Entries by

,

Microsoft casts net to phish for crooks

Microsoft Security have issued a detailed report on a massive phishing-as-a-service operation named BulletProofLink that offered as a subscription all the tools needed to conduct a campaign. The phishing-as-a-service, or PHaaS, model differs from the phishing kits that many gangs have used in that it is more expansive and handles many of the small details that could befuddle a less tech-savvy attacker.

Plans to clampdown on ransomware attacks

The US Treasury Department is set to announce sanctions and similar guidance designed to disrupt the financial infrastructure that has enabled ransomware attacks. The agency is considering levying fines and other penalties on businesses that cooperate with hackers – including exchanges and mixer services that may allow cybercriminals to launder illicit funds.

Microsoft Jet Database is vulnerable

Researchers say they have demonstrated how exploits of Microsoft Jet Database Engine vulnerabilities could lead to remote attacks on Microsoft Internet Information Services and Microsoft SQL Server to gain system privileges. Microsoft says it recently patched the flaws.

Tech-titans turn huge profits

Apple, Alphabet and Microsoft reaped almost $1bn a week in profits in latest quarterly announcements. At $56.8bn, the total was almost double the year before and 30 per cent more than investors had predicted.

Post Brexit shake-up of data rules planned

A new information commissioner will be put in charge of overseeing the transformation. John Edwards, currently the privacy commissioner of New Zealand looks likely to be given the nod to replace current supremo Elizabeth Denham. Dowden said: “Now that we have left the EU I’m determined to seize the opportunity by developing a world-leading data policy that will deliver a Brexit dividend for individuals and businesses across the UK.

Ransomware raiders plundering like Vikings

Ransomware gangs are plundering companies in Viking like raids, say Britain’s former top cyber spy. Ciaran Martin, the former chief executive of Britain’s National Cyber Security Centre, said: “We should start from the presumption that large scale transfers of wealth to Russian hackers should not be allowed.”