Apple takes countermeasures to neutralize OSX/Dok HTTPS-snooping malware by revoking a hijacked certificate updating its XProtect built-in anti-malware software.
Threatpost News Wrap, April 28, 2017
Mike Mimoso and Chris Brook recap this year’s SOURCE Boston Conference and discuss the week in news, including the long term implications of the NSA’s DoublePulsar exploit, and the HipChat breach.
Lawmaker calls on ISPs to stop customers being hit by viruses
Australian minister says government is considering moving towards ‘active defence … blocking or diverting malicious traffic’
Lack of Communication Achilles’ Heel for Ransomware Fighters
A member of law enforcement acknowledged at SOURCE Boston that the lack of communication around ransomware remains a serious problem.
Ransomware, Cyberespionage Dominate Verizon DBIR
Verizon’s Data Breach Investigations Report for 2017 shows big growth in the reported number of ransomware attacks and incidents involving cyberespionage.
Why ransomware continues to dominate conference agendas, despite being ‘old news’
While there are still victims of ransomware who feel they have no option but to pay up, we’ll continue to focus on it
Original XPan Ransomware Returns, Targets Brazilian SMBs
Brazilian cybercriminals are using the original version of the XPan ransomware, targeting small to medium-sized business based in Brazil with the malware.
Hard Target: Fileless Malware
Researchers say fileless in-memory malware attacks have become a major nuisance to businesses and have become even harder to detect and defend.
xDedic Market Spilling Over With School Servers, PCs
Nearly two-thirds of servers and PCs peddled on the xDedic underground marketplace belong to schools and universities based in United States.
Locky Ransomware Roars Back to Life Via Necurs Botnet
The first large scale Locky campaign in months has been detected via the Necurs botnet.