News

News

• March 04, 2016 04 Mar'16

  McCaul pitches encryption commission to solve 'going dark' problem

  Rep. Michael McCaul makes the case for encryption commission legislation as an answer to the 'going dark' problem in the face of global cyberthreats.

• March 03, 2016 03 Mar'16

  Military-grade security focuses on isolation and action

  Presenters at the RSA Conference 2016 said military-grade security for enterprise networks is possible by taking a zero-tolerance policy to network traffic.

• March 03, 2016 03 Mar'16

  Cybersecurity checklist a strategy tool for increasing attack costs

  The U.S. Cyber Consequences Unit rolled out a new version of its cybersecurity checklist, which it claims will help reduce attacks by increasing the costs of those attacks.

• March 03, 2016 03 Mar'16

  Admiral Rogers, chief of U.S. Cyber Command, seeks cooperation

  Private sector cooperation with the government is key to successful protection against cyberthreats, says U.S. Cyber Command chief Michael Rogers in an address to RSA Conference 2016.

• March 03, 2016 03 Mar'16

  DOD announces 'Hack the Pentagon' bug bounty program

  Defense Secretary Ashton Carter announces the 'Hack the Pentagon' bug bounty program and new Defense Innovation Advisory Board to be headed by Eric Schmidt.

• Sponsored News

  • It’s Time to Modernize Your SOC

    Sponsored by Microsoft - With the shift to remote work caused by COVID-19, Security Operations Centers (SOCs) are under more pressure than ever, particularly with many SOC workers also working from home. Today’s reality is that SOCs have to embrace a new way of working in order to keep their analysts and admins effective and to ensure that morale doesn’t collapse under the weight of too much work and pressure. See More

  • 6 Factors to Consider in Building Resilience Now

    Sponsored by Microsoft - COVID-19 has been, and continues to be, a stark reminder of the importance of business resilience. Organizations of all types and sizes have had to adjust to rapidly changing and unpredictable circumstances: A shift to remote work, supply chain disruptions, new digitally driven business models and an environment where uncertainty is the rule, not the exception. See More

  • Why Zero Trust, Why Now

    Sponsored by Microsoft - The concept of a Zero Trust cybersecurity architecture has been around for more than a decade, but adoption didn’t really begin to take hold until the past couple of years. As with many technology innovations, it hasn’t always been clear just what Zero Trust is all about and, more important, how to implement it easily and cost effectively. See More

  • 5 Best Practices To Secure Remote Workers

    Sponsored by Microsoft - The impact of COVID-19 has changed the dynamics and landscape of remote work for at least the foreseeable future and, probably, forever. All of a sudden, organizations across all industries had to scale remote workers at unprecedented intensity and speed. See More

  View All Sponsored News
• March 03, 2016 03 Mar'16

  Government encryption backdoor debate is more nuanced at RSAC

  RSAC panelists had a spirited and nuanced debate about government encryption backdoors, and the topic is more difficult to parse than expected.

• March 02, 2016 02 Mar'16

  Cybercrime trends point to growing sophistication

  Sophos' James Lyne warns that cybercriminals are becoming more effective, thanks to document-based malware and advanced social engineering techniques.

• March 02, 2016 02 Mar'16

  Bruce Schneier on IBM grabbing him up with Resilient Systems

  Bruce Schneier chats with SearchSecurity during lunch at RSAC about IBM's plans to acquire Resilient Systems to complete their security offering.

• March 02, 2016 02 Mar'16

  Diffie, Hellman win Turing Award; cryptography research update

  Diffie, Hellman receive Turing Award and experts review cryptography research, Apple vs. FBI, Juniper backdoors, quantum crypto and the future of cryptography.

• March 01, 2016 01 Mar'16

  Incident response procedures speed discovery-response time

  Many companies become aware of a security event but take hours or days to perform triage and finally remediate it. Incident response procedures can vary based on the organization, and the type of security incident, which could involve DDoS attacks, ...

• March 01, 2016 01 Mar'16

  Yoran: Solve cybersecurity challenges with creativity, encryption

  Amit Yoran kicked off RSAC 2016 by publicly backing strong encryption, denouncing the 'going dark' debate and calling for more creativity in cybersecurity.

• March 01, 2016 01 Mar'16

  Microsoft sounds the bell for strong encryption, privacy

  Microsoft's top lawyer criticized the U.S. government's efforts to undermine strong encryption, and called on the industry to support and defend the technology.

