Matsnu Trojan (also known as Trustezeb) relies on an interesting technique to avoid detection by security solutions.
Matsnu Botnet DGA Discovers Power of Words
Domain generation algorithms have been botmasters’ favorite tool for keeping malware up and running—and for frustrating security researchers and detection technologies.
SECURITY INFOGRAPHIC: Why the US Needs More Cyber Security Professionals
In a blog post published in back in May, my colleague Doug McLean wrote that an enterprise’s attempt to find experienced, knowledgeable, and (reasonably) affordable Security Analysts these days is no longer a traditional human resource effort, but more like “searching for unicorns”.
read moreOn-Demand Webinar: Why Breach Detection is Your Must-Have, Cyber Security Tool
On-demand webinar: As cyber security breaches become a board-level priority, join us in learning how you can automate your breach detection system.
read moreHome Depot Traces Credit Card Data Hack To Supplier Compromise
US retailer Home Depot said it has traced the world’s second largest theft of credit card details from its systems back to a supplier’s compromised username and password.
Cousin of Bugat trojan, 'Dridex,' spreads using macros
The proliferation of the Bugat trojan, also known as “Cridex,” put the threat among the top banking botnets last year – and now researchers warn that its so-called successor, “Dridex,” is targeting users via social engineering schemes.
Attention Retailers: It's Time to Plug Those Data Leaks
The birth of e-commerce dates to August 11, 1994 — the date when what was likely the first secure transaction over the World Wide Web occurred in Nashua, N.H.
Keep Calm & Verify: How To Spot A Fake Online Data Dump
Determining whether a data dump on Pastebin or elsewhere online is legit can be time-consuming and resource-intensive. Deloitte & Touche offers tips for how to weed out the fake hacks.
Staples Falls Victim to Latest Breach
So far, the Staples breach appears to be small, affecting only 11 stores in Pennsylvania, New York and New Jersey.
Office supplies chain Staples acknowledged Tuesday it is investigating a potential breach involving credit cards used at some of its stores.
recent post
-
An Acquisition is Akin to a Rollercoaster Ride
Feb 15, 2017 9:32:37 PM -
Let’s Hack an Election, Shall We?
Nov 2, 2016 1:55:28 AM -
Nymaim: Deep Technical Dive - Adventures in Evasive Malware
Oct 11, 2016 3:30:00 PM