‘GozNym’ Banking Malware Gang Dismantled by International Law Enforcement

Posted on May 23rd, 2019 by Responsible Cyber

In a joint effort by several law enforcement agencies from 6 different countries, officials have dismantled a major global organized cybercrime network behind GozNym banking malware.GozNym banking malware is responsible for stealing nearly $100 million from over 41,000 victims across the globe, primarily in the United States and Europe, for years. GozNym was created by combining […]

Read More

Why Are Cryptographers Being Denied Entry into the US?

Posted on May 23rd, 2019 by Responsible Cyber

In March, Adi Shamir — that’s the “S” in RSA — was denied a US visa to attend the RSA Conference. He’s Israeli. This month, British citizen Ross Anderson couldn’t attend an awards ceremony in DC because of visa issues. (You can listen to his recorded acceptance speech.) I’ve heard of two other prominent cryptographers […]

Read More

A Tough Week for IP Address Scammers — Krebs on Security

Posted on May 23rd, 2019 by Responsible Cyber

In the early days of the Internet, there was a period when Internet Protocol version 4 (IPv4) addresses (e.g. 4.4.4.4) were given out like cotton candy to anyone who asked. But these days companies are queuing up to obtain new IP space from the various regional registries that periodically dole out the prized digits. With […]

Read More

Maliciously Tampering with Medical Imagery

Posted on April 13th, 2019 by Responsible Cyber

In what I am sure is only a first in many similar demonstrations, researchers are able to add or remove cancer signs from CT scans. The results easily fool radiologists. I don’t think the medical device industry has thought at all about data integrity and authentication issues. In a world where sensor data of all […]

Read More

6 Essential Skills Cybersecurity Pros Need to Develop in 2019

Posted on April 6th, 2019 by Responsible Cyber

In a time of disruption in the security and tech worlds, cybersecurity professionals can’t afford to become complacent – even in the face of a skills shortage. 1 of 7 Image Source: Adobe Stock (vchalup) It’s definitely a job seeker’s’ market out there in the cybersecurity employment pool. According to an about-to-be released report from […]

Read More

In-Depth Analysis of JS Sniffers Uncovers New Families of Credit Card-Skimming Code

Posted on April 6th, 2019 by Responsible Cyber

In a world that’s growing increasingly digital, Magecart attacks have emerged as a key cybersecurity threat to e-commerce sites.Magecart, which is in the news a lot lately, is an umbrella term given to 12 different cyber criminal groups that are specialized in secretly implanting a special piece of code on compromised e-commerce sites with an […]

Read More

Thousands of Unprotected Kibana Instances Exposing Elasticsearch Databases

Posted on April 6th, 2019 by Responsible Cyber

In today’s world, data plays a crucial role in the success of any organization, but if left unprotected, it could be a cybercriminal’s dream come true.Poorly protected MongoDB, CouchDB, and Elasticsearch databases recently got a lot more attention from cybersecurity firms and media lately.More than half of the known cases of massive data breaches over […]

Read More

IoT Widens the Security Gap. Now What?

Posted on March 30th, 2019 by Responsible Cyber

In a previous blog, I explored why 802.11ax means more IoT. 802.11ax, now known as Wi-Fi 6, makes the WLAN even more IoT-friendly given the support for dense concentrations of clients in environments such as buildings with smart lighting, environmental controls, and meeting room technology. Wi-Fi 6 introduces some terrific new security features, but the IoT security risk is […]

Read More

Alleged Child Porn Lord Faces US Extradition — Krebs on Security

Posted on March 24th, 2019 by Responsible Cyber

In 2013, the FBI exploited a zero-day vulnerability in Firefox to seize control over a Dark Web network of child pornography sites. The alleged owner of that ring – 33-year-old Freedom Hosting operator Eric Eoin Marques – was arrested in Ireland later that year on a U.S. warrant and has been in custody ever since. This […]

Read More

Security Lessons from My Game Closet

Posted on March 24th, 2019 by Responsible Cyber

In an era of popular video games like Fortnite and Minecraft, there is a lot to be learned about risk, luck, and strategy from some old-fashioned board games. I was recently looking over my collection of board games. As my eyes moved from game to game, I thought about the strategy and approach with which […]

Read More