Computer Security Updates Week 4 of June 2014

Refer to Computer Security Updates Week 5 of May 2014; the biggest news was the incident of eBay Database Breached via Employee Credentials.

For this week / last week, here are / were the biggest news.
  • PR - PJ, Jun 26, 2014 - Kaspersky Discovers spyware tool, RCS, aka Galileo
  • PR - PJ, Jun 26, 2014 - Kaspersky: The Luuuk banking fraud campaign: half a million euros stolen in a single week
  • PR - KL, Jun 20, 2014 - Symantec Appoints Adrian Jones as Senior Vice President, APJ
  • PR - KL, Jun 17, 2014 - EMC: Global Internet Privacy Study Reveals Consumers’ Conflicting Views
  • PR - KL, Jun 16, 2014 - CA Technologies Wins Excellence in Governance, Risk & Compliance Solutions Award
  • PR - SG, Jun 12, 2014 - CyberArk: Advanced Cyber Attacks Reliant on Privileged Credential Exploitation
  • PR - Jun 12, 2014 - LG Partners with McAfee to Bring Anti-theft Feature to LG G3
  • PR - Jun 10, 2014 - McAfee: Cybercrime costs businesses US$445 billion worldwide
  • PR - Jun 9, 2014 - Cyberthreat Map awarded ‘Cutting Edge Project of the Week’ by FWA and Adobe



PR - PJ, Jun 26, 2014 - Kaspersky Discovers spyware tool, RCS, aka Galileo

Today, Kaspersky Lab published a new research report mapping a massive international infrastructure used to control ‘Remote Control System’ (RCS) malware implants, and identifying previously undiscovered mobile Trojans that work on both Android and iOS. These modules are part of the so-called ‘legal’ spyware tool, RCS, aka Galileo, developed by the Italian company HackingTeam.

The list of victims indicated in the new research, conducted by Kaspersky Lab together with its partner Citizen Lab, includes activists and human rights advocates, as well as journalists and politicians.

During the latest analysis, Kaspersky Lab’s researchers were able to map the presence of more than 320 RCS C&C servers in 40+ countries. The majority of the servers were based in the United States, Kazakhstan, Ecuador, the UK and Canada.

Details.

PR - PJ, Jun 26, 2014 - The Luuuk banking fraud campaign: half a million euros stolen in a single week

The experts at Kaspersky Lab’s Global Research and Analysis Team have discovered evidence of a targeted attack against the clients of a large European bank. According to the logs found in the server used by the attackers, apparently in the space of just one week cybercriminals stole more than half a million Euros from accounts in the bank. The first signs of this campaign were discovered on 20 January this year when Kaspersky Lab’s experts detected a C&C server on the net. The server’s control panel indicated evidence of a Trojan program used to steal money from clients’ bank accounts.

The experts also detected transaction logs on the server, containing information about which sums of money were taken from which accounts. All in all, more than 190 victims could be identified, most of them located in Italy and Turkey. The sums stolen from each bank account, according to the logs, ranged between 1,700 to 39,000 Euros.

Details.

PR - KL, Jun 20, 2014 - Symantec Appoints Adrian Jones as Senior Vice President, APJ

Symantec announces the appointment of Adrian Jones as Senior Vice President for its Asia Pacific and Japan region. He has held multiple senior leadership roles across key technology companies and brings with him strong experience to grow Symantec’s business in the region.

Adrian Jones, SVP, Symantec, APAC and Japan

Jones has held senior leadership roles with technology companies across multiple geographies. Most recently he was the General Manager and Senior Vice President of Oracle Asia Pacific. Prior to joining Oracle he was Senior Vice President of Enterprise Servers, Storage, and Networking responsible for driving global customer relationships and channel partnerships at Hewlett Packard (HP) in Asia Pacific and Japan. He also held the position of Vice President and General Manager of HP's Americas Solution Partners managing all channel partnerships throughout Canada.

Details.

PR - KL, Jun 17, 2014 - Global Internet Privacy Study Reveals Consumers’ Conflicting Views

EMC Corporation today released the findings of the EMC Privacy Index, a global study assessing consumer attitudes of online privacy. Spanning 15 countries and 15,000 consumers, the study reveals consumers hold viewpoints on privacy that vary widely by geography and the type of activity engaged in while online.

The conclusion? People want benefits of technology without sacrificing privacy. Three privacy paradoxes emerged, each with powerful implications for consumers, businesses and technology providers:
  • “We Want it All” Paradox: Consumers say they want all conveniences and benefits of digital technology, yet say they are unwilling to trade privacy to get them
  • “Take No Action” Paradox: Although privacy risks directly impact many consumers, most say they take virtually no special action to protect their privacy – instead placing the onus on those handling their information such as government and businesses
  • “Social Sharing” Paradox: Users of social media sites claim they value privacy, yet they say they freely share large quantities of personal data – despite expressing a lack of confidence and trust in those institutions to protect that information

Details.

