Wrapping up WannaCry - sort of
05/23/2017 - After the big infection wave that hit thousands of computers all over the world on Friday, May 12, we are taking a look at some things that WannaCry has taught us and some of the aspects that have surprised many.Author: Tim Berghoff
Warning: Massive "WannaCry" Ransomware campaign launched
05/12/2017 [UPDATE: 05/18/2017] - An outbreak of the latest version of "WannaCry" has been claiming victims in several countries. The speed and ferocity of the outbreak has taken many by surprise. Researchers are as yet puzzled as to the origin of the outbreak which hit 11 countries within just three hours. So far Spain and Russia were are among those who were hit hardest.Author: Tim Berghoff
Attacks on SS7 - how safe is my data?
05/09/2017 - A few days ago reports emerged that attackers have exploited a weakness in a communication protocol which is used for SMS services by mobile carriers. This has increased the susceptibility of processes such as mTAN significantly. We will take a look at the facts and backgrounds as well as measures you can take to stay secure.Author: Tim Berghoff
It's Password Day!
05/04/2017 - We are using so many online accounts these days that using secure passwords is absolutely vital. However, recent news coverage shows that weak passwords are still a problem across the board. We at G DATA support International Password day and encourage everybody to read our tips on how to improve your password security.Author: Tim Berghoff, Eddy Willems
Microsoft patch fixes Office zero-day
04/13/2017 - The current patches of Microsoft close i.a. a critical vulnerability in Office, which has been exploited by massively spammed Dridex banking trojans. Updating is the best protection.Author: Ralf Benzmüller
DoubleAgent - does it really turn AV into malware?
03/30/2017 - A company offering protection against Zero-day exploits, exposes a vulnerability in Windows, which allegedly allows attackers to turn AV-products into malware. A lot of uncertainty has been created. On closer inspection, there is no reason to panic.Author: Ralf Benzmüller
Data breach risks - are enterprises out of touch with reality?
03/21/2017 - It is notable that many respondents in a recent survey expressed confidence in their overall cybersecurity strategy. Looking at the coverage of recent data breaches, though, this degree of confidence might seem unwarranted. Still, there is light at the end of the tunnel: both governments and businesses have started putting more emphasis on the topic and awareness has risen considerably within...Author: Giulio Vada (G DATA Italia)
WikiLeaks Vault7 Year Zero
03/09/2017 - Agencies spy. That’s a trivial fact. And even if most of the leaked details have been known before, a bad feeling comes up when information is leaked that provides insight about the extent and the systematics of the agencies’ acitivities. Vault 7 Year Zero is the first set of documents and it demands for homework to be done.Author: Eddy Willems, Ralf Benzmüller
Connected toy manufacturer suffers data breach
03/03/2017 - Manufacturer "Spiral Toys“ sells connected soft toys under the "Cloud Pets" brand. The toy transmits voice recordings between parents and their children. A massive data leak has now resulted in the exposure of this personal information to unauthorized individuals. About 800.000 registered users are affected.Author: Tim Berghoff
Patch up, boys! Microsoft to stop publishing Security Bulletins
02/13/2017 [UPDATE: 02/15/2017] - Many system administrators rely on Microsoft’s Security Bulletins to obtain information about critical security issues. However, from February’s Patch Tuesday onwards, Microsoft will no longer be publishing them. Instead, the company has chosen to replace the bulletins with an online database, causing uncertainty among system administrators.Author: G DATA