2020, Accountability, Encryption and Information Security

Which is the Threat landscape for the ICS sector in 2020?

Security Affairs

MARCH 22, 2021

The Kaspersky ICS CERT published a report that provided details about the threat landscape for computers in the ICS engineering and integration sector in 2020. Kaspersky ICS CERT published a report that provided details about the threat landscape for ICS engineering and integration sector in 2020. In H2 2020, 39.3%

Engineering

Engineering VPN Accountability Software

Bug bounty hunter awarded $50,000 for a Microsoft account hijack flaw

Security Affairs

MARCH 3, 2021

A researcher received a $50,000 bug bounty by Microsoft for having reported a vulnerability that could’ve allowed to hijack any account. Microsoft has awarded the security researcher Laxman Muthiyah $50,000 for reporting a vulnerability that could have allowed anyone to hijack users’ accounts without consent.

Accountability

Accountability Passwords Encryption Mobile

ViperSoftX uses more sophisticated encryption and anti-analysis techniques

Security Affairs

APRIL 29, 2023

xyz pic.twitter.com/VLhISark8Y — Goldwave (@OGoldwave) March 13, 2023 The variant employed in the campaign supports a more sophisticated encryption method of byte remapping and a monthly rotation of the C2 server. #ViperSoftX is back, doesn't look like much has changed. c2 arrowlchat[.]com ” concludes the report.

Encryption

Encryption Malware Cryptocurrency Software

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

TeamTNT is back and targets servers to run Bitcoin encryption solvers

Security Affairs

SEPTEMBER 19, 2022

The TeamTNT botnet is a crypto-mining malware operation that has been active since April 2020 and targets Docker installs. “The shell script is cloning a GitHub project from what seems to be a TeamTNT account. “Breaking the cryptographic encryption is considered “Mission: Impossible”. ” continue the experts.

Encryption

Encryption Cybercrime Hacking Malware

46M accounts were impacted in the data breach of children’s online playground Animal Jam

Security Affairs

NOVEMBER 12, 2020

The popular children’s online playground Animal Jam has suffered a data breach that affected more than 46 million accounts. Animal Jam has suffered a data breach impacting 46 million accounts belonging to children and parents who signed up for the game. . records include the birth year the player entered at account creation 23.9M

Data breaches

Data breaches Accountability Passwords Encryption

Akira ransomware received $42M in ransom payments from over 250 victims

Security Affairs

APRIL 21, 2024

The Akira ransomware operators implement a double extortion model by exfiltrating victims’ data before encrypting it. Earlier versions of the ransomware were written in C++ and the malware added the.akira extension to the encrypted files. The attackers mostly used Cisco vulnerabilities CVE-2020-3259 and CVE-2023-20269.

Ransomware

Ransomware Encryption Antivirus VPN

GravityRAT returns disguised as an end-to-end encrypted chat app

Security Affairs

NOVEMBER 13, 2021

Threat actors are distributing the GravityRAT remote access trojan masqueraded as an end-to-end encrypted chat application named SoSafe Chat. Threat actors are distributing the GravityRAT RAT masqueraded as an end-to-end encrypted chat application named SoSafe Chat. Gets connected network information. Record audio.

Encryption

Encryption Malware Media Authentication

A database containing data of +8.9 million Zacks users was leaked online

Security Affairs

JUNE 13, 2023

The company attempted to downplay the security breach by telling Have I Been Pwned that threat actors only had access to encrypted passwords. In January, Zacks Investment Research (Zacks) disclosed a data breach , the company reported that the security incident may have affected the personal information of its 820,000 customers.

Data breaches

Data breaches Passwords Cybercrime Encryption

Info stealers and how to protect against them

Security Affairs

DECEMBER 18, 2023

Some info stealers may use encryption techniques to hide their communication with command-and-control servers, making it more challenging for security systems to detect malicious activities. Bank logs : These are sets of data containing sensitive information about a bank account.

Banking

Banking Cybercrime Malware Accountability

3CX Breach Was a Double Supply Chain Compromise

Krebs on Security

APRIL 20, 2023

Mandiant concluded that the 3CX attack was orchestrated by the North Korean state-sponsored hacking group known as Lazarus , a determination that was independently reached earlier by researchers at Kaspersky Lab and Elastic Security. Microsoft Corp.

Malware

Malware Software Technology Accountability

GUEST ESSAY: As cyber risks rise in 2020, as they surely will, don’t overlook physical security

The Last Watchdog

DECEMBER 31, 2019

Related: Good to know about IoT Physical security is often a second thought when it comes to information security. Despite this, physical security must be implemented correctly to prevent attackers from gaining physical access and taking whatever they desire.

Cyber Risk

Cyber Risk Risk Firewall Surveillance

AMT Games data breach: Millions of Users’ Messages, Account IDs, and IP Addresses Exposed

Security Affairs

JUNE 2, 2021

There was no need for a password or login credentials to access the information, and the data was not encrypted. The leak has since been secured. Feedback message data contained Account id, feedback rating given, and users’ email addresses. What’s Happening? AMT Games is a mobile and browser game developer based in China.

