Ex-NSA Contractor Sentenced to 9 Years for Stolen Documents

A former National Security Agency contractor who stored two decades’ worth of classified documents at his Maryland home was sentenced Friday to nine years in prison. Harold Martin, 54, apologized to the federal judge who sentenced him for a theft that prosecutors have called “breathtaking” in scope. “My methods were wrong, illegal and highly questionable,” Martin told U.S. District Judge Richard Bennett. The punishment was in line with the nine-year…

July 22, 2019
Read More >>

Dutch police arrested the author of Dryad and Rubella Macro Builders

Dutch authorities announced the arrest of a 20-year old man for allegedly developing Dryad and Rubella Macro Builders. Dutch authorities announced have arrested a 20-year old man that is accused to be the author of Dryad and Rubella Macro Builders. The man lives in Utrecht, it created and distributed Rubella, Cetan and Dryad toolkits. “Recently […]

The post Dutch police arrested the author of Dryad and Rubella Macro Builders appeared first on Security Affairs.

July 19, 2019
Read More >>

The Growing Threat of Targeted Ransomware

Ransomware targeting organizations is a growing threat. The extent of that threat is not always obvious. Except for the healthcare sector, disclosure of a ransomware attack is not generally required — so victims will not necessarily report an incident. This is exacerbated by those victims who simply pay up and recover their files without the problem becoming obvious. A new analysis from Symantec (PDF), using its own telemetry, shows the…

July 19, 2019
Read More >>

Author of Dryad and Rubella Macro Builders Arrested

Dutch authorities this week announced the arrest a 20-year old man for allegedly developing and distributing Office Macro Builders.  Such programs are designed to allow cybercriminals weaponize Office documents to deliver malicious payloads via obfuscated macro code. The macro might also purposely attempt to bypass endpoint security defenses.  Once the document containing such a malicious macro is opened, the code would be executed, which could surreptitiously download malware or start…

July 19, 2019
Read More >>

This Week in Security News: Spam Campaigns and Mobile Malware

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about a mobile malware that infects Android devices by exploiting the vulnerabilities found within the operating system. Also, read about a recent spam campaign that targets…

The post This Week in Security News: Spam Campaigns and Mobile Malware appeared first on .

July 19, 2019
Read More >>

Ex-NSA Contractor to Be Sentenced in Stolen Documents Case

A former National Security Agency contractor awaits sentencing in Baltimore’s federal court for storing two decades’ worth of classified documents at his Maryland home. Harold Martin’s plea agreement calls for a nine-year prison sentence, but U.S. District Judge Richard Bennett isn’t bound by the deal’s terms when he sentences Martin on Friday. Martin’s sentencing will resolve a mysterious case that broke into the open in 2016, when FBI agents conducting…

July 19, 2019
Read More >>

Slack Resetting More User Passwords in Response to 2015 Breach

Slack announced on Thursday that it’s resetting passwords for accounts that users have not secured after the data breach suffered by the company back in 2015. In March 2015, Slack informed users that it had detected unauthorized access to a database storing account information. The compromised database stored usernames, email addresses, hashed passwords, phone numbers and Skype IDs. The attackers also injected malicious code designed to capture plaintext passwords as…

July 18, 2019
Read More >>

Malware Framework Gathers 1 Billion Ad Impressions in 3 Months

Flashpoint security researchers have discovered a new malware framework that managed to gather over one billion fraudulent ad impressions in the past three months. The framework, which has generated significant Google AdSense revenue on a monthly basis, features three separate stages aimed at installing a malicious browser extension to perform fraudulent AdSense impressions, generate likes on YouTube videos, and watch hidden Twitch streams. The malicious tool works by padding statistics…

July 18, 2019
Read More >>

StrongPity Targets Victims with Malicious WinBox Installer

A recently discovered ongoing campaign attributed to the StrongPity threat actor abuses malicious WinBox installers to infect victims, AT&T’s Alien Labs security researchers reveal. Initially detailed in 2016, the StrongPity threat group was observed targeting users in Europe, Northern Africa and the Middle East for cyber-espionage purposes via watering holes, poisoned installers, and malware. The new campaign, which appears to have started in the second half of 2018, uses new…

July 18, 2019
Read More >>