Windshift: Malware Recycled

A recently published deck (PDF) by Abu Dhabi-based DarkMatter’s Taha Karim draws an interesting conclusion: that an Indian cybersecurity group called Appin, active a few years ago, was either targeted by an advanced APT group (and its tools stolen), or its tools stolen by a rogue employee, or that its tools were sold to a …

Continue reading ‘Windshift: Malware Recycled’ »

I’m An Airline, Fly Me

This an email from a bona fide airline:  Dear Sir/Madam, Please be informed that your transaction with [international carrier] has been confirmed. Due to fraud prevention procedure against Credit Card transaction, we would like to validate your recent transaction with [international carrier] by filling information below : Passenger(s) name : Route :Date of Travel :Cardholder …

Continue reading ‘I’m An Airline, Fly Me’ »

The Bangladesh Bank Hack, Part XIV

Lots of attention at the moment on the implications of the Bangladesh Bank hack, now four months old. This is a piece I contributed last week. Quite a bit of water has gone under the bridge since then. We not only don’t know who was behind the hack – North Koreans have been put somewhere …

Continue reading ‘The Bangladesh Bank Hack, Part XIV’ »

Hunt for Deep Panda intensifies in trenches of U.S.-China cyberwar | Reuters

My piece on what Deep Panda looks like in action: Hunt for Deep Panda intensifies in trenches of U.S.-China cyberwar | Reuters: Security researchers have many names for the hacking group that is one of the suspects for the cyberattack on the U.S. government’s Office of Personnel Management: PinkPanther, KungFu Kittens, Group 72 and, most famously, Deep …

Continue reading ‘Hunt for Deep Panda intensifies in trenches of U.S.-China cyberwar | Reuters’ »

Spy in the Sky – are planes hacker-proof?

My take on aviation cybersecurity for Reuters: Plane safe? Hacker case points to deeper cyber issues: “Plane safe? Hacker case points to deeper cyber issues BY JEREMY WAGSTAFF Security researcher Chris Roberts made headlines last month when he was hauled off a plane in New York by the FBI and accused of hacking into flight controls …

Continue reading ‘Spy in the Sky – are planes hacker-proof?’ »

Reuters: Beyond the Breach

My piece on disruption in the cybersecurity space. Too many companies and ideas to mention in Reuter-space, but it’s a start.  Thanks to Ian Geohegan, as ever, for his editing touch.   Beyond the breach: cyberattacks force a defense strategy re-think | Reuters (Reuters) – A barrage of damaging cyberattacks is shaking up the security …

Continue reading ‘Reuters: Beyond the Breach’ »

Scammers Scam Gmail Scam Filters

This amused me. A scam message got through Gmail’s eagle-eyed scam filters telling me to update my account details. That’s not unusual. But was it because the scammers added their own assurance that they had already done the filtering? It says: ************************************************************************** This footnote confirms that this email message has been scanned by New Google …

Continue reading ‘Scammers Scam Gmail Scam Filters’ »

Southeast Asia’s Viral Infection

Southeast Asia is fast developing a reputation as the most dangerous place on the Internet. It’s not a reputation the region can afford to have. By one count Thailand has risen to be the country with the most number of malware infections, by one account, and by another to be the second, all in the …

Continue reading ‘Southeast Asia’s Viral Infection’ »

Stuck on Stuxnet

By Jeremy Wagstaff (this is my weekly Loose Wire Service column for newspaper syndication) We’ve reached one of those moments that I like: When we’ll look back at the time before and wonder how we were so naive about everything. In this case, we’ll think about when we thought computer viruses were just things that …

Continue reading ‘Stuck on Stuxnet’ »