Improved Simplocker variant hits Android users hard

Mobile crypto-ransomware Simplocker has evolved, and returning the encrypted files to their unencrypted state is no longer easy as it was.

RSA Conference 2015: Showcasing the future of information security

Linda Gray, General Manager of RSA Conferences, talks about the growth of RSA Conference, outlines the threats that helped shape this year's agenda, and highlights sessions, speakers and trainings.

Tens of thousands MongoDB databases easily accessible from the Internet

MongoDB is a popular cross-platform, document-oriented NoSQL database, and is used by many major websites and services, including Craigslist, eBay, SourceForge, and many others.

Researcher publishes 10 million usernames and passwords to aid future research

Independent IT security analyst Mark Burnett has released a cleaned up cache of 10 million username and password combinations.

INTERPOL and the fast-paced digital threat landscape

In this interview we learn about the key developments that allow law enforcement to stay on top the fast-paced digital threat landscape, and much more.

Spotlight

Attackers can bypass Windows' protections by changing a single bit

Among the many vulnerabilities that Microsoft patched on Tuesday is one that can be exploited to bypass all Windows security measures by, curiously enough, modifying a single bit of the Windows operating system.

Google Play flaw opens Android devices to silent malware installation

Android users are in danger of getting malicious apps silently installed on their devices by attackers, warns Rapid7's Tod Beardsley, technical lead for the Metasploit Framework.

Microsoft fixes critical remotely exploitable Windows root-level design bug

The vulnerability could allow remote code execution if an attacker convinces a user with a domain-configured system to connect to an attacker-controlled network.

Which kind of security professional are you?

What does your inner voice say? Which kind of a professional are you? Are you arrogant, haughty and superior? Or humble, modest and respectful?

Corporate users hit with fake Microsoft email delivering sneaky malware

A legit-looking spam email campaign is currently targeting corporate users, ultimately leading the victims to difficult-to-detect malware that downloads additional malicious programs on the target's computer.

What's New

16 million mobile devices infected by malware | 13 February 2015. |

Malware infections in mobile devices increased 25% in 2014, compared to a 20% increase in 2013.
- The limits of prevention-centric security programs
How to enable two-step verification for iMessages and FaceTime | 13 February 2015. |

The feature will protect users both on devices running iOS and machines running OS X.
- IT security training is a top priority for CIOs
Phishing attacks increasingly target financial data | 13 February 2015. |

28.8 percent of phishing attacks last year aimed to steal financial data from consumers.
- Scammers pushing fake AdwCleaner in active scareware campaign
A closer look at LepideAuditor Suite | 12 February 2015. |

LepideAuditor Suite is a solution for auditing multiple server instances.
- Increase in enterprise cloud adoption and data risk

Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.

Daily digest

Receive a daily digest of the latest security news.

DON'T
MISS
Fri, Feb 13th

16 million mobile devices are infected by malware

How to enable two-step verification for iMessages and FaceTime

Attackers can bypass Windows' protections by changing 1 bit

Spam campaign leads to PayPal phishing sites

A closer look at LepideAuditor Suite

Malware News

VirusTotal sets up huge AV whitelist to minimize false positives
12 February 2015.

Improved Simplocker variant hits Android users hard

Corporate users hit with fake Microsoft email delivering sneaky malware

New multi-purpose backdoor targets Linux servers

French firms targeted with ransomware

Reviews

Information Security Analytics
8 January 2015.

Detecting and Combating Malicious Email
5 January 2015.

Python Forensics
18 December 2014.

Privacy News

How public Wi-Fi puts unprotected users at risk
11 February 2015.

Jeb Bush dumps emails full of private data online

Majority of dating apps are open to hacks

Be careful when talking in front of a Samsung SmartTV

GPG development will continue as donations pour in

Editor's choice

A closer look at LepideAuditor Suite

LepideAuditor Suite is a solution for auditing multiple server instances. Its centralized platform delivers a single console for configuration change auditing of Active Directory, Group Policy Objects, Exchange Server, SharePoint Server, and SQL Server.

Improved Simplocker variant hits Android users hard

RSA Conference 2015: Showcasing the future of information security

Tens of thousands MongoDB databases easily accessible from the Internet

Researcher publishes 10 million usernames and passwords to aid future research

INTERPOL and the fast-paced digital threat landscape

Spotlight

Attackers can bypass Windows' protections by changing a single bit

Google Play flaw opens Android devices to silent malware installation

Microsoft fixes critical remotely exploitable Windows root-level design bug

Which kind of security professional are you?

Corporate users hit with fake Microsoft email delivering sneaky malware

16 million mobile devices infected by malware | 13 February 2015. |

How to enable two-step verification for iMessages and FaceTime | 13 February 2015. |

Phishing attacks increasingly target financial data | 13 February 2015. |

A closer look at LepideAuditor Suite | 12 February 2015. |

Editor's choice

A closer look at LepideAuditor Suite

Are organizations ready for the embedded computing takeover?

Kill Chain 3.0: Update the cyber kill chain for better defense

Microsoft fixes critical remotely exploitable Windows root-level design bug

Which kind of security professional are you?

Who are the role models in cyberspace?

How GitHub is redefining software development