Expanding Internet access in Africa is carrying ISIS information operations along with it. Nigeria seems particularly affected, as ISIS connects with local extremists, especially Boko Haram.
Proofpoint looks at CryptXXX ransomware (discovered last week) warning that the malware is well-positioned to extort Bitcoin payments.
Chip-and-PIN cards are spreading in the US, and cyber criminals are making a last minute push to compromise legacy magnetic-strip swipe systems before they’re superseded. FireEye and its recently acquired iSight unit are tracking the familiar carding gang FIN6, which is more active than usual in attacking vulnerable point-of-sale systems and selling paycard data on black market carding sites.
ESET looks at another familiar threat—the Dorkbot worm, whose infrastructure was taken down last December. It’s crippled but not eliminated: ESET warns that Dorkbot continues to circulate. It’s being used in attacks on bank accounts and to lock systems (unlocking them requires payment of ransom).
Researchers at Arbor Networks caution East Asian users against an APT group employing the “Four Element Sword” of known vulnerabilities. The campaign is infecting victims with an array of remote access Trojans (RATs).
The spread of encryption, most recently in WhatsApp, suggests that technology may soon render the ongoing round of the Crypto Wars moot. (Legislation is still being considered in the US Congress.)
Australia announced its national cyber strategy yesterday. It features a strong commitment to applied cyber research, development of a domestic security industry, and, joining two of the other Five Eyes, an open avowal of offensive cyber capabilities.