Cybercrime Week in Review 18 April 2015
POS Providers Feel Brunt of PoSeidon Malware (KrebsonSecurity)
“PoSeidon,” a new strain of malicious software designed to steal credit and debit card data from hacked point-of-sale (POS) devices, has been implicated in a number of recent breaches involving companies that provide POS services primarily to restaurants, bars and hotels.
CoinVault Ransomware Decryption Tool Released (The Hacker News)
Are you one of those Windows users who have found themselves as victims of the CoinVault Ransomware? If Yes, then we have a Good news for you: Victims of CoinVault ransomware can now decrypt their files encrypted by malware using a free tool released by Kaspersky Lab.
Banking malware using a variety of tricks to evade detection (CSO)
A new report from the Arbor Security Engineering and Response Team (ASERT) sheds light on how the sophisticated banking malware known as Neverquest or Vawtrak is able to evade detection, by using encryption, anonymous routers, and even steganography.
Your Tax Refund with a Data Kidnapping Twist! Last-minute tax declarations lead to IRS-themed Ransomware (SecureList)
Oh, how procrastination gets all of us! April 15th is the U.S. tax deadline and it looks like most of us will be coming down to the wire on declaring our taxes and holding our collective breath in expectation of that sweet, sweet refund.
Threat Spotlight: Upatre – Say No to Drones, Say Yes to Malware (Cisco)
Upatre is an example of a malicious downloader Talos has been monitoring since late 2013. However, in the last 24-48 hours, things have shifted dramatically..
Report Recommends Series of Cybersecurity Changes at FAA (Threat Post)The Federal Aviation Administration needs to upgrade and update its information security capabilities–including building a threat-modeling capability and implementing federal security guidelines–in order to ensure the safety of the nation’s aviation infrastructure, according to a new report by the General Accounting Office.
KPMG: Investors Turned Off By Poor Cybersecurity (info security)
Nearly 80% of investors would be put off investing in a business if it has been hacked or has an ineffective cybersecurity strategy, according to new research from KPMG.
FBI: ISIS Backers Deface Websites Bureau Also Warns of Fake Government Websites (BankInfoSecurity)
Sympathizers of the Islamic State terrorist group are exploiting a vulnerability in a WordPress Content Management System plug-in to deface the websites of news organizations, businesses, religious institutions and governments in the U.S. and abroad, according to the FBI.