This Week in Security News

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days.

Below you’ll find a quick recap of topics followed by links to news articles and/or our blog posts providing additional insight. Be sure to check back each Friday for highlights of the goings-on each week!

Nigerian Scammers Use HawkEye to Attack Small Businesses

It doesn’t take an advanced malware to disrupt a business operation. In fact, even a simple backdoor is enough to do it. This level of focus from cybercriminals, combined with the challenges small businesses face in building a solid security strategy for their network, make up a scenario that is strongly in favor of the bad guys.

Major Security Flaw May Affect 600M Samsung Smartphones

Millions of Samsung Galaxy smartphone owners may be at risk of eavesdropping of calls, data theft and installation of malware. The flaw is in the SwiftKey keyboard software preinstalled on the devices.

FBI investigates Cardinals for Hacking into Astros’ database

The St. Louis Cardinals are being investigated by the FBI for allegedly hacking into networks and trying to steal information about the Houston Astros. 

The Battle Continues to Identify the World’s Most Sophisticated Hackers

Unmasking hackers is harder than ever because of false flags, red herrings and wild goose chases, causing security companies and their customers to increasingly play the attribution game.

Magnitude Exploit Kit Uses Newly Patched Adobe Vulnerability (CVE-2015-3105)

Adobe may have already patched a Flash Player vulnerability last week, but several users are still currently exposed and are at risk of getting infected with CryptoWall 3.0 through an updated Magnitude Exploit Kit. 

Zero-day Security Flaws in iOS & OS X Allow Theft of Both Keychain and App Passwords

Security holes in both iOS and OS X allow a malicious app to steal passwords from Apple’s Keychain, as well as both Apple and third-party apps. Researchers were able to upload a malicious app to the App store that was approved for both OSX and iOS platforms.

Windows Server 2003 End of Life Doesn’t Let You RIP

On July 14, 2015, this widely deployed Microsoft operating system will reach its end of life—a long run since its launch in April 2003 – with an estimated 2.6 to 11 million users remaining.

OPM’s Database Sale May Have Come from Another US Agency

A review of the information made available in the criminal underground as a teaser indicates that the assumed OPM database is instead a list of users stolen from a different government agency — Unicor.gov, also known as Federal Prison Industries.

Trend Micro Achieves 100% Detection in AV-Comparatives Real-World May Test

We’re proud of our long standing leadership results and the continuous innovation we’re known for allow us to ensure our customers that they are protected from new threats. 

Please add your thoughts in the comments below or follow me on Twitter; @GavinDonovan.



from Trend Micro Simply Security http://ift.tt/1J7TCiY
via IFTTT