10 Apr 2019

TajMahal cyber-espionage campaign uses previously unseen malicious tools

At the Kaspersky Security Analyst Summit (SAS) in Singapore, Kaspersky Lab researchers described a sophisticated cyber espionage campaign uncovered at the end of last year. The campaign, which seems to have no links to know threat actors, uses malware dubbed TajMahal, which researchers describe as “a technically sophisticated APT framework

Read More
29 Mar 2019

IT Security Pros Slam State-Backed Encryption Backdoors

New Venafi research shows that the vast majority of IT professionals have major problems with state-enforced encryption backdoors. Almost 3 in 4 (73%) respondents believe that state laws mandating that tech firms provide law enforcement with access to encrypted communications, actually serve to undermine national security. In addition, 70% of

Read More
26 Mar 2019

Hackers Hijacked ASUS Software Updates to Install Backdoors on Thousands of Computers

After compromising an ASUS server last year, threat actors installed a malicious backdoor on half a million computers sold by the Taiwan-based electronics giant, Kaspersky Lab claims. The hackers used their access to the server to disguise the malware as a legitimate software update which they then pushed to ASUS

Read More
29 Jan 2019

Unsecured MongoDB databases expose Kremlin’s backdoor into Russian businesses

Thanks to a leaky MongoDB database, a prominent Dutch white-hat hacker has discovered the backdoor account used by the Russian government to access servers belonging to businesses and organizations operating in Russia. The leaky server in which the backdoor account admin@kremlin.ru was first discovered, belonged to a Russian Lotto Website. The researcher then discovered the

Read More
10 Dec 2018

Australia Anti-Encryption Law Triggers Sweeping Backlash

“A controversial Australian bill, which could give the government access to data protected by end-to-end encryption, was passed Thursday. The bill, called the Assistance and Access Act, empowers Australian police to essentially force companies (that are operating in the country) to help the government hack into systems, plant malware or

Read More
07 Dec 2018

Australia cracks open encrypted messaging

“Cryptology experts fear that contentious Australian laws that require tech firms to give security agencies access to encrypted data could be exploited by the same terrorists and criminals they are supposed to entrap. Passed by federal parliament Thursday, the Assistance and Access Bill is likely to be copied in some

Read More