Kaspersky Lab experts have noted an emerging trend – a growth in the number of attacks using encryption. Such attacks are highly effective due to the difficulty in identifying them among the overall flow of clean requests. Recently, the company encountered yet more evidence of this trend – an attack exploiting vulnerabilities in WordPress via an encrypted channel.
Read more on Help Net Security
Chinese hackers are targeting aviation systems in the quest for information and intellectual property which will boost the country’s competitiveness, security researchers say. Cyberattacks against the aviation industry are nothing new, but with the inclusion of Internet-capable devices at the basic level of embedded devices to in-flight Wi-Fi and connected aviation systems, there are more avenues than ever that threat actors can exploit.
Read more on ZDNet
Countless wannabe hackers are asking for coding help to use Mirai, all collected by Digital Shadows, a cybersecurity firm. These sometimes laughable pleas for help show that launching DDoS has become an attractive activity for hackers of all skills levels, and even those who have no skills, want in.
Full article via Motherboard
In the second half of 2016, ESET researchers identified a unique malicious toolset that was used in targeted cyberattacks against high-value targets in the Ukrainian financial sector. The authors at We Live Security believe that the main goal of attackers using these tools is cybersabotage. This blog post outlines the details about the campaign that we discovered.
Read the article on We Live Security
New research from Recorded Future has identified that threat actors are making use of plain text upload sites like Pastebin to serve up malware encoded in base64.
Read the full article on Recorded Future
Cybersecurity threats are increasing each year, but businesses report shortage of qualified candidates coming out of undergraduate programs. Preparing the next generation of cybersecurity experts won’t be a quick fix, so business will need to get strategic.
Read the full article on CIO
France announced its first cyber-warfare army unit on Monday, aimed at increasing the country’s hacking skills as concerns grow in Europe and the United States about Russian capabilities.
Full article via Security Week
A hacker claims to have stolen thousands of passport numbers and other pieces of personal information from the website of a Russian consular department.The hacker, who calls himself Kapustkiy, plans to publish around a thousand records out of the 30,000 or so he allegedly obtained. The apparent target was ambru.nl, the website for the Consular Department of the Embassy of the Russian Federation in the Netherlands.
Read more on Motherboard
Richard Craib is a 29-year-old South African who runs a hedge fund in San Francisco. Or rather, he doesn’t run it. He leaves that to an artificially intelligent system built by several thousand data scientists whose names he doesn’t know. Under the banner of a startup called Numerai, Craib and his team have built technology that masks the fund’s trading data before sharing it with a vast community of anonymous data scientists. Using a method similar to homomorphic encryption, this tech works to ensure that the scientists can’t see the details of the company’s proprietary trades, but also organizes the data so that these scientists can build machine learning models that analyze it and, in theory, learn better ways of trading financial securities.
Full article on Wired