• March 01, 2016 01 Mar'16

  Security incident handling: Prepare to find answers

  CISOs work in stressful scenarios. Before you face executives armed with questions about security incident handling, it's time to formulate some of your own.

• February 26, 2016 26 Feb'16

  Lines drawn in iPhone backdoor case; Apple gets backup

  The public debate surrounding the iPhone backdoor case heats up; Apple and the FBI clarify their messages; and Apple gets legal support from major tech companies.

• February 26, 2016 26 Feb'16

  Microsoft EMET vulnerability turns tool against itself

  Roundup: Microsoft EMET is vulnerable to exploit; it's time to update to v5.5.Plus; Dell, IBM and Gemalto research reports claim cybercriminals are getting smarter, bigger and faster.

• February 24, 2016 24 Feb'16

  RSA Conference 2016: An opportunity to take a stand

  The technology industry has allowed the debate over encryption and "going dark" to get out of hand. But it can start to right that wrong at RSA Conference next week.

• February 19, 2016 19 Feb'16

  PCI DSS 3.2 marks the end of major updates to the standard

  The PCI council has determined its data security standard is finally mature enough to forego significant updates, so PCI DSS 3.2 will be more of an incremental modification.

• February 19, 2016 19 Feb'16

  DHS posts CISA rules for reporting cyberthreat indicators

  Roundup: DHS posts first pass at guidelines for cyberthreat indicator reporting under CISA. Plus, the U.S. planned a major cyberattack against Iran if nuclear diplomacy had failed, and more news.

• February 18, 2016 18 Feb'16

  RSA Conference 2016 preview: IoT and encryption take center stage

  The Internet of Things once again dominates the agenda at RSA Conference 2016, but experts say there will be other hot topics, including the growing debate between IT and the government over encryption backdoors.

• February 18, 2016 18 Feb'16

  Data breach lawsuits indicate a troubling trend for enterprises

  Data breaches are becoming more and more common -- as are class-action lawsuits from affected customers and employees. So, what are the costs of data breach lawsuits?

• February 17, 2016 17 Feb'16

  Security startups vie for honors in RSA Innovation Sandbox

  The RSA 2016 Innovation Sandbox competition highlights the top security startups, but only one will be awarded title of 'RSA Conference 2016's Most Innovative Startup.'

• February 17, 2016 17 Feb'16

  Court rules Apple needs iPhone backdoor; Tim Cook opposes

  A court order has ruled that Apple needs to create an iPhone backdoor to unlock the device used by the gunman in the San Bernardino killings, but Tim Cook opposed the ruling.

• February 16, 2016 16 Feb'16

  Ransomware attack causes internal emergency at Hollywood hospital

  The FBI, along with the LAPD, began investigating a ransomware attack at a Hollywood hospital that has crippled the facility's operations and could cost millions.

• February 16, 2016 16 Feb'16

  RSA Conference 2016 special coverage: News and analysis

  Find out what's happening in the information security industry with breaking news by the SearchSecurity team at RSA's 2016 conference in San Francisco.

• February 12, 2016 12 Feb'16

  Study: IT staff pressured to buy useless cybersecurity products

  A new study found that IT managers feel pressured to purchase new cybersecurity products even if they don't have the skills to implement the technology properly.

• February 12, 2016 12 Feb'16

  Uncertainty over Privacy Shield as Facebook faces penalties

  Roundup: Details are uncertain for the EU-U.S. Privacy Shield framework, as Facebook is charged with privacy violations in France over the use of the now-illegal Safe Harbor framework; more news.

• February 11, 2016 11 Feb'16

  IRS hack leveraged stolen Social Security numbers

  An IRS hack has compromised thousands of tax returns, and the attack was made possible through the use of stolen Social Security numbers.

• February 10, 2016 10 Feb'16

  Congress Republicans rebuff Obama cyber budget effort

  Obama ups spending by 35% in the 2017 cyber budget, adds a federal CISO and pushes multifactor authentication, but still faces stiff Republican opposition in Congress.

• February 09, 2016 09 Feb'16

  February 2016 Patch Tuesday: IE Flash vulnerabilities get a bulletin

  Microsoft's February 2016 Patch Tuesday release goes after Adobe Flash vulnerabilities and more Windows Journal flaws.

