Het kabinet wil dat de politie geheime beveiligingslekken moet kunnen gebruiken om de computers van criminelen te hacken. Zulke lekken mag de politie dan ook een tijd geheim houden.

Dat wil het kabinet binnenkort voorstellen, stellen bronnen in Den Haag tegen de Telegraaf. Er wordt al enkele jaren gewerkt aan een nieuwe versie van de Wet computercriminaliteit, die de politie toestemming zou geven om verdachten te hacken.

Daarbij was echter nog onduidelijk in hoeverre de politie toestemming zou krijgen tot zogenoemde zero-day-lekken, die nog niet bekend zijn bij de maker van de kwetsbare software of hardware.

De afgelopen dagen zijn er allerlei phishingmails verstuurd die van de populaire veilingsite Marktplaats afkomstig lijken en proberen om de inloggegevens van gebruikers te ontfutselen. Volgens de berichten is het e-mailadres van de gebruiker voor Marktplaats veranderd.

Via de meegestuurde link kan dit echter ongedaan worden gemaakt. De link wijst naar een .com domein met vervolgens in de link "www.marktplaats.nl/account/login98af(dot)html".

Gebruikers zouden daardoor kunnen denken dat de link echt naar Marktplaats wijst, ook al gaat het hier om een directory van het .com-domein. Ook hebben de internetcriminelen achter de campagne domeinen eindigend op .ml gebruikt, het topleveldomein van Mali.

A Chinese electronics component manufacturer says its products inadvertently played a role in a massive cyberattack that disrupted major internet sites in the U.S. on Friday.

Hangzhou Xiongmai Technology, a vendor behind DVRs and internet-connected cameras, said on Sunday that security vulnerabilities involving weak default passwords in its products were partly to blame.

According to security researchers, malware known as Mirai has been taking advantage of these vulnerabilities by infecting the devices and using them to launch huge distributed denial-of service attacks, including Friday’s outage.

A new Windows malware masquerading as a Microsoft Security Essentials (MSE) installer is making the rounds on the internet, attempting to trick users into contacting tech support scammers for paid assistance.

Microsoft said the malware, which it calls Hicurdismos, arrives as a drive-by download with the file name setup.exe, using an icon that looks similar to the company's MSE security program. It can also be bundled with other software that users download.

If users run the file, Hicurdismos generates a fake "blue screen of death" computer crash.

It's more common than you think — you reach a deal over an e-commerce site like Craigslist or eBay, but when you go to complete it, things go bad.

That's what happened last week to a 22-year-old man who thought he was buying an iPhone near Philadelphia. When it came time to show up in person to pay for the phone, he walked into an ambush and was shot in the leg by the "seller," who was really an armed robber, police said.

It wasn't the first time that's happened. Online deals gone bad are so common, in fact, that cops across the country are starting to step in, teaming up with residents to safeguard transactions in their neighborhoods by inviting online sellers and buyers to "safe exchange zones" at police offices, where surveillance cameras track all exchanges.

Researchers from three universities combined their expertise to demonstrate the first complete sabotage attack on a 3D additive manufacturing (AM) system, illustrating how a cyber attack and malicious manipulation of blueprints can fatally damage production of a device or machine.

In their paper titled “Dr0wned,” researchers from Ben-Gurion University of the Negev (BGU), the University of South Alabama and Singapore University of Technology and Design detail how to sabotage the quality of a 3D-printed functional part, which leads to the destruction of a device.

The proof-of-concept video below shows how the researchers destroyed a $1,000 quadcopter UAV drone by hacking into the computer used to control the 3D printing of replacement propellers.

Cybercrime in the UK is on the increase in the UK and police are not well equipped to deal with the problem, according to experts.

The latest crime survey for England and Wales (CSEW) by the Office of National Statistics (ONS), found that there were 3.6 million fraud and 2.0 million computer misuse offences experienced in the 12 months.

The ONS said that the latest statistics showed an annual rise of five per cent in frauds referred to the police. Industry data on financial fraud, the vast bulk of which is unreported to the police, showed there were 1.9 million cases of frauds on UK-issued cards, an increase of 46 per cent from the previous year.

Users of the Linux operating system are being urged to update it to remove a "serious" bug that hackers could use to hijack systems. Known as the Dirty Cow bug, the vulnerability has been present in many versions of Linux for almost a decade.

The warnings come as malicious hackers start exploiting it to take over vulnerable computers. The vulnerability gets its name from the Linux sub-system, called Copy-On-Write or COW, in which it appears.

Updated versions of Linux that no longer suffer the bug are now being widely distributed. Millions of computers, including a majority of web servers, run Linux or one of its variants.

A cybersecurity issue has hit the debit card network in India with a possible compromise of the backend system of ATM operations, thus forcing several banks to replace cards or ask for changes in security codes, reports Reuters. Authorities say 3.25 million debit cards involving around 90 ATMs may have been impacted by the breach.

The matter came to light after complaints of fraudulent use of cards, prompting immediate action from network providers Visa, MasterCard, and RuPay. Sources say Hitachi Payment Services may be the switch provider that was compromised.

"Necessary corrective actions already have been taken and hence there is no reason for bank customers to panic," said A.P. Hota, CEO of National Payments Corp of India CEO (NPCI), which manages the largest shared-ATM network.

Whether ’tis smarter for banks to suffer the slings and arrows of potentially falling behind — or build bots with their attendant risk. That’s the question we’ll be answering in this VB Live event featuring Forrester senior analyst Peter Wannemacher. Join us for insight into how to leverage the power of banking bots while minimizing the real potential for danger to your brand.

“We could have written a report called, ‘Bots are just a fad; ignore them, you don’t need them,’” says Peter Wannemacher, senior analyst at Forrester Research. He’s referring to the newest Forrester report, “Bots Aren’t Ready to Be Bankers.”

Indeed, the report did take take a cautionary view specifically for the banking sector, but that doesn’t represent the whole story.