Each week, the PhishLabs team posts The Week in Cybercrime (TWIC) to recap noteworthy cybercrime articles and reports (open source).
Vawtrak’s expanding infrastructure (PhishLabs)
The malware known as Vawtrak is a banking Trojan which has increased in sophistication since its inception more than eight years ago. Systems infected with Vawtrak become part of a botnet managed by a Russian cybercrime gang who operate a Cybercrime-as-a-Service enterprise based on selling botnet access and support to their clients.
Defense Contract Management Agency Probes Hack (KrebsOnSecurity)
The Defense Contract Management Agency, the U.S. federal government entity responsible for performing contract administration services for the Department of Defense, is responding to a suspected cybersecurity breach and has pulled a number of its servers offline while the investigation continues, KrebsOnSecurity has learned.
Sophisticated Mobile Malware Compromises 16Mn Devices (infosecurity)
About 16 million mobile devices are infected by malicious software that is secretly spying on users, stealing confidential information and pilfering data plans.
N.Y. to Launch Cyber Exams for Insurers (DataBreach)
In the wake of the cyber-attack against health insurer Anthem Inc., New York's Department of Financial Services has announced plans to conduct "regular, targeted assessments of cybersecurity preparedness" for all insurers doing business in the state.
40,000 Unprotected MongoDB Databases Found on the Internet (TheHackerNews)
Nearly 40,000 organisations running MongoDB, a NoSQL high performance and cross-platform document-oriented database, are found to be unprotected and vulnerable to hackers.
Simplocker ransom Trojan returns with more dangerous encryption (CSO)
The Simplocker ransom malware that infected thousands of Android devices last summer has dramatically boosted the power of its encryption design in a new version, security firm Avast as discovered.
1 Billion Data Records Stolen in 2014, Says Gemalto (WSJ)
Data breaches increased 49% with almost 1 billion data records compromised in 1,500 attacks in 2014 – a 78% increase in the number of data records either lost or stolen in 2013, a new report by digital security firm Gemalto saId. The Netherlands-based firm said about 575 million records were compromised in 2013.