• February 09, 2016 09 Feb'16

  Social engineering attack leads to leaked info on 20,000 FBI agents

  A hacker took advantage of insufficient authentication protocols within the DOJ to perform a social engineering attack, resulting in leaked info on 20,000 FBI agents.

• February 05, 2016 05 Feb'16

  Researchers offer motive behind China cyberattacks

  Roundup: A new report may explain China's cyber targeting of health insurers. Plus, malware activity shows a big rise at year-end; more software vulnerabilities were reported.

• February 04, 2016 04 Feb'16

  Former CIA/NSA director Hayden supports strong encryption

  Former CIA and NSA director General Michael Hayden came out in favor of strong encryption but representatives in Congress and the Senate are continuing to pursue encryption backdoor legislation.

• February 03, 2016 03 Feb'16

  Costly government cybersecurity system needs major changes

  A new report on the EINSTEIN government cybersecurity system concluded that it is only 'partially meeting its stated system objectives,' and needs some major changes.

• February 01, 2016 01 Feb'16

  Threat defense, hybrid clouds and 'connections others miss'

  We often talk about shifts in information security from advanced threats to emerging technology defenses, but this year marks a few major turning points.

• February 01, 2016 01 Feb'16

  Security attack? 2016 defenses focus on damage control

  What methods are attackers using to find vulnerabilities in corporate networks? Are these security attacks really advancing? We look at the latest hacking techniques and find out from top security researchers how malware and advanced cyberthreats ...

• February 01, 2016 01 Feb'16

  Harvard report: Metadata means there is no 'going dark' for the FBI

  A new report from Harvard said data 'going dark' in the face of strong encryption shouldn't be a problem for law enforcement and intelligence agencies.

• February 01, 2016 01 Feb'16

  Readers' top picks for DLP products

  The companies and DLP products that organizations consider, when they seek to address compliance and data security requirements across multiple platforms and environments.

• January 29, 2016 29 Jan'16

  Deadline looms for Safe Harbor framework successor

  Roundup: As the deadline looms to replace the Safe Harbor data-sharing framework, the U.S. and EU continue to make progress; Senate is ready to vote on the Judicial Redress Act.

• January 29, 2016 29 Jan'16

  OpenSSL patch fixes encryption flaw and strengthens Logjam defense

  A new OpenSSL patch fixes a severe encryption flaw and strengthens the protocol against the Logjam vulnerability.

• January 29, 2016 29 Jan'16

  Morphisec plans to bring back endpoint security – with a twist

  Security startup Morphisec has introduced a new approach to defending endpoint devices that turns the tables on attackers. Here's how the company's "moving target defense" technology works.

• January 28, 2016 28 Jan'16

  Oracle closing an attack vector by deprecating the Java browser plug-in

  Oracle announced plans to deprecate the Java browser plug-in, a noted attack vector, though the choice was not entirely its own.

• January 27, 2016 27 Jan'16

  Congress demands Juniper backdoor audits by government agencies

  Congressional oversight committee wants to know which U.S. government agencies used firewalls that may have been affected by the recently uncovered Juniper backdoor vulnerability.

• January 26, 2016 26 Jan'16

  Fortinet SSH vulnerability more widespread than thought

  Fortinet denies that a vulnerability found in many of its products is a true backdoor, but finds that the flaw is more widespread than once thought.

• January 22, 2016 22 Jan'16

  Will California ban smartphone encryption?

  News roundup: California mulls a ban on encrypted smartphone sales; France backs away from encryption backdoors; EU and U.K. privacy regulations; key escrow fail and more.

• January 21, 2016 21 Jan'16

  Linux kernel vulnerability has unknown risk, but Google has fix

  A newly found Linux kernel vulnerability has garnered big headlines. Google said the risk to Android has been overstated, and experts are unsure about the danger to the wider Linux ecosystem.

• January 20, 2016 20 Jan'16

  Cisco Security Report: Dwell time and encryption security struggles

  The Cisco Security Report for 2016 covered a lot of ground and adds to the encryption debate by noting that increased encryption creates more challenges for cybersecurity.

• January 19, 2016 19 Jan'16

  David Chaum's cMix: New tool for anonymity on the Internet

  David Chaum presents Internet anonymity tool PrivaTegrity, using the cMix mix network for reliable, high-performance Internet anonymity and protection against attacks or unauthorized backdoors.

