Canadian govt spooks open source anti-malware analytics tool

Follow Five-Eye partner agencies. Canada’s main signals intelligence agency has released the code for a malware scanner and analytics tool as open source.  The Communications Security Establishment (CSE) said the AssemblyLine tool is designed to analyse large volumes of files, and can automatically rebalance workloads. Each file is tagged with a unique identifier, and passed through […]

Read More Canadian govt spooks open source anti-malware analytics tool

New Mirai copycat IoT botnet spreading

Code being actively modified. Security researchers have warned that a new worm attacking internet-connected and vulnerable devices is currently spreading throughout the world. Dubbed IoT_reaper by Chinese security vendor Qihoo 360, the malware was first spotted in September this year and has been spreading since then. The vendor said it had found more than 10,000 […]

Read More New Mirai copycat IoT botnet spreading

APNIC resets passwords after whois credentials spill

Accidentally published hashed passwords. Regional internet registry for Australia APNIC has been forced to reset all passwords for objects in its whois database after a technical error leaked hashed authentication credentials. APNIC upgraded its whois database – which carries information about organisations and people who have been allocated internet-numbered networks, and who can alter the […]

Read More APNIC resets passwords after whois credentials spill

Kaspersky, under siege, fights back with transparency promise

Will allow independent reviews of code and business processes. Kaspersky Lab has announced a ‘global transparency initiative’ aimed at countering allegations the security vendor is secretly assisting Russian authorities with cyber surveillance. The initiative promises independent reviews of product source code, software updates, software development lifecycles, and supply chain risk mitigation strategies. It follows reports that Israeli counter-intelligence agencies […]

Read More Kaspersky, under siege, fights back with transparency promise

NATO cyber conference flyer used as phishing bait

“Fancy Bear” APT targets high-ranking officials. Nationstate actors are attempting to plant malware on targets’ computers via an invitation to a NATO-organised cyber security conference, researchers have found. Cisco’s Talos security research division discovered a new phishing campaign from advanced persistent threat (APT) actors Group 74 – also known as Fancy Bear, APT28, Sofacy and […]

Read More NATO cyber conference flyer used as phishing bait

DUHK attack recovers secret keys from Fortinet devices

“Absurd” flaw in government-certified crypto. Cryptographers have devised an attack that allows the recovery of secret digital keys from network devices and therefore full, silent interception of traffic. Researchers Nadia Heninger, Shaanan Cohen and Matthew Green from the John Hopkins University found that devices using the American National Standards Institute X9.31-based pseudo-random number generator (PRNG) can […]

Read More DUHK attack recovers secret keys from Fortinet devices