Breaking News




Source: Veracode.com

Jul 01, 2017
We’re launching a beta of the Veracode Community this July. As your Community Manager, I am inviting any and all Veracode customers to participate as early adopters. Why should you participate? … to take advantage of easy access to resources to help you get the most out of Veracode and secure your software simply and systematically … to interact with your peers across the Veracode customer bas...


Source: Veracode.com

Jun 30, 2017
Prevention is often derided as a naïve, outdated notion in information security. Today, the talk in security often centers around the idea of “detection and response.” The thought around this approach is that we must assume attackers will get into our networks – it is not a question of “if” but “when.” Therefore, the only good security is to detect them inside, monitor their actions, and then ...

Enlarge / A computer screen displaying Eternalromance, one of the NSA exploits used in Tuesday's NotPetya outbreak. (credit: Matthew Hickey) Update:This post was revised throughout to reflect changes F-Secure made to Thursday's blog post. The company now says that the NotPetya component was probably completed in February and assuming that timeline is correct, it didn't have any definitive be...


Source: Kaspersky (securelist.com)

Jun 29, 2017
After an analysis of the encryption routine of the malware used in the Petya/ExPetr attacks, we have thought that the threat actor cannot decrypt victims’ disk, even if a payment was made. This supports the theory that this malware campaign was not designed as a ransomware attack for financial gain. Instead, it appears it was designed as a wiper pretending to be ransomware. Below the technical...

Another major cyberattack hit computer networks around the globe on Tuesday, beginning in the Ukraine, when a paralyzing ransomware struck websites of government agencies, banks, transportation, and power plants, before spreading to Russia, the UK, U.S., and other nations. Coming just weeks after the WannaCry ransomware wreaked havoc, this new attack – initially believed to be a strain of the ...

Enlarge / Code in Tuesday's attack, shown on the left, was altered to permanently destroy data. (credit: Matt Suiche) Tuesday's massive outbreak of malware that shut down computers around the world has been almost universally blamed on ransomware, which by definition seeks to make money by unlocking data held hostage only if victims pay a hefty fee. Now, some researchers are drawing an even ...


Source: Kaspersky (securelist.com)

Jun 28, 2017
Earlier today (June 27th), we received reports about a new wave of ransomware attacks (referred in the media by several names, including Petya, Petrwrap, NotPetya and exPetr) spreading around the world, primarily targeting businesses in Ukraine, Russia and Western Europe. If you were one of the unfortunate victims, this screen might look familiar: Kaspersky Lab solutions successfully stop the ...

Enlarge / The note left on computers infected by quick-spreading malware dubbed PetyaWrap. (credit: Symantec) A new ransomware attack similar to last month's self-replicating WCry outbreak is sweeping the world with at least 80 large companies infected, including drug maker Merck, international shipping company Maersk, law firm DLA Piper, UK advertising firm WPP, and snack food maker Mondele...