• January 18, 2016 18 Jan'16

  DHCP servers must be patched against denial-of-service attacks

  The Internet Systems Consortium released a critical patch for DHCP servers that fixed a flaw that could lead to denial-of-service attacks.

• January 15, 2016 15 Jan'16

  Trend Micro Password Manager flaw; backdoors and passwords

  In this roundup, Trend Micro's Password Manager flamed over JavaScript flaw; Android malware breaks two-factor authentication; Cisco vulnerabilities; Juniper backdoor update and more.

• January 14, 2016 14 Jan'16

  Microsoft Silverlight patch might be a Hacking Team zero day

  A Microsoft Silverlight patch becomes more important as researchers claim it may be a Hacking Team zero day that has been known for years.

• January 12, 2016 12 Jan'16

  January 2016 Patch Tuesday: Address-spoofing patch starts the new year

  Microsoft's January 2016 Patch Tuesday started the year with the IE end of life for older versions of the browser and an important address-spoofing patch.

• January 12, 2016 12 Jan'16

  OAuth vulnerabilities must be fixed in the standard

  Researchers in Germany have found two OAuth vulnerabilities, which could allow attackers to break the authorization and authentication standard. And an expert said the fix must be made to the standard itself.

• January 08, 2016 08 Jan'16

  Cybersecurity and CES 2016: A comedy of omissions

  CES 2016 has come to a close, and once again the mega-trade show had little to offer in terms of information security. Here's why that's bad news.

• January 08, 2016 08 Jan'16

  Warning: Internet Explorer end of life for 8, 9 and 10 on Tuesday

  Internet Explorer end of life is on the way for three versions of Microsoft's Web browser, and enterprises need to understand which versions of Windows will still be supported.

• January 08, 2016 08 Jan'16

  NSA whistleblower William Binney: Bulk data collection costs lives

  News roundup: NSA whistleblower William Binney testifies in the U.K. against bulk data collection, a new Snowden revelation, Windows 10 snooping revealed, JavaScript ransomware, and more.

• January 07, 2016 07 Jan'16

  MD5 vulnerability renews calls for faster SHA-256 transition

  Researchers have found a new way to exploit an MD5 vulnerability to put users at risk, and experts say this is all the more reason to move faster in transitioning to SHA-256.

• January 06, 2016 06 Jan'16

  Blackphone vulnerability patched to prevent phone hijacking

  Silent Circle has patched a critical modem vulnerability in its first-generation Blackphone to prevent phone hijacking by attackers.

• January 04, 2016 04 Jan'16

  Russian actors accused of attacking Ukraine with BlackEnergy malware

  Russia-based threat actors were accused of attacking media outlets and electric companies in Ukraine using BlackEnergy malware.

• December 31, 2015 31 Dec'15

  China's anti-terror law mandates tech firm cooperation

  News roundup: China passes anti-terror law requiring tech firms' help on surveillance, while new analysis of North Korea's Red Star OS shows different approach to cybersecurity.

• December 30, 2015 30 Dec'15

  Adobe issues emergency patch for critical Flash vulnerabilities

  Just weeks after its biggest security update of the year, Adobe issued emergency patches for a new round of Flash bugs, including one already being exploited by attackers.

• December 29, 2015 29 Dec'15

  Open database exposes 191 million voter registration records

  A mysterious voter database containing 191 million voter registration records found last week was online for over a week, with few clues as to who is responsible.

• December 23, 2015 23 Dec'15

  Google accelerates Chrome SHA-1 deprecation schedule

  Increasing desire to be rid of SHA-1-signed certificates causes Google to join Microsoft, Mozilla in a likely acceleration of Chrome SHA-1 deprecation by six months.

• December 23, 2015 23 Dec'15

  Juniper firewall backdoors add fuel to encryption debate

  Juniper firewalls are reportedly vulnerable to two serious backdoors, and the NSA may be at least indirectly responsible for one that exposes VPN data.

• December 22, 2015 22 Dec'15

  PCI DSS 3.1 deadline for TLS migration pushed back

  The Payment Card Industry Security Standards Council unexpectedly pushed back the deadline for enterprises to migrate off of early versions of TLS.

• December 18, 2015 18 Dec'15

  Compliance costs expected to rise as EU GDPR advances

  News roundup: As EU's Global Data Protection Regulation advances, businesses anticipate higher penalties and compliance costs. Also, malware roundup.

