OceanLotus: macOS malware update
Latest ESET research describes the inner workings of a recently found addition to OceanLotus’s toolset for targeting Mac users
Latest Articles
Week in security with Tony Anscombe
Two app developers stored more than half a billion records about Facebook users on unsecured cloud servers
540 million records on Facebook users exposed by third‑party apps
The databases, sitting unprotected on cloud servers, contained reams of information amassed by two apps integrated with the social network
NIST cybersecurity resources for smaller businesses
How can smaller businesses address their cybersecurity risks without the resources of large organizations?
Look who’s stalking
Aren’t we just making it too easy for online followers to become real-life trackers with the amount of open data we are posting online?
Cryptocurrency exchange loses millions in heist
Bithumb believes that, unlike in past incidents, this theft was the work of rogue insiders
Week in security with Tony Anscombe
World Backup Day reminds businesses that they need to have data backup and recovery plans in place should the unthinkable happen
World Backup Day: Is your data in safe hands?
World Backup Day is a reminder that organizations and individuals need to make data backup and protection a priority
Man jailed for destroying former employer’s data
After he was fired for poor performance, the ex-employee was back with a vengeance, literally
Global police arrest dozens of people in dark web sting
More trouble in dark markets? A notorious black-market bazaar announces plans to close up shop on the same day that police announce the arrests of 61 people
Two white hats hack a Tesla, get to keep it
The electric automaker is working to release a fix for the underlying vulnerability in a matter of days
Week in security with Tony Anscombe
APT group OceanLotus has been active with new memory corruption vulnerability. Google fined 1.7 billion US$ by the EU. Plus, pick your Android security app wisely, test shows
Facebook exposed millions of user passwords to employees
The social network says that the passwords were never exposed externally and that it found no abuse of the glitch
Most second‑hand thumb drives contain data from past owners
Our penchant for plugging in random memory sticks isn’t the only trouble with our USB hygiene, a study shows
I Still Didn’t See What You Did
More advice for detecting and avoiding sextortion scams
Google hit with €1.49 billion antitrust fine by EU
The third penalty that Europe has levied on the tech giant in less than two years brings the total to €8.25 billion
Fake or Fake: Keeping up with OceanLotus decoys
ESET researchers detail the latest tricks and techniques OceanLotus uses to deliver its backdoor while staying under the radar
You should pick your Android security app wisely, test shows
It’s prudent to get a security solution for your device, but a test by AV-Comparatives shows why you need to choose judiciously
I didn’t see what you did, redux
Cyberblackmail/sextortion again raises its not-so-pretty little head
Week in security with Tony Anscombe
Asian game developers again targeted in supply-chain attacks distributing malware. Facebook suffer most severe outage ever. Plus, over 2 billion records exposed by email marketing firm