A criminal hacking group, well versed on Wall Street, is targeting healthcare and pharmaceutical M&A intelligence.

Linksys released updates for routers running its SMART Wi-Fi firmware, patching vulnerabilities leading to credential theft and information disclosure. Two popular models, however, remain unpatched.

OSX/CoinThief, a Trojan that steals Bitcoin wallet credentials and Bitcoin-QT keys has been found on download sites MacUpdate.com and Download.com.

A new Trojan for Mac OS X disguised as an app for sending and receiving payments steals Bitcoin wallet login credentials.

A new report found that credit unions continue to be a favorite target of smishing attacks, and that text-to-phone scams used a toll-free number in about half of the lures sent in the first quarter of 2010. Read the full article. [KrebsonSecurity]

The developers of the open source IRC server UnrealIRCd have had to report that the file servers of the project were compromised several months ago and the IRC servers code, Unreal3.2.8.1.tar.gz was replaced by a version with a backdoor. The backdoor allows anyone to execute commands on the server running UnrealIRCd. Read the full article. [The H Security]

Five people were indicted this week on wire fraud and other criminal charges stemming from a 2007 cybertheft in which nearly $450,000 was stolen from the bank accounts of the city of Carson, California using credential-stealing spyware. Read the full article. [Computerworld]