• December 18, 2015 18 Dec'15

  CISA added to budget omnibus, with privacy protection stripped

  The Cybersecurity Information Sharing Act passed after being added to the emergency budget omnibus bill, but critics warned the privacy protections have been stripped out.

• December 17, 2015 17 Dec'15

  Experts: Lawmakers don't understand encryption backdoor problems

  Strong encryption and encryption backdoors have become hot topics in the world of lawmakers and politicians, but security experts said those people don't understand the problem.

• December 15, 2015 15 Dec'15

  Old Microsoft Kerberos vulnerability gets new spotlight

  A new blog post detailed authentication vulnerabilities in Microsoft Kerberos that cannot be patched and could lead to attackers having free rein over systems.

• December 14, 2015 14 Dec'15

  Symantec asks browser makers to distrust one of its root certificates

  Symantec announced it will retire one of its root certificates because it was based on older security, and Google made sure users knew the risks.

• December 11, 2015 11 Dec'15

  Governments weigh strong encryption vs. terror threats

  News roundup: Cyber politics in U.S., as leaders attempt to balance access to strong encryption with terror threats. Also: Microsoft's German data centers, SHA-1 deprecation schedule, and more.

• December 10, 2015 10 Dec'15

  FBI: Encryption backdoor laws are unnecessary, if companies comply

  FBI Director James Comey is sticking to the message that the FBI doesn't want encryption backdoor legislation, but one senator doesn't expect companies to comply without the legal impetus.

• December 10, 2015 10 Dec'15

  FBI admits to using zero-day exploits, not disclosing them

  The FBI has admitted to using zero-day exploits rather than disclosing them, and experts say this should not be a surprise considering the history of federal agency actions.

• December 08, 2015 08 Dec'15

  December 2015 Patch Tuesday: DNS query and zero-day flaws fixed

  Microsoft's December 2015 Patch Tuesday brought a number of fixes to Windows, including a patch for a DNS query bug and zero-day flaws in the Windows kernel and Microsoft Office.

• December 08, 2015 08 Dec'15

  Temporary workers cause access management troubles over the holidays

  A new report showed that while retail companies are confident in their security, many use bad access-management practices with temporary workers brought in for the holiday season.

• December 04, 2015 04 Dec'15

  HTML5 support could mean Adobe Flash end of life

  Adobe moves could signal the end of the ever-vulnerable Flash Player, and experts say more support for HTML5 could lead to the Adobe Flash end of life.

• December 04, 2015 04 Dec'15

  First-ever high-level talks on US-China cyber issues

  News roundup: Chinese hacking activity drops in advance of US-China cyber talks, Australia blames China for major breach, mature malware, National Security Letter unveiled, and more.

• December 04, 2015 04 Dec'15

  Alleged OPM breach hackers arrested by Chinese government

  Hackers arrested by the Chinese government are allegedly the criminals behind the OPM breach, but experts want more evidence before trusting China.

• December 03, 2015 03 Dec'15

  Experts question customized TLS implementation after Amazon s2n flaw

  Amazon's s2n passed its first test by patching a flaw quickly, but experts said enterprises still need to be wary of the complexities surrounding TLS implementation.

• December 01, 2015 01 Dec'15

  Amex credit card hack predicts replacement card number

  Samy Kamkar found a weakness in the algorithm American Express uses to generate replacement card information and created a credit card hack as a proof-of-concept.

• November 24, 2015 24 Nov'15

  Dell fixes root certificate issue reminiscent of Superfish

  Dell issued a fix for a root certificate similar to Superfish that could potentially allow attackers to intercept encrypted private data on its PCs.

• November 23, 2015 23 Nov'15

  Lessons learned from the Adobe data breach

  Adobe CSO Brad Arkin spoke at the recent Privacy. Security. Risk. 2015 event about his experiences dealing with the company's massive data breach two years ago.

• November 20, 2015 20 Nov'15

  Safe Harbor framework update in danger of capsizing

  News roundup: Rights groups join critics of Safe Harbor framework update, OPM breach testimony pushback, FBI hiring part of cybersecurity issue for Justice Department. Plus: recycled malware, Microsoft's security push.