Data breaches

Data breaches Accountability Mobile Phishing

A cyber attack hit Thyssenkrupp Automotive Body Solutions business unit

Security Affairs

FEBRUARY 26, 2024

On December 28, 2020, ThyssenKrupp Materials group of companies based in U.S. The hackers managed to access sensitive HR information and documents about the company’s current and former employees. The confidential information accessed by the attackers included the SSN and bank account information of employees.

Cyber Attacks

Cyber Attacks Ransomware Engineering Banking

Mental Health Apps are Likely Collecting and Sharing Your Data

Security Boulevard

MAY 15, 2024

TABLE OF CONTENTS Understanding HIPAA Mental health apps collect a wealth of personal information Information collection extends past user disclosure Mental health apps may share your information with third parties Can users protect their privacy while using mental health apps?

Advertising

Advertising Insurance Accountability Data Analyst

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

Krebs on Security

OCTOBER 28, 2020

In March 2020, KrebsOnSecurity alerted Swedish security giant Gunnebo Group that hackers had broken into its network and sold the access to a criminal group which specializes in deploying ransomware. “The harsh and unfortunate reality is the security of a number of security companies is s**t,” Arena said.

Hacking

Hacking Ransomware Banking Accountability

EncroChat dismantling led to 6,558 arrests and the seizure of $979M in criminal funds

Security Affairs

JUNE 27, 2023

Europol announced that the takedown of the EncroChat encrypted chat network has led to the arrest of 6,558 people and the seizure of $979 million in illicit funds. In July 2020, a joint operation conducted by European and British law enforcement agencies resulted in the arrest of hundreds of alleged drug dealers and other crooks.

Encryption

Encryption Hacking Banking Accountability

Chip maker Advantech hit by Conti ransomware gang

Security Affairs

NOVEMBER 28, 2020

The Conti ransomware gang hit infected the systems of industrial automation and Industrial IoT (IIoT) chip maker Advantech and is demanding over $13 million ransom (roughly 750 BTC) to avoid leaking stolen files and to provide a key to restore the encrypted files. billion in 2019. Pierluigi Paganini. SecurityAffairs – hacking, Advantech).

Ransomware

Ransomware Encryption IoT Malware

Conti Ransomware Group Diaries, Part I: Evasion

Krebs on Security

MARCH 1, 2022

27, a new Twitter account “ Contileaks ” posted links to an archive of chat messages taken from Conti’s private communications infrastructure, dating from January 29, 2021 to the present day. The Contileaks account did not respond to requests for comment. 22, 2020, the U.S. On Sunday, Feb. ” GAP #1.

Ransomware

Ransomware Healthcare Cybercrime Government

Morgan Stanley discloses data breach after the hack of a third-party vendor

Security Affairs

JULY 8, 2021

Guidehouse provides account maintenance services to Morgan Stanley’s StockPlan Connect business, hackers breached its Accellion FTA server and stole information belonging to Morgan Stanley stock plan participants. The company pointed out that exposed files did not contain passwords that could be used to access financial accounts.

Data breaches

Data breaches Hacking Banking Financial Services

German industrial giant ThyssenKrupp targeted in a new cyberattack

Security Affairs

DECEMBER 21, 2022

On December 28, 2020, ThyssenKrupp Materials group of companies based in U.S. The hackers managed to access sensitive HR information and documents about the company’s current and former employees. The confidential information accessed by the attackers included the SSN and bank account information of employees.

Engineering

Engineering Data breaches Ransomware Banking

Open Exchange Rates discloses a security breach

Security Affairs

MARCH 16, 2020

“Upon further examination, we determined that the unauthorised user appeared to have initially gained access on 9 February 2020, and could have gained access to a database in which we store user data.” ” @troyhunt pic.twitter.com/HfAwV7gtVq — Sylvia van Os (@SylvieLorxu) March 12, 2020. .”

Data breaches

Data breaches Passwords Advertising Accountability

APT hacked a US municipal government via an unpatched Fortinet VPN

Security Affairs

MAY 27, 2021

The feds uncovered the attack in May 2021, government experts reported that the threat actors likely created an account with the username “elie” to gain persistence on the network. The threat actors are actively exploiting the following vulnerabilities in Fortinet FortiOS: CVE-2018-13379 ; CVE-2020-12812 ; CVE-2019-5591.

VPN

VPN Government Hacking Accountability

ERMAC, a new banking Trojan that borrows the code from Cerberus malware

Security Affairs

SEPTEMBER 27, 2021

The source code of Cerberus was released in September 2020 on underground hacking forums after its operators failed an auction. DukeEugene”, posted the following message in his account: “Android botnet ERMAC. ERMAC differs from Cerberus in the usage of different obfuscation techniques and Blowfish encryption algorithm.

