Each week, the PhishLabs team posts The Week in Cybercrime (TWIC) to recap noteworthy cybercrime articles and reports (open source).
Mitigating the Impact of Shellshock on Financial Institutions (PhishLabs)
With the recent discovery of the Shellshock bug, many banking institutions are left wondering what the implications are to the financial industry and how to begin to secure systems. In this post, we've addressed common questions and mitigation tactics for banking entities to reduce the risk of exploitation through the Shellshock bug vulnerability.
JPMorgan: Info on 76 Million Households Hit in Data Breach (Security Week)
JPMorgan Chase said Thursday that information such as names and addresses for 76 million household customers and seven million businesses was compromised in a data breach this summer.
The Unpatchable Malware That Infects USBs Is Now on the Loose (Wired)
It’s been just two months since researcher Karsten Nohl demonstrated an attack he called BadUSB to a standing-room-only crowd at the Black Hat security conference in Las Vegas, showing that it’s possible to corrupt any USB device with insidious, undetectable malware.
Advanced iOS virus targeting Hong Kong protestors - security firm (Reuters)
Cybersecurity researchers have uncovered a computer virus that spies on Apple Inc's iOS operating system for the iPhone and iPad, and they believe it is targeting pro-democracy protesters in Hong Kong.
Global Phishing Survey: Trends and Domain Name Use in 1H2014 (APWG)
The new Global Phishing Survey released by APWG today at the association’s annual research conference shows that Apple is the most phished brand in the world, accounting for 17 percent of all phishing reports sampled and analyzed from the first half of 2014.
FBI opens malware tool to public as part of radical crowdsourcing plan (Tech World)
The FBI is close to allowing anonymous outsiders to use its Malware Investigator tool for the first time through a dedicated crowdsourcing portal, an official reportedly confirmed at last week’s Virus Bulletin conference.