• November 19, 2015 19 Nov'15

  Experts: DNSSEC protocol can't be worse than certificate authorities

  The DNSSEC protocol is a flawed solution to certificate authorities, but experts said any controversy surrounding the potential spying is more misunderstanding than fact.

• November 19, 2015 19 Nov'15

  TechTarget Survey: IT risk management, compliance top tasks

  TechTarget 2015 Annual Salary and Careers Survey: Out of the myriad of security responsibilities for an enterprise, IT risk management and regulatory compliance occupy the most time.

• November 18, 2015 18 Nov'15

  Going dark: FBI continues effort to bypass encryption

  The FBI's effort to gain access to encrypted devices and data has led to a standoff with technology companies, such as Apple. Here's where the 'going-dark' debate stands.

• November 13, 2015 13 Nov'15

  FBI accused of paying Carnegie Mellon $1M to hack Tor network

  The Tor Project said that the Carnegie Mellon researchers behind an attack on the hidden service subsystem carried out last year were paid $1 million by the FBI to hack Tor network.

• November 13, 2015 13 Nov'15

  Java vulnerability caused by unpatched open source library

  News roundup: WebSphere, JBoss, Jenkins and more hit by Java vulnerability in an open source library. Plus, SAP HANA deals with critical vulnerabilities, and more.

• November 11, 2015 11 Nov'15

  November 2015 Patch Tuesday: Font handling strikes again

  Microsoft's November 2015 Patch Tuesday delivers 12 total bulletins, four of which are critical, and one issue with font handling that angers one expert.

• November 10, 2015 10 Nov'15

  Bluebox tackles mobile application threats for BYOD

  Bluebox Security unveiled a troubling study on mobile application threats and also introduced a new product to protect consumer apps on employee-owned devices.

• November 10, 2015 10 Nov'15

  NSA vulnerability disclosure policy balances offense and defense

  The NSA published its vulnerability disclosure policy, which aims to balance intelligence benefits with security, but experts said the policy raises more questions than it answers.

• November 06, 2015 06 Nov'15

  Bad news for encryption security, PKI certificate revocation

  News roundup: Troubling research on PKI certificate revocation; encryption research finds usability lacking; GnuPG adds features. Plus: More zero-days, xCodeGhost still haunting Apple and more.

• November 05, 2015 05 Nov'15

  Experts: Cyber liability insurance and lawsuits set to improve security

  Cyber liability insurance claims and lawsuits are expected to rise considerably in the next couple years, and experts believe they will lead to improved security for enterprises and developers.

• November 03, 2015 03 Nov'15

  CSIP aims to modernize U.S. government cybersecurity

  Experts approve of the Cybersecurity Strategy and Implementation Plan issued by the White House to strengthen government cybersecurity guidelines and practices, but worry about implementation.

• November 02, 2015 02 Nov'15

  CoinVault, Bitcryptor ransomware declared dead following arrests

  CoinVault and Bitcryptor variants of ransomware have been declared dead after the authors were arrested and decryption keys were recovered by law enforcement.

• November 02, 2015 02 Nov'15

  Cryptowall 3.0 ransomware reported to cost victims $325 million

  A new report analyzed Cryptowall 3.0 ransomware attacks and found that it may have cost victims $325 million and that money may be going to a single source.

• October 30, 2015 30 Oct'15

  Google slams Symantec over Certificate Transparency trouble

  Google demands Certificate Transparency for all Symantec-issued certificates in wake of last month's escalating disclosures about fake "testing" certificates.

• October 29, 2015 29 Oct'15

  Congress can still fix CISA privacy issues in reconciliation

  CISA passed the Senate despite complaints over privacy issues, but experts said there is still hope those troubles can be fixed when the bill goes to the House for reconciliation.

• October 28, 2015 28 Oct'15

  U.S. and E.U. enter into new data sharing agreement

  The European Union and United States have agreed in principle to a new data sharing framework to replace the Safe Harbor pact, but the details of the new rules are still a mystery.

• October 28, 2015 28 Oct'15

  Disputed Cybersecurity Information Sharing Act passes Senate

  Despite vocal criticism from privacy advocates and technology companies, the U.S. Senate passed the Cybersecurity Information Sharing Act by an overwhelming majority.

• October 26, 2015 26 Oct'15

  Dridex malware returns despite DOJ arrests

  The Dridex malware has made a return, and attackers are once again using botnets to send the Trojan to banks, despite the Department of Justice making high-profile arrests last month.