"Ransomware Gang Deploys New Malware to Kill Security Software"

"Ransomware Gang Deploys New Malware to Kill Security Software"

"RansomHub" ransomware operators are now using new malware named "EDRKillShifter" to disable Endpoint Detection and Response (EDR) security software in Bring Your Own Vulnerable Driver (BYOVD) attacks. Sophos security researchers discovered EDRKillShifter in May 2024 during a ransomware investigation. It deploys a legitimate, vulnerable driver on targeted devices in order to escalate privileges, disable security solutions, and more. The method is widely used by different threat actors, including financially motivated ransomware gangs and state-sponsored hacking groups.

Submitted by Gregory Rigby on

"Finding Security Flaws in Android Ahead of Malicious Hackers"

"Finding Security Flaws in Android Ahead of Malicious Hackers"

EPFL researchers in computer and communication sciences discovered 31 critical security vulnerabilities in the Android system and developed ways to mitigate some of them. The different security flaws found by the researchers enable the theft of fingerprints, face data, and other sensitive data that could be stored on one's phone, such as credit card numbers. This article continues to discuss the EPFL researchers' discovery of numerous security flaws in Android's most privileged components.

Submitted by Gregory Rigby on

"Another Record Year For Ransomware Beckons as Crypto Profits Hit $460m"

"Another Record Year For Ransomware Beckons as Crypto Profits Hit $460m"

According to security researchers at Chainalysis, ransomware actors are set for their highest-grossing year on record in 2024 after crypto inflows in the first half of the year reached $460m.  The researchers noted that in 2023, ransomware groups made over $1bn after reaching $449m by the end of June.  So far this year, the largest ever single ransom payment has been recorded, $75m to the Dark Angels group.

Submitted by Adam Ekwall on

11th IEEE International Conference on Social Networks Analysis, Management and Security (SNAMS-2024)

"The International Conference on Social Networks Analysis, Management and Security (SNAMS-2024) aims to provide a comprehensive forum for researchers, practitioners, and industry experts to present and discuss their latest findings and innovations in the realm of social network analysis. This conference seeks to explore the vast opportunities in social networks, addressing both theoretical and practical challenges."

Topics of interest include, but are not limited to security, privacy, and trust in social networks.

 

 

2024 8th Cyber Security in Networking Conference (CSNet)

"This year, CSNet 2024 will center around the Artificial Intelligence (AI) for Cybersecurity theme, focusing on its applications in emerging networks and systems. This encompasses addressing the Challenges and Opportunities of AI to reinforce security and privacy in Next-Generation Technologies. The integration of AI into cybersecurity is a crucial advancement, as it offers the potential to revolutionize how we protect and secure digital infrastructure."

 

 

2025 IEEE International Symposium on Hardware Oriented Security and Trust (HOST)

"IEEE International Symposium on Hardware Oriented Security and Trust (HOST) aims to facilitate the rapid growth of hardware-based security research and development. HOST highlights new results in the area of hardware and system security. Relevant research topics include techniques, tools, design/test methods, architectures, circuits, and applications of secure hardware."

10th IEEE European Symposium on Security and Privacy (EuroS&P)

"Since 1980, the IEEE Symposium on Security and Privacy has been the premier forum for presenting developments in computer security and electronic privacy, and for bringing together researchers and practitioners in the field. Following this story of success, IEEE initiated the European Symposium on Security and Privacy (EuroS&P), which is organized every year in a European city."

Subscribe to