Bankers worldwide consider ways of reducing their vulnerability to large-scale fraud of the kind suffered by Bangladesh Bank, which SWIFT’s CEO calls “a big deal.” Kenya’s Central Bank is the latest to warn that it and related government organizations are receiving credible indicators and warnings of imminent cyber attack.
Kaspersky warns India that the threat actors behind the Danti campaign may have succeeded not only in spoofing senior officials’ emails, but in establishing persistent access to government networks.
Zscaler has observed a spike in Neutrino exploit kit activity. It’s being used in a malvertising campaign to drop the Gamarue/Andromeda Trojan.
Palo Alto researchers have found a campaign (“Pisloader”) using DNS as command-and-control for redirection of victims to sites whence they download the PoisonIvy Remote Access Trojan (RAT).
You may have seen messages inviting you to download “WhatsApp Gold,” allegedly an enhanced version of WhatsApp used by celebrities. Decline the invitation. There’s no such thing, warns White Hat Security, and all you’ll download is malware.
The CEO of Austrian aerospace supplier FACC is fired over the company’s business email compromise.
In other industry news, some analysts are tempted to go long Cisco and FireEye, and they’re waiting for Palo Alto’s results this evening. Votiro, Dashlane, and Demisto attract venture funding.
US Special Operations Command is looking for innovative cyber ops ideas and capabilities.
The US State Department Inspector General releases a lengthy report on email security and retention practices. It’s not exactly a letter of recommendation for some (one?) former Secretaries.