Headlines 

Millions of Android Devices Are Vulnerable Right Out of the Box

Security meltdowns on your smartphone are often self-inflicted: You clicked the wrong link, or installed the wrong app. But for millions of Android devices, the vulnerabilities have been baked in ahead of time, deep in the firmware, just waiting to be exploited. Who put them there? Some combination of the manufacturer that made it, and the carrier that sold it to you. That’s the key finding of new analysis from mobile security firm Kryptowire, which details troubling bugs preloaded into 10 devices sold across the major US carriers. Kryptowire CEO…

Read More
Odds and Ends 

WannaCry hero heads into Tuesday hearing as the security community crowdfunds his defense

Over the weekend, the security community raised legal funds for Marcus Hutchins, the researcher famed for stopping the spread of the malware known as WannaCry. Hutchins, also known as MalwareTech, was arrested by the FBI last week for his alleged role in disseminating Kronos, a banking trojan that first wrought havoc in 2014. With a hearing set for Tuesday in Wisconsin, Hutchins many supporters have rallied to donate toward covering his legal costs. The fund was set up by Symantec Cybersecurity Czar Tarah Wheeler and the tech law firm of…

Read More
Odds and Ends 

More than half of major malware attacks victims are industrial targets

A new report from cybersecurity firm Kaspersky Labs examining the targets and intended effects of this weeks massive malware attack comes up with some significant insights. The attack, initially believed to be a variation of commercial malware software known as Petya, appeared to be a vast ransomware scheme. As the story developed, it became clear that the attack was more destructive than it was lucrative, as ransom payments failed to result in a return of decryption keys that would unlock affected systems. Furthermore, at the time of writing, the attack…

Read More
Headlines 

Ransomware attack ‘like having a Tomahawk missile stolen’, says Microsoft boss

Brad Smith says Wannacry attack that locked up to 200,000 computers in 150 countries is a wake-up call amid fears more will be hit as week begins The massive as people returned to work on Monday. But Brad Smith, Microsoft presidents and chief legal officer, said on Sunday that it was the latest example of why the stockpiling of vulnerabilities by governments was such a problem. Smith, whose companys older system software such as Windows XP was exploited by the ransomware, wrote in a blog post : The governments of…

Read More
Headlines 

‘Accidental hero’ finds kill switch to stop spread of ransomware cyber-attack

Move by @malwaretechblog came too late for Europe and Asia, but people in the US were given more time to develop immunity to the attack An accidental hero has halted the global spread of the WannaCry ransomware that has wreaked havoc on organizations including the UKs National Health Service (NHS), FedEx and Telefonica. A cybersecurity researcher tweeting as claimed last year to have stolen a cache of cyber weapons from the National Security Agency (NSA). Ransomware is a type of malware that encrypts a users data, then demands payment in…

Read More
Odds and Ends 

The Shadow Brokers are back with exploits for Windows and global banking systems

Its been several months since their last major exploit, but the hacking group dubbed Shadow Brokers is back. The group, which last year dumped malware it had allegedly stolen from The Equation Group, a hacking team associated with the NSA, posted new files over the weekend and followed up today with a dump of Windows exploits. The latest files contain tools apparently designed to access Windows machines, as well asslideshows documenting the targeting of banking systems. Is being too bad nobody deciding to be paying theshadowbrokers for just to shutup…

Read More