Security News

A recently observed malware botnet targeting Linux systems is employing many of the emerging techniques among cyber-criminals, such as the use of Tor proxies, legitimate DevOps tools, and the removal of competing malware, according to new research from anti-malware vendor Trend Micro. The researchers say the malware is capable of downloading all of the files it needs from the Tor anonymity network, including post-infection scripts and legitimate, essential binaries that might be missing from the environment, such as ss, ps, and curl.

It is possible to hijack and manipulate Cellebrite's phone-probing software tools by placing a specially crafted file on your handset, it is claimed. Signal app supremo Moxie Marlinspike said in an advisory on Wednesday that he managed to get his hands on some of Cellebrite's gear, which is typically used by cops, government agents, big biz, and authoritarian regimes to forcibly access the contents of physically seized smartphones.

Open source is not a security risk per se; it's more secure than proprietary software in many ways! With the code being publicly available, it's a lot easier for the surrounding community to identify vulnerabilities, and fixes can be done quickly. The most common aspect of open-source security is, like explained above, vulnerabilities.

The authors of a cryptocurrency-stealing malware are distributing it over Telegram to aspiring cybercriminals under the guise of free malicious applications. Researchers have named the malware HackBoss and say that its operators likely stole more than $500,000 from wannabe hackers that fell for the trick.

In future versions of Windows 10, Microsoft has removed the venerable 'Administrative Tools' and added a new 'Windows Tools' control panel with almost double the number of tools promoted within it. As part of this addition, Microsoft took shortcuts previously located in Start Menu folders such as the 'Windows System', 'Windows Accessories', and 'Windows PowerShell' and moved them into the new Windows Tools control panel.

On average, enterprises maintain 19 different security tools, with only 22% of such tools serving as vital to primary security objectives, a ReliaQuest survey reveals. The report, which surveyed 400 IT and security decision makers at companies with more than 1,000 employees, also unveiled a lack of meaningful ROI metrics when reporting on security progress, as well as disparate opinions on objectives, tool effectiveness and security awareness amongst the organization between executives and operations on security teams.

71% of office workers globally - including 68% in the US - admitted to sharing sensitive and business-critical company data using instant messaging and business collaboration tools, Veritas Technologies research reveals. The research shows this challenge is compounded by the amount of time employees spend using messaging and collaboration apps: time spent on tools such as Zoom and Teams has increased by 13% in the US since the start of the pandemic.

The CEO of Sky Global - which sold encryption chat software with customized smartphones - has come out fighting after Uncle Sam charged him with knowingly assisting the international drug smuggling trade. "There is no question that I have been targeted, as Sky Global has been targeted, only because we build tools to protect the fundamental right to privacy. The unfounded allegations of involvement in criminal activity by me and our company are entirely false."

Over the past year, Microsoft has quietly released new built-in Windows 10 command-line applications and free Microsoft Store apps that enhance the operating system's functionality. Microsoft did not officially announce these new tools in some cases, and they were discovered by users instead. In this article, we're going to highlight these new programs and other apps so power-users can take greater control over Windows 10.

Organizations have invested millions in new technology over the past year, yet fewer than one in 10 businesses have trained staff in to use these tools. Despite soaring technology budgets, research suggests that workers still have not been trained to use new tools properly - and employees are finding themselves on the firing line.