Overseas hackers nab more than 1TB of data daily

The idea of governments waging futuristic cyberbattles and online espionage campaigns actually isn't too farfetched. A new study released today by Team Cymru basically says as much.

The study, shared exclusively with The Verge, says that overseas hackers are stealing as much as one terabyte of data per day from governments, businesses, militaries, and academic facilities. Apparently, the hackers are using a network of 500 computer servers.

According to a lengthy article by The Verge, Team Cymru concludes that the hackers are so sophisticated and are running such massive campaigns that they must be state-sponsored. "This is Internet … Read more

What is the Eicar testfile?

When Apple updates its XProtect anti-malware system in OS X with new definitions, it often means a new or updated threat has been found for OS X.

Earlier this morning, Apple issued an update to XProtect, which now includes a new definition for a malware package called "OSX.eicar.com.i," that comes from Eicar.com. This update suggests the new definitions are for a novel malware package, but this is not so with this latest update.

"Eicar" stands for the European Institute for Computer Antivirus Research, which is a group that investigates malware and security … Read more

The Pirate Bay sets sail for Norway, Spain after Sweden sinks ship

The Pirate Bay has broken its operation in two after an organization backed by the music and movie industries took aim at its backer.

According to TorrentFreak, The Pirate Bay today shifted its operational duties to Norway and Spain. Previously, the Swedish Pirate Party was providing it with the bandwidth it needed to operate its site. However, the Rights Alliance, an organization backed by the biggest music and movie companies, threatened to sue the Swedish Pirate Party over its support. That lawsuit could have cut off the Swedish Pirate Party's ability to pay for The Pirate Bay's bandwidth … Read more

Sentencing of LulzSec double agent postponed

Hector Xavier Monsegur, better known by his nom de plume "Sabu," was slated to face sentencing in New York City today for his role hacking into public and private Web sites as one of the hacktivists operating under the LulzSec label. All told, he faces a maximum time behind bars of 124 years associated with his guilty plea on ten counts of bank fraud and one count of identity theft.

But Monsegur, who subsequently worked as a double agent for the FBI, still awaits his fate. The authorities abruptly postponed his sentencing. No explanation was offered.

His cooperation … Read more

FTC plans mobile security event for June 4

The Federal Trade Commission said today that it will convene a one-day event on security-related "threats to mobile devices."

The event, to be held on June 4 in the agency's Washington, D.C., conference center, will be the latest in a series of similar events that have focused on topics including online data collection and advertising. It's open to the public.

An announcement posted on the FTC's Web site says the event will likely include discussions of "emerging mobile security threats and trends, security challenges in the mobile environment and infrastructure, potential solutions to … Read more

NBC Web site back up after hack attack

NBC's Web site is up and running again after being knocked offline by a cyberattack for several hours yesterday.

The NBC site was the victim of a form of malware known as the Citadel Trojan. This specific strain targets companies in an attempt to steal usernames, passwords and other sensitive data. People who visit sites infected by the trojan can find their own PCs infected as well.

In the past, Citadel typically attacked banks and financial firms but has since expanded its reach to a wider range of organizations.

NBC, which is part of cable giant Comcast, is still trying to figure out how the attack occurred, … Read more

Malware getting smarter, says McAfee

Malware continues to grow, not just in volume but in sophistication, according to a new report from McAfee.

Released today, the security vendor's fourth-quarter 2012 Threats Report found that more organizations are being targeted by more clever cyberattacks.

The number of trojans designed to steal passwords rose 72 percent last quarter. Some of these trojans are part of "customized" threats, while others are packaged with more "off-the-shelf" forms of malware. As one example, the Citadel trojan was specifically designed to hit financial services companies.

Operation High Roller and Project Bliztkrieg were also cited by McAfee … Read more

Adobe patches critical security flaws in Reader, Acrobat

Adobe has issued a patch to plug up critical security holes in its Reader and Acrobat software.

Released yesterday, the security updates address flaws that could cause the applications to crash and potentially let an attacker gain control of an infected computer. Adobe confirmed last week that the exploits have already led to some targeted attacks against vulnerable systems.

The patches are directed toward the following products and versions:

Adobe Reader XI (11.0.01 and earlier) for Windows and Macintosh Adobe Reader X (10.1.5 and earlier) for Windows and Macintosh Adobe Reader 9.5.3 and earlier … Read more

China slams cyberattack accusations over lack of proof

China is refuting a report that names its military as the source of recent cyberattacks against the U.S.

A report released this week by U.S. security firm Mandiant linked the People's Liberation Army to a large number of cyberattacks against U.S. corporations, government agencies, and other organizations. The report specifically pointed the finger at Chinese military Unit 61398, noting that digital forensic evidence led investigators to the building housing that unit.

China's response?

As expected, the government has criticized the report, citing a lack of hard evidence. In a press conference held by China's … Read more