The young computer expert who stopped the WannaCry global cyber attack could face decades in a US prison following accusations that he helped create and sell a malicious software that targeted bank accounts.
Marcus Hutchins, who saved the NHS from cyber criminals, could face a maximum sentence of 40 years in prison in the US if he is found guilty of the charges.
Researchers have sent a quantum-secured message containing more than one bit of information per photon through the air above a city. The demonstration showed that it could one day be practical to use high-capacity, free-space quantum communication to create a highly secure link between ground-based networks and satellites, a requirement for creating a global quantum encryption network.
The FBI has arrested a Chinese citizen for allegedly distributing malware used in the 2015 massive OPM breach that resulted in the theft of personal details of more than 25 Million U.S. federal employees, including 5.6 Million federal officials’ fingerprints.
Yu Pingan, identified by the agency as the pseudonym “GoldSun,” was arrested at Los Angeles international airport on Wednesday when he was arrived in the United States to attend a conference, CNN reported.
Last week, US President Donald Trump announced that the United States Cyber Command, which is currently a division of the NSA, will be elevated to the status of a Unified Combatant Command focused on cyberspace operations.
Source: helpnetsecurity Continue reading
Two new reports by a federal watchdog agency hit a familiar theme: Some state Medicaid systems have weaknesses that potentially put sensitive data and government operations at risk.
The Department of Health and Human Services Office of Inspector General recently issued two reports separately reviewing whether New Mexico and North Carolina each implemented adequate information system general controls for their Medicaid-related systems in accordance with federal requirements.
More than 500 Android mobile apps have been removed from Google Play after it was discovered that an embedded advertising SDK could be leveraged to quietly install spyware on devices.
The SDK, called Igexin, was developed by a Chinese company and may have been used to install malware that could, among other things, exfiltrate logs from devices. Researchers at mobile security company Lookout said on Monday that the 500-plus Android apps with the Igexin SDK had been downloaded more than 100 million times, though not all of them were infected with spyware.
A hacker Thursday afternoon published what he says is the decryption key for Apple iOS’ Secure Enclave Processor (SEP) firmware.
The hacker, identified only as xerub, told Threatpost that the key unlocks only the SEP firmware, and that this would not impact user data.
“Everybody can look and poke at SEP now,” xerub said.