Blog – Page 5 – Martijn Grooten

We cannot ignore the increased use of IoT in domestic abuse cases

Post author By Martijn
Post date June 26, 2018
No Comments on We cannot ignore the increased use of IoT in domestic abuse cases

The New York Times reports that smart home devices are increasingly used in cases of domestic abuse.
Read more on Virus Bulletin’s blog.

Tags domestic abuse, internet of things, iot, virus bulletin

Security

Microsoft Policy Sets Standard For Openness On What Vulnerabilities To Patch

Post author By Martijn
Post date June 25, 2018
No Comments on Microsoft Policy Sets Standard For Openness On What Vulnerabilities To Patch

Microsoft has published a draft policy in which the company outlines what kinds of vulnerabilities it will patch and which vulnerabilities qualify for a bug bounty.
More on my blog at Forbes.

Tags bug bounty, disclosure, forbes, microsoft, policy, vulnerability

Security

Banks may need threat teams to fight the next wave of SWIFT-style attacks

Post author By Martijn
Post date June 22, 2018
No Comments on Banks may need threat teams to fight the next wave of SWIFT-style attacks

Almost two-thirds of financial institutions have yet to form threat hunting teams — a growing necessity as the number of high-profile attacks rises.
Read more on Payment Source. (Note: subscription wall.)

Tags bank, carbon black, finance, lazarus, payment source

Security

When crypto exchanges act like banks, regulators may treat them as such

Post author By Martijn
Post date June 20, 2018
No Comments on When crypto exchanges act like banks, regulators may treat them as such

Exchanges aren’t very transparent about their methods, but that in fact most handle such internal transactions exactly how regular banks have worked for centuries.
Read more on Payment Source. (Note: subscription wall.)

Tags bank, cambridge university, cryptocurrency, exchange, payment source, regulation

Security

Subtle change could see a reduction in installation of malicious Chrome extensions

Post author By Martijn
Post date June 13, 2018
No Comments on Subtle change could see a reduction in installation of malicious Chrome extensions

Google has made a subtle change to its Chrome browser, banning the inline installation of new extensions, thus making it harder for malware authors to trick users into unwittingly installing malicious extensions.
Read more on Virus Bulletin’s blog.

Tags browser, chrome, extension, google, malware, virus bulletin

Uncategorized

Polish banks targeted by attackers who hijack customer sessions

Post author By Martijn
Post date June 4, 2018
No Comments on Polish banks targeted by attackers who hijack customer sessions

Rather than hooking into the browser process, BackSwap takes the place of the user and enters the same commands into the browser that a user would if they wanted to hack themselves.
Read more on Payment Source. (Note: subscription wall.)

Tags backswap, banking, eset, malware, payment source, poland

Security

Why the ransom demand on Canadian banks was a no-win scenario

Post author By Martijn
Post date May 31, 2018
No Comments on Why the ransom demand on Canadian banks was a no-win scenario

Two major Canadian banks, Bank of Montreal and Simplii Financial, have become victims of hacks that affected some 50,000 and 40,000 customers respectively. Neither bank decided to pay the ransom by the hackers’ May 28 deadline.
Read more on Payment Source. (Note: subscription wall.)

Tags bank of montreal, canada, hack, payment source, ransom, simplii financial

Security

Expired domain led to SpamCannibal's blacklist eating the whole world

Post author By Martijn
Post date May 31, 2018
No Comments on Expired domain led to SpamCannibal's blacklist eating the whole world

The domain of the little-used SpamCannibal DNS blacklist had expired, resulting in it effectively listing every single IP address.
Read more on Virus Bulletin’s blog.

Tags blacklist, dns, dnsbl, spamcannibal, virus bulletin

Security

MnuBot banking trojan communicates via SQL server

Post author By Martijn
Post date May 30, 2018
No Comments on MnuBot banking trojan communicates via SQL server

Researchers at IBM X-Force have discovered MnuBot, a banking trojan targeting users in Brazil, which is noteworthy for using SQL Server for command and control communication.
Read more on Virus Bulletin’s blog.

Tags banking, brazil, ibm, malware, mnubot, sql server, trojan, virus bulletin, x-force

Security

XMRig used in new macOS cryptominer

Post author By Martijn
Post date May 23, 2018
No Comments on XMRig used in new macOS cryptominer

A new piece of cryptocurrency-mining malware on macOS has been found to use the popular XMRig miner.
Read more on Virus Bulletin’s blog.

Tags cryptocurrency, macos, malware, monero, virus bulletin