Current Threats News
Zeus Malware Attacks Increase, Steals Account Credentials
10:08 AM EST Fri. May. 24, 2013
A malware family used by financially motivated cybercriminals has steadily increased, according to data released by Trend Micro.
Mandiant: Report Sending Chinese Cyberattackers Back To The Drawing Board?
11:20 AM EST Thu. May. 23, 2013
Mandiant's report, which provided thousands of infection and attack indicators, has significantly impacted the Chinese cyberspionage campaign and possibly forced the group to turn to alternative methods.
Ransomware Attack Now Steals Passwords, Microsoft Warns
9:50 AM EST Mon. May. 20, 2013
A dangerous attack that locks up victims' computers and demands a ransom also goes after account credentials.
Dimension Data Cloud Chief: Cloud Platform Providers Must Fight Fraud, Cybercrime
1:51 PM EST Fri. May. 17, 2013
Some cloud providers fail to address account fraud and realize the extent of the cybercrime problem, said John Rowell, formerly chief technology officer at cloud provider OpSource, and now leads global research and development, and service operations in Dimension Data's Cloud Solutions Business Unit.
Malware Behind Oldest, Most Active Spam Botnet Gets Refresh
6:53 PM EST Wed. May. 15, 2013
The Pushdo botnet has been given a new domain name generation algorithm making it even more difficult for security researchers and law enforcement to knock out its command-and-control infrastructure.
Adobe Gets Busy With Fixes For ColdFusion, Reader, Flash
10:00 AM EST Wed. May. 15, 2013
Adobe's security updates repair dozens of flaws in Flash and its PDF software as well as a zero-day vulnerability in its ColdFusion software that has been actively targeted by cybercriminals.
Dimension Data CEO Lays Out $12 Billion Plan
7:24 PM EST Tue. May. 14, 2013
CEO Brett Dawson says the global systems integration giant is doubling down on providing its own Dimension Data-branded cloud-computing services offerings.
Patch Tuesday: Microsoft Fixes Critical IE8 Flaw Used In Targeted Attacks
6:08 PM EST Tue. May. 14, 2013
Microsoft has repaired an Internet Explorer 8 vulnerability used in a serious watering-hole attack targeting Department of Energy employees in one of 10 bulletins issued as part of its monthly release of security updates.
Cybercriminals Put More Muscle Behind Travnet Botnet
9:36 AM EST Tue. May. 14, 2013
An analysis of Travnet finds that the attackers are actively bolstering its infrastructure. The botnet is believed to be behind recent targeted cyberespionage attacks.
5 Companies That Dropped The Ball This Week
11:10 AM EST Fri. May. 10, 2013
For the week ending May 10, CRN looks at five companies that were either asleep at the wheel or just didn't make good decisions.
Microsoft Patch Tuesday To Include Critical Internet Explorer Fix
4:21 PM EST Thu. May. 09, 2013
The software giant said it plans to issue 10 security bulletins across its product line including two critical bulletins affecting Windows and Internet Explorer.
Microsoft Issues Temporary Fix For Internet Explorer 8 Zero-Day Flaw
10:40 AM EST Thu. May. 09, 2013
The Shim Workaround temporary patch iwill prevent attackers from successfully exploiting the remote code execution vulnerability in the browser, according to Microsoft.
Name Of The Game: Top 10 States For Identity Theft
12:00 PM EST Wed. May. 08, 2013
A Federal Trade Commission report provides statistics on identity theft and fraud complaints in 2012. Learn which state has the dubious distinction of having the most victims.
Solution Provider Review: F5's Application Delivery Firewall (Video)
11:15 AM EST Wed. May. 08, 2013
FishNet Security's Robert Schaffer explains why F5 Network's new add-on for its Advanced Firewall Manager delivers an extra layer of protection.
Microsoft: Don't Be Fooled By The Cool Exploit Kit
11:12 AM EST Wed. May. 08, 2013
A Microsoft security researcher warns that the Cool Exploit Kit is expected to 'propagate soon' and users should take caution when visiting unfamiliar websites.
Microsoft Acknowledges Internet Explorer Zero-Day Used In Website Attack
2:57 PM EST Mon. May. 06, 2013
Visitors to the Department of Labor's nuclear-related content were targeted with a Microsoft zero-day vulnerability.
Chinese Attackers Infiltrate Defense Contractor, Steal Sensitive Military Technology
12:14 PM EST Fri. May. 03, 2013
The QinetiQ attackers were persistent, remaining on the systems at one point for 251 days, accessing more than 150 computers and stealing 20 GB of data before they were detected, according to reports.
WordPress Bloggers Beware: You're Easy Pickings For Cybercriminals
10:30 AM EST Fri. May. 03, 2013
Dell-SecureWorks researchers explain the dangers of failing to apply the latest patches to the WordPress platform and third-party components.
The Top 5 Causes Of Corporate Data Breaches (Video)
2:30 PM EST Thu. May. 02, 2013
Verizon's new security report explains how businesses can avoid and minimize the risk of major data breaches.
5 Ways To Avoid A Stolen Password Pitfall
1:00 PM EST Thu. May. 02, 2013
Avoiding having your email or Facebook account hijacked or bank account drained takes a little work, but following these steps can greatly reduce the risk.
5 Phishing Attack Trends You May Have Missed
4:00 PM EST Tue. Apr. 30, 2013
Phishing attackers change their tactics often, and a new report issued by the Anti-Phishing Working Group found the latest techniques have boosted the speed and efficiency of their campaigns.
Microsoft, Trend Micro Identify Surge in PDF Attacks
2:05 PM EST Tue. Apr. 30, 2013
The increase in document attacks stem from the popular Black Hole automated attack toolkit, which is targeting flaws patched as long as five years ago. Some targeted campaigns are exploiting older flaws as well.
New Amazon Blog Tackles Web Services Security Concerns
11:38 AM EST Tue. Apr. 30, 2013
Amazon Web Services' security has been under scrutiny after a new study finds the complexity of managing Amazon S3 opens up security weaknesses that potentially expose confidential data.
DDoS Attacks Behind Unauthorized Wire Transfers, ACH Fraud: Report
5:47 PM EST Mon. Apr. 29, 2013
Security researchers at Dell SecureWorks have found that short-lived DDoS attacks against banks could be a precursor to an unauthorized wire transfer.
CHANNEL SERVICES >>