PR - KL, Jun 16, 2014 - CA Technologies Wins Excellence in Governance, Risk & Compliance Solutions Award

CA Technologies today announced that it has been awarded the best in Governance, Risk & Compliance Solution category of the 2014 Network World Asia (NWA) Information Management Awards, reaffirming its leadership in the security management, marketplace in Asia Pacific and Japan.

The security solutions offered by CA Technologies, which help address needs for Governance, Risk and Compliance, were voted as industry best by the NWA editors and 100 CIOs and IT heads from the Asia Pacific region. These senior industry players honored CA Technologies for its comprehensive range of solutions that allow organizations to conveniently audit IT controls and report results in multiple, diverse ways.

Details.

PR - SG, Jun 12, 2014 - CyberArk: Advanced Cyber Attacks Reliant on Privileged Credential Exploitation

A new cyber-security report reveals that while new and sophisticated malware variants were continually developed to exploit systems in 2013, criminals, hacktivists and advanced attacks continue to do the most damage by exploiting privileged accounts. Compiled by CyberSheath’s advanced security investigations team and commissioned by CyberArk, “The Role of Privileged Accounts in High Profile Breaches,” also includes a detailed case study covering a Fortune 500 company’s struggle with, and eventual remedy for, a dramatic reduction in recorded breaches.

CyberSheath’s analysis of 10 of 2013’s most notable cyber attacks, including the NSA leak by insider Edward Snowden, point of sale (POS) breaches like the many attacks on retailers, and the attack on the New York Times –found that privileged accounts were on each attacker’s critical path to success 100 per cent of the time, regardless of the perimeter attack vector. The research uncovered that increased visibility and actionable intelligence on privileged accounts within an organisation’s IT environment greatly increased the ability for those organisations to successfully detect and disrupt an attack.

Details.

PR - Jun 12, 2014 - LG Partners with McAfee to Bring Anti-theft Feature to LG G3

With ever-growing concerns over mobile phone thefts (along with the data they hold) and malware attacks, McAfee, part of Intel Security together with LG Electronics, today announces that users of the new LG G3 can already make full use of the latest version of McAfee Mobile Security which includes a new anti-theft feature designed to protect them from unauthorized factory resets.

The multiyear global partnership between McAfee and LG provides users an easy and comprehensive way of safeguarding their device and data against identity theft and privacy threats.

Features include:
  • The Kill Switch which allows users to remotely disable their phones in the event of device loss or theft.
  • Ability to wipe content to prevent personal information from being compromised
  • Antivirus, data backup, remote tracking all available for free through the McAfee app for five years

PR - Jun 10, 2014 - Cybercrime costs businesses US$445 billion worldwide

McAfee, part of Intel Security, released “Net Losses – Estimating the Global Cost of Cybercrime,” a new report that shows the significant impact that cybercrime has on economies worldwide.

The report from Centre for Strategic and International Studies (CSIS) reveals that cybercrime costs businesses about U$445 billion worldwide.

In Singapore alone, the cost of cybercrime is estimated at an astounding US$1 billion (SG$1.25 billion), which accounts for almost 0.41% of Singapore’s annual GDP.

Cybercrime damages trade, competitiveness, innovation, and global economic growth, and it’s effect on intellectual property (IP) is also particularly damaging. The report found that IP creation and IP-intensive industries lose more in trade, jobs and income from cybercrime than countries depending more on agriculture or industries of low-level manufacturing.

Details.

PR - Jun 9, 2014 - Cyberthreat Map awarded ‘Cutting Edge Project of the Week’ by FWA and Adobe

The Cyberthreat Real-Time Map project has been awarded 'CUTTING EDGE PROJECT OF THE WEEK' by Favourite Website Awards (FWA) and Adobe. The Cutting Edge award recognizes projects with a commitment to moving the web forward by leveraging the latest features and technologies in modern browsers and setting new standards and expectations around what is possible on the web.

The dynamic 3D world map visualizes the sheer volume of viral detections in real time – data comes from Kaspersky Security Network (KSN), Kaspersky Lab’s globally distributed cloud-based infrastructure. The types of displayed threats include malicious objects detected during on-access and on-demand scans, email and web antivirus detections, as well as objects identified by vulnerability and intrusion detection sub-systems.

Users can zoom in and out of either a globe or flat map view to pinpoint the major threats and identify the most infected areas. A breakdown of each country’s level of infection can be triggered with a click, along with the ability to directly select a country and share statistics across popular social media platforms.

Comments