Security

A new version of popular Linux toolkit REMnux is now available to download, equipping security analysts with an improved arsenal of tools with which to scrutinize Linux malware.

Built on Ubuntu, REMnux has been in circulation for more than 10 years, now in its seventh incarnation. The latest version, REMnux 7, does away with some tools present in previous iterations and also adds a handful of new ones to the roster.

GPS device and services provider Garmin on Monday confirmed that the worldwide outage that took down the vast majority of its offerings for five days was caused by a ransomware attack.

Instagram encourages its billion or so users to add filters to their photos to make them more shareable. In February 2019, some Instagram users began editing their photos with a different audience in mind: Facebook’s automated porn filters.

Hackers are actively exploiting two unrelated high-severity vulnerabilities that allow unauthenticated access or even a complete takeover of networks run by Fortune 500 companies and government organizations.

More than 1,000 unsecured databases so far have been permanently deleted in an ongoing attack that leaves the word “meow” as its only calling card, according to Internet searches over the past day.

The attack first came to the attention of researcher Bob Diachenko on Tuesday, when he discovered a database that stored user details of the UFO VPN had been destroyed. UFO VPN had already been in the news that day because the world-readable database exposed a wealth of sensitive user information, including:

Diebold Nixdorf, which made $3.3 billion from ATM sales and service last year, is warning stores, banks, and other customers of a new hardware-based form of “ jackpotting,” the industry term for attacks that thieves use to quickly empty ATMs.

Two more cyber-attacks have hit Israel's water management facilities, officials from the Water Authority said last week.Officials said the attacks took place last month, in June, and didn't cause any damage to the attacked organizations.

The first attack hit agricultural water pumps in upper Galilee, while the second one hit water pumps in the central province of Mateh Yehuda, local media reported last week.

Diebold Nixdorf, which had sales of $3.3 billion from ATM sales and service last year, is warning stores, banks, and other customers of a new hardware-based form of “jackpotting,” the industry term for attacks that thieves use to quickly empty ATMs.

Almost three years ago, Google introduced its Advanced Protection Program (APP), a security plan for high-risk users that requires hardware keys for account access and is arguably the industry's most effective way to stop account takeovers in their tracks. But until now there was a major flaw that held APP back: its iPhone and iPad offerings were prohibitively limited for most users. Now that this has changed—more on the change in a bit—I feel comfortable recommending APP much more widely.

A new RSA Security report on cyberfraud has troubling news for users north of the border.

The "RSA Quarterly Fraud Report: Q1 2020," released Thursday, examined a total of 50,119 incidents of fraud across the globe, with 54% attributed to phishing attacks. Daniel Cohen, RSA's head of anti-fraud products, said phishing is still the "go-to tool" for cybercriminals targeting end users at large.