L33tdawg: Saumil Shah's stegosploit in the wild!
A stealthy modular version of the Stegoloader banking trojan is spreading through malicious PNG files, according to researchers at Dell SecureWorks' Counter Threat Unit (CTU).
The CTU researchers reported uncovering the variant in a threat advisory, warning that the malware has an advanced modular architecture capable of dodging many traditional security tools.
British outfit Intelligent Environments says it in discussions with online banks to sell what it says is the first authentication scheme to replace passwords with emojis.
The company claims emojis have 480 more permutations than four digit passcode equivalents, a statistic we've struggled to verify independently.
Intelligent Environments' managing director David Webber says the concept is likely not able to be patented but is probably the first of its kind. "We've had input from lots of millennials when we developed the technology," Webber says.
Last month's MacKeeper vulnerability is now being exploited in the wild to hijack Apple machines, according to BAE security researcher Sergei Shevchenko.
The hacker says criminals are using social engineering to trick users into installing malware capable of exfiltrating data using a then zero-day vulnerability in the notorious software which has been downloaded more than 20 million times.
Shevchenko says it took only days after the vulnerability and proof-of-concept disclosure for malware to begin targeting users who had installed MacKeeper.
A union representing U.S. government workers says it believes detailed personal information on millions of current and former federal employees that was stolen by hackers was not encrypted.
The American Federation of Government Employees (AFGE) said the attack on the Office of Personnel Management (OPM) resulted in the theft of all personnel data for every federal employee.
Hackers have increasingly been targeting oil companies, given the prospect that they could take control of the energy industry's deadly oil equipment along with sensitive data.
Bloomberg, citing various surveys and experts, reported that hackers have made the energy industry a favourite target due to its strategic and economic importance.