Cassandra Stephenson – WindowsTechs.com

Report: Malware campaign linked to Chinese ad firm infects 250 million computers

Posted on June 2, 2017 by Cassandra Stephenson

A sweeping malware campaign has infected more than 250 million computers around the world in what cybersecurity firm Check Point Software Technologies is calling the “largest infection operation in history.” The malware, known as “Fireball,” is designed to turn web browsers into “zombies,” — dummy browsers that collect private information — but has potential for causing “global catastrophe,” Check Point says. Fireball is linked to software distributed by Chinese digital marketing agency and app developer Rafotech, which allegedly uses the malware to spy on and control web browsing to increase traffic and boost ad revenue, according to Check Point. Fireball is also capable of running code and downloaded files and other malware, Check Point reported, stating that the sophisticated software has the potential to cause much more damage due to its capabilities as a malware downloader. “These actions can have serious consequences,” Check Point wrote in a blog Thursday. “How severe […]

The post Report: Malware campaign linked to Chinese ad firm infects 250 million computers appeared first on Cyberscoop.

Continue reading Report: Malware campaign linked to Chinese ad firm infects 250 million computers→

EFF sues DOJ for information about alleged FBI-Geek Squad program

Posted on June 1, 2017 by Cassandra Stephenson

The Electronic Frontier Foundation filed a Freedom of Information Act lawsuit against the Department of Justice Wednesday after a months-long quest to obtain records regarding the FBI’s alleged use of Best Buy Geek Squad employees to search customer computers without warrants. The lawsuit comes after a February FOIA request by EFF was denied by the FBI under grounds that the FBI will neither confirm nor deny the existence of records pertaining to an ongoing investigations. EFF also received no comment on a following administrative appeal. EFF Civil Liberties Director David Greene told Cyberscoop that the FBI had not yet commented on the lawsuit, which seeks to examine whether Geek Squad employees have acted on behalf of federal agents when searching customer computers, in which case a warrant is necessary, according to constitutional law. “The public has a right to know how the FBI uses computer repair technicians to carry out […]

The post EFF sues DOJ for information about alleged FBI-Geek Squad program appeared first on Cyberscoop.

Continue reading EFF sues DOJ for information about alleged FBI-Geek Squad program→

Cryptocurrency company pushes back against Shadow Brokers’ latest claims

Posted on June 1, 2017 by Cassandra Stephenson

The Shadow Brokers say they will be accepting Zcash for subscriptions to their monthly dumps of leaked NSA files — a decision intended to needle the U.S. government over its role in the cryptocurrency’s creation. But the company that oversees Zcash says that federal agencies have no ties to the cryptocurrency beyond some general connections to its academic roots. In announcing the subscription service, the Shadow Brokers insinuated that Zcash has links to the Defense Advanced Research Projects Agency, other U.S. military agencies and Israel. “Maybe USG is needing to be sending money outside from banking systems? If USG is hacking and watching banking systems (SWIFT) then adversaries is also hacking and watching banking systems. Maybe is for sending money to deep cover foreign assets? Maybe is being trojan horse with cryptographic flaw or weakness only NSA can exploit? Maybe is not being for money?” the blog post written in broken English reads. Though the hacking group has claimed Zcash’s privacy […]

The post Cryptocurrency company pushes back against Shadow Brokers’ latest claims appeared first on Cyberscoop.

Continue reading Cryptocurrency company pushes back against Shadow Brokers’ latest claims→

U.S. universities race to contain WannaCry ransomware, officials say

Posted on May 16, 2017 by Cassandra Stephenson

At least five U.S. colleges have been affected by the global ransomware virus known as “WannaCry,” CyberScoop has learned. The Massachusetts Institute of Technology, Trinity College, the University of Washington, North Dakota State University and the University of Maine confirmed Tuesday that computers connected to their networks were infected by the virus. “We had a handful of computers that were compromised but it didn’t spread,” University of Washington News Office Director Victor Balta told CyberScoop. “Normal operations were not affected in any way, but obviously we’re paying attention to this.” The five schools are among the first known cases of U.S.-based educational institutions becoming victims of the WannaCry ransomware campaign. CyberScoop obtained a list of IP addresses with WannaCry infections that included more than a dozen machines at U.S. higher education institutions. Not all of the schools responded to requests for comment. MIT reported that approximately 100 computers were affected by the attack […]

The post U.S. universities race to contain WannaCry ransomware, officials say appeared first on Cyberscoop.

Continue reading U.S. universities race to contain WannaCry ransomware, officials say→

DocuSign: Data breach led to malicious spam

Posted on May 16, 2017 by Cassandra Stephenson

DocuSign, an electronic signature technology provider, reported Monday that an increase in phishing emails sent to users over the last week resulted from a security breach in a DocuSign system. A third party accessed a “separate, non-core system,” gaining access to users’ email addresses, according to an update posted to the DocuSign website. The malicious emails sent to those addresses used the DocuSign brand and contained an attached Word document that installs malware when opened. The company’s report states that other data, including users’ names, passwords, documents and social security numbers, were not part of the security breach. “DocuSign’s core eSignature service, envelopes and customer documents remain secure,” according to the report. The company stated that it took immediate action to increase security and is working with law enforcement. DocuSign urges users to refrain from opening any attachments from DocuSign emails and delete emails with the subject lines, “Completed: [domain […]

The post DocuSign: Data breach led to malicious spam appeared first on Cyberscoop.

Continue reading DocuSign: Data breach led to malicious spam→