The US has introduced a new tactic in its war against the Islamic State.
The Department of Defense's Cyber Command unit is mounting cyberattacks against the terrorist organization, the New York Times reported Sunday.
Cyberattacks are getting smarter and stealthier as criminals and nation states use a combination of complex techniques to evade detection. The accepted reality now is that traditional protection techniques that rely on static signatures – such as Anti-Virus (AV) – or take a narrow view and ignore vectors like fileless based attacks, are simply no match for today’s threat landscape. So where does this leave organisations trying to protect against new, ever evolving variants of malware or exploits?
Hackers behind the Bangladesh bank heist created malware to compromise the SWIFT financial system. Security researchers said the malware allowed attackers to modify a database logging the bank’s activity over the SWIFT network, to delete records of outgoing transfer orders and to intercept incoming transfer confirmation messages, and to manipulate both account balance logs and a printer used to make hard copies of the transfer orders.
A security researcher looking for flaws in Facebook's internal network has found traces of another intruder who got into the system first.
The hacker, or hackers, had access to Facebook's internal system for several months, giving them access to hundreds of employee usernames and passwords, explained researcher Orange Tsai in a blog post published last week.
Cisco Systems has released patches to fix serious denial-of-service flaws in its Wireless LAN Controller (WLC) software, Cisco Adaptive Security Appliance (ASA) software and the Secure Real-Time Transport Protocol (SRTP) library that's used in many products.