ITworld Endpoint Security

AutoIt scripting increasingly used by malware developers

IDGNS staff — Tue, 07 May 2013 12:35:39 +0000

AutoIt, a scripting language for automating Windows interface interactions, is increasingly being used by malware developers thanks to its flexibility and low learning curve, according to security researchers from Trend Micro and Bitdefender.

Antivirus is ailing: Here are 5 firms ready to replace it

jnaze — Fri, 03 May 2013 19:51:14 +0000

AV companies have been at war with the bad guys for much of the last two decades. And guess what? The bad guys won. Now that the days of antivirus software being in the front line of defense against malware are over, what companies are ready to step in and take up arms against sophisticated attacks and malware? Here are five to keep your eye on.

Researchers find malware targeting online stock trading software

IDGNS staff — Thu, 18 Apr 2013 15:54:10 +0000

Security researchers from Russian cybercrime investigations company Groub-IB have recently identified a new piece of malware designed to steal login credentials from specialized software used to trade stocks and other securities online.

Researchers find APT malware that monitors mouse clicks to evade detection

IDGNS staff — Tue, 02 Apr 2013 14:42:04 +0000

Researchers from security vendor FireEye have uncovered a new APT (advanced persistent threat) that uses multiple detection evasion techniques, including the monitoring of mouse clicks, to determine active human interaction with the infected computer.

Ransomware leverages victims' browser histories for increased credibility

IDGNS staff — Mon, 01 Apr 2013 15:45:51 +0000

The authors of police-themed ransomware have started using the browsing histories from infected computers in order to make their scams more believable, according to an independent malware researcher.

Most Java-enabled browsers vulnerable to widespread Java exploits, Websense says

IDGNS staff — Tue, 26 Mar 2013 19:23:01 +0000

Most browser installations use outdated versions of the Java plug-in that are vulnerable to at least one of several exploits currently used in popular Web attack toolkits, according to statistics published Monday by security vendor Websense.

Researchers uncover vSkimmer malware targeting point-of-sale systems

IDGNS staff — Fri, 22 Mar 2013 11:56:59 +0000

A new piece of custom malware sold on the underground Internet market is being used to siphon payment card data from point-of-sale (POS) systems, according to security researchers from antivirus vendor McAfee.

Researchers find TeamViewer-based cyberespionage operation

IDGNS staff — Thu, 21 Mar 2013 14:28:48 +0000

Security researchers have uncovered yet another ongoing cyberespionage operation targeting political and human rights activists, government agencies, research organizations and industrial manufacturers primarily from Eastern European countries and former Soviet Union states.

Rethinking Your Enterprise Security - Critical Priorities to Consider

Wed, 20 Mar 2013 02:00:15 +0000

Forward-thinking enterprises realize they need to focus on a sustainable approach to security and risk management-one that is designed to address the new wave of vulnerabilities that prevail.

Researchers find vulnerability in EA's Origin platform

IDGNS staff — Fri, 15 Mar 2013 23:52:58 +0000

Users of Origin, the game distribution platform of Electronic Arts (EA), are vulnerable to remote code execution attacks through origin:// URLs, according to two security researchers.

3G and 4G USB modems are a security threat, researcher says

IDGNS staff — Fri, 15 Mar 2013 16:21:55 +0000

The vast majority of 3G and 4G USB modems handed out by mobile operators to their customers are manufactured by a handful of companies and run insecure software, according to two security researchers from Russia.

Kaspersky Internet Security 2013 bug can lead to system freeze

IDGNS staff — Thu, 07 Mar 2013 17:00:00 +0000

Kaspersky Lab's Internet Security 2013 product contains a bug that can be exploited remotely, especially on local networks, to completely freeze the OS on computers running the software.

Following hack, Evernote speeds move to two-factor authentication

IDGNS staff — Wed, 06 Mar 2013 02:31:29 +0000

Evernote is speeding up its plans to offer two-factor authentication to users following a recent data breach that exposed user names, email addresses and encrypted passwords.

Cybercriminals using digitally signed Java exploits to trick users

IDGNS staff — Tue, 05 Mar 2013 17:52:00 +0000

Security researchers warn that cybercriminals have started using Java exploits signed with digital certificates to trick users into allowing the malicious code to run inside browsers.

Cyber's Strangelovian moment?

paulfroberts — Tue, 26 Feb 2013 02:03:22 +0000

A steady drumbeat of news about sophisticated cyber attacks against our government and leading institutions has attendees at this year's RSA conference in a fever. And that may be bad for security.