Banking

Banking Malware Mobile Encryption

3.4 Million user records from LiveAuctioneers hack available for sale

Security Affairs

JULY 14, 2020

The company confirmed the security breach over the weekend, it revealed that unknown threat actors accessed a partner’s systems in June stealing user information. In response to the incident, the bidding portal has forced a password reset for all users’ accounts, both bidder and auctioneer ones. . The poster is selling 3.4

Hacking

Hacking Data breaches Identity Theft Advertising

The Five-Step PCI DSS 4.0 Transition Checklist

CyberSecurity Insiders

JANUARY 6, 2023

billion in 2020, a 43% increase. billion in payment card-related losses occurred in 2020 (over one-third of them in the U.S.). First launched in 2004 and updated most recently in 2018, the PCI Data Security (PCI DSS) standard is continually updated to reflect the evolving challenges of the cyberthreat landscape. and PCI v4.0:

Antivirus

Antivirus Retail Software Accountability

FBI flash alert warns on OnePercent Group Ransomware attacks

Security Affairs

AUGUST 24, 2021

The FBI shared info about OnePercent Group that has been actively targeting US organizations in ransomware attacks since at least November 2020. OnePercent Group actors encrypt the data and exfiltrate it from the victims’ systems. The attachment’s macros infect the system with the IcedID1 banking trojan.

Ransomware

Ransomware Encryption Banking Phishing

U.S. Bookstore giant Barnes & Noble hit by cyberattack

Security Affairs

OCTOBER 15, 2020

A series of messages published on Barnes & Noble’s Nook social media accounts state that it had suffered a system failure and is working to restore operations by restoring their server backups. 1/2 — NOOK (@nookBN) October 14, 2020. (2/2) — NOOK (@nookBN) October 14, 2020. Thank you for your patience.

Cyber Attacks

Cyber Attacks VPN Backups Ransomware

STRRAT RAT spreads masquerading as ransomware

Security Affairs

MAY 20, 2021

The Java-based STRRAT RAT was distributed in a massive spam campaign, the malware shows ransomware-like behavior of appending the file name extension.crimson to files without actually encrypting them. This RAT is infamous for its ransomware-like behavior of appending the file name extension.crimson to files without actually encrypting them.

Ransomware

Ransomware Malware Encryption Security Intelligence

FBI warns of PYSA Ransomware attacks against Education Institutions in US and UK

Security Affairs

MARCH 17, 2021

In March 2020, CERT France cyber-security agency warned about a new wave of ransomware attack that was targeting the networks of local government authorities. According to the experts, the first infections were observed in late 2019, victims reported their files were encrypted by a strain of malware.

Education

Education Ransomware Encryption Antivirus

Using a WordPress flaw to leverage Zerologon vulnerability and attack companies’ Domain Controllers

Security Affairs

OCTOBER 6, 2020

Using a WordPress flaw (File-Manager plugin–CVE-2020-25213) to leverage Zerologon (CVE-2020-1472) and attack companies’ Domain Controllers. Recently, a critical vulnerability called Zerologon – CVE-2020-1472 – has become a trending subject around the globe. w4fz5uck5) September 8, 2020. Figure 2: PoC – CVE-2020-25213.

Social Engineering

Social Engineering Passwords Advertising Accountability

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

The GDPR provision that may keep IT security teams busiest is Article 32, which requires “a process for regularly testing, assessing and evaluating the effectiveness of technical and organizational measures for ensuring the security of the processing” of personal data. GDPR-style data privacy laws came to the U.S.

Data privacy

Data privacy Encryption Data breaches Insurance

FBI warns of ransomware attacks targeting the food and agriculture sector

Security Affairs

SEPTEMBER 3, 2021

“Cyber criminal threat actors exploit network vulnerabilities to exfiltrate data and encrypt systems in a sector that is increasingly reliant on smart technologies, industrial control systems, and internet-based automation systems. Avoid reusing passwords for multiple accounts. Focus on cyber security awareness and training.

Ransomware

Ransomware Passwords Backups Firmware

US GOV OFFERS A REWARD OF UP TO $15M FOR INFO ON LOCKBIT GANG MEMBERS AND AFFILIATES

Security Affairs

FEBRUARY 21, 2024

According to the press release published by the Department of State , the Lockbit ransomware operators carried out over 2,000 attacks against victims worldwide since January 2020. The NCA and its global partners have secured over 1,000 decryption keys that will allow victims of the gang to recover their files for free.

Energy and Utilities

Energy and Utilities Ransomware Manufacturing Financial Services

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

Security Affairs

AUGUST 9, 2021

In addition to the encryption of data, victims have received threats that data stolen during the incidents will be published.” in Australia since 2020. . “The ACSC has received reporting from a number of Australian organisations that have been impacted by LockBit 2.0 ransomware. ” states the advisory.

Ransomware

Ransomