Reveton ransomware now steals passwords and credentials

Ransomware is one of the uglier threats that security professionals have to deal with. Unfortunately there's a new version in the wild. Security vendor Avast reported Tuesday that the Reveton ransomware that for

Published on: August 20th, 2014 Howard Solomon

Six tips to end SQL Injection attacks

These tips are just the tip of the iceberg for what you need to do to stop SQL Injection attacks. For detailed advice, see this article by Paul Litwin, as well as this

Published on: August 12th, 2014 Howard Solomon

New malware exploit kits flooding market, says Cisco

Cybercrime works pretty much the same way as a capitalism does: where there’s a need for a product or service, someone will try to fill it. That’s one of the messages from Cisco

Published on: August 5th, 2014 Howard Solomon

Elasticsearch vulnerability leads to DDoS malware on Amazon

Security professionals usually don't have to worry about the search engines their organizations chose for plowing through corporate data. But researchers at Kaspersky Labs say attackers are exploiting a vulnerability in the open

Published on: July 28th, 2014 Howard Solomon

Attackers turn to IE: Report

Know your enemy is a good defence for any country, or enterprise. So here's more advice for CSOs from another security vendor about what they're likely to face in the short term. Microsoft

Published on: July 27th, 2014 Howard Solomon

Google to go after all bugs

Zero-day exploits are the bane of IT security professionals. Google says it will fight them with Project Zero. The search company said last week that it has created a new "well-staffed" team to

Published on: July 22nd, 2014 Howard Solomon

How the Nasdaq was hacked

There have been lots of reports that governments around the world aren't paying enough attention to protecting their critical infrastructure -- telecom networks, water systems and power grids -- from cyber attacks. Stock markets would

Published on: July 18th, 2014 Howard Solomon

Hackers returning to Visual Basic downloaders: Sophos

Hackers are returning to a decade-old method for inserting malware into people’s machines, according to a recent report from security solutions company Sophos Ltd. In the period between March and May of 2014, Sophos

Published on: July 9th, 2014 Candice So

Worry over ransomware picking up, study suggests

It may be a dead heat, but among all the IT professionals in the data centre, arguably no one is under more pressure these days than the chief security officer because of the

Published on: July 2nd, 2014 Howard Solomon