Older, poorly configured and indifferently maintained networked security cameras have long been known to represent a threat to privacy and network security. Genetec has found that as many as one in four security cameras are more part of the problem than they are part of the solution.
McAfee offers some updates on the Buran family of ransomware it first described in May. Buran (that is, “Blizzard”) is widely traded in Russophone criminal souks, where it’s flacked as a “stable offline cryptoclocker, [sic] with flexible functionality and support 24/7.” The Rig exploit kit is a common delivery mechanism.
Elsewhere in the criminal-to-criminal market, Proofpoint is following “Buer,” which it describes as a new loader. Buer has been distributed through malvertising that redirects to the Fallout exploit kit; it’s also being pushed by phishing, the payload carried in malicious Word document macros. The going price for Buer is $400.