Security News > 2021 > September

Britain's National Crime Agency - charged with thwarting serious and organised crime - is putting out the feelers for a senior figure to head up, among other things, the threat response, analysis, capability exploration and research unit, otherwise known as TRACER. The Deputy Director of Digital Data and Technology role at the law enforcement agency is being advertised with a wide-ranging salary of between £71,000 and a little under £118,000, presumably dependent on the levels of skills the chosen candidate can demonstrate. "It's a high profile, senior leadership role that will see you working across the National Security landscape to ensure that our operational performance is enhanced by using science, technology and data to deliver a tangible impact," the job ad states.

A new and devious SMS malware campaign is trying to infect people via their mobile devices by promising details about COVID-19. Aimed at Android users in the U.S. and Canada, the malware known as TangleBot can make and block phone calls, send text messages, and overlay malicious screens on a compromised device, said a new report from security firm Cloudmark.

Police have issued an urgent warning after an elderly man was scammed out of £30,000 by phone fraudsters pretending to be from BT. The incident happened last Thursday, prompting West Mercia Police to issue a bulletin warning people to be on their guard against suspicious phone calls. Once the app was downloaded, they then convinced the man to log in using his online banking details and thereafter to transfer a sum of money to another account for "Safekeeping."

Good article about the current state of cryptocurrency forensics.

A malicious Firefox add-on named "Safepal Wallet" scammed users by emptying out their wallets and lived on the Mozilla add-ons site for seven months. Safepal is a cryptocurrency wallet application capable of securely holding more than 10,000 types of assets, including Bitcoin, Ethereum, and Litecoin.

While consumers have a solid understanding of proper password security and the actions necessary to minimize risk, they still pick and choose which information they apply that knowledge to, according to the report. Spending more time online, yet lacking proper password security.

October is Cybersecurity Awareness Month, but most business leaders and consumers don't need a special event to remember cybersecurity's preeminence in today's turbulent digital landscape. While software solutions are critical to securing digital infrastructure and company data, businesses will get the most return-on-investment by directing a significant share of their cybersecurity capacity toward an oft-overlooked priority - their people.

Making the decision to implement a multi-cloud strategy is difficult. From the decision to pursue a multi-cloud journey to defining the requirements to laying the foundation to identifying and deploying applications and services to the multi-cloud environment, the process requires a solid strategy and flawless execution to succeed, say experts at Taos.

The operators behind the BlackRock mobile malware have surfaced back with a new Android banking trojan called ERMAC that targets Poland and has its roots in the infamous Cerberus malware, according to the latest research. "The new trojan already has active distribution campaigns and is targeting 378 banking and wallet apps with overlays," ThreatFabric's CEO Cengiz Han Sahin said in an emailed statement.

The data is drawn from a study of more than 1,300 security leaders, business executives and remote employees conducted by Forrester Consulting. From cloud services and applications to personal devices and remote access tools, the corporate attack surface exploded in record time.