Week in review: Mac malware boom, TP-LINK loses control of configuration domains

Here’s an overview of some of last week’s most interesting news, reviews and articles:

TP-LINK loses control of two device configuration domains
Security researcher Amitay Dan warns that tplinklogin.net, a domain through which TP-LINK router owners can configure their devices, is no longer owned by the company, and that this fact could be misused by malware peddlers.

Review: Linux Server Security
Linux Server Security is a short book that will come handy and should be interesting to Linux systems administrators, especially if they know nothing or next to nothing about keeping them secure.

Keydnap malware opens backdoor, goes after passwords in OS X keychain
Keydnap is unusual and fascinating for several reasons.

Ransomware: Can we finally start learning from past mistakes?
Those who cannot remember the past are condemned to repeat it.

Security startup confessions: Building a team
Kai Roer, a co-founder of a European security startup, shares his experiences in building a team.

Google fixes 108 bugs in July Android security update
Google has released an unusually hefty Android Security Bulletin for July. In fact, so many vulnerabilities have been fixed – 108 in all – that the patches come in two levels.

Top 10 DDoS attack trends
Read the Top 10 DDoS attack trends report and find out what are the latest, most dangerous types of DDoS attacks, the impact these attacks can have on your business, and what types of steps your business needs to take to protect itself.

Faraday: Collaborative pen test and vulnerability management platform
Faraday is an integrated multi-user penetration testing environment that maps and leverages all the knowledge you generate in real time. It gives CISOs a better overview of their team’s job, tools and results.

New Mac OS X backdoor disguised as document converter app
Users get infected after they download and run an app called EasyDoc Converter, which supposedly converts documents, but actually has no functionality of that kind.

Exploit for GNU wget RCE flaw revealed
Technical details about a serious vulnerability affecting all but the latest version of the GNU wget software have been released online, along with PoC exploit scenarios.

BMW ConnectedDrive flaws could be misused to tamper with car settings
Security researcher Benjamin Kunz Mejri has found two vulnerabilities in the BMW ConnectedDrive web portal/web application.

Locky ransomware variant Zepto hits users via email
The emails sport various subject lines that indicate that the sender is sending in a new invoice, a (financial) report, or document copies that have been requested by the recipient.

Half of SMBs experienced a breach in the past year
More than 50% of SMBs have been breached in the last 12 months, according to a North American study by the the Ponemon Institute.

EU to invest €450 million in cybersecurity research
The European Commission launched a new public-private partnership on cybersecurity that is expected to trigger €1.8 billion of investment by 2020.

The many faces of ransomware
Ransomware has grabbed mainstream media attention recently but it’s nothing new – in fact, its origins can be traced back to floppy disk times.

Kovter malware masquerades as Firefox update
Click-ad-fraud Kovter malware, packaged as a legitimate Firefox browser update, is being delivered to unsuspecting victims via drive-by-download attacks.

DDoS extortion campaigns increasingly target businesses
80 percent of European IT security professionals expect their business to be threatened with a DDoS ransom attack during the next 12 months, according to Corero Network Security.

More about

Don't miss