Smashing Security podcast #143: Hacking from outer space, Ukrainian cryptomining, and deepfaked Canadians

Was a cybercrime committed on the International Space Station? What on earth were Ukrainian scientists thinking when they plugged a nuclear power station into the internet? And someone has cloned Canadian clinical psychologist Jordan Peterson’s voice…

All this and much more is discussed in the latest edition of the award-winning “Smashing Security” podcast with Graham Cluley and Carole Theriault, joined this week by Mark Stockley.

VPNFilter botnet has hacked 500,000 routers. Reboot and patch now!

At least half a million routers and storage devices in dozens of countries around the world have been infected by a sophisticated botnet, in preparation for an alleged planned cyber attack on Ukraine.

Read more in my article on the Tripwire State of Security blog.

Firms that didn’t patch and enabled local admin rights continue to suffer post cyber-attack

Just because a malware outbreak has begun to fade away from the newspaper headlines, doesn’t mean your troubles are over. Many firms can continue to suffer long afterwards.

Read more in my article on the Bitdefender Business Insights blog.

Operation BugDrop – hackers steal gigabytes of data from organisations, record conversations

Victims of the secret surveillance operation have included a manufacturer of industrial control system monitoring equipment, a human rights institution, and a scientific research institute.

David Bisson reports.

Fancy Bear used Android malware to track Ukrainian artillery

Security researchers claim that a malicious Android app helped Russian forces deal heavy blows in Ukrainian crisis.

David Bisson reports.

Hackers suspected of causing power outage in Ukraine

This weekend houses and businesses in parts in the northern part of Kiev were plunged into darkness after the electricity supply was unexpectedly cut off.

Read more in my article on the Hot for Security blog.

Malware based on open-source backdoor targeting Ukraine power industries

Researchers have detected a new malware attack campaign based on an open-source backdoor that is targeting the Ukrainian electric power industry.

David Bisson reports.

MH17 plane crash victims exploited by cold-hearted scammers

Scammers have no conscience, and couldn’t care less about those who have been left bereaved by tragic incidents, such as the downing of flight MH17 over Ukraine.

Read more in my article on the We Live Security blog.

NATO website hit hard by denial-of-service attack as Crimean tension rises

This weekend a number of NATO websites belonging to NATO struggled to remain online as online criminals launched a distributed denial-of-service (DDoS) attack.

Russia Today’s website defaced in ‘Nazi’ hack attack

The pro-Kremlin news agency found its website hacked overnight, with headlines changed to refer to “Nazis”.

As is so often the case, real-life conflict can spill over to internet attacks.

VX Heaven, old-school virus-writing website, returns from the dead after police raid

There is an afterlife for VX Heaven it seems, as the virus-writing website shut down by police as part of a criminal investigation, has resurfaced on the internet.

VX Heavens, old-school virus-writing website, raided by police

The website, which described itself as “dedicated to providing information about computer viruses (virii) and web space for virus authors and groups”, has been running for many years.

Cybercriminal leads Ukrainian political party

Read more in my article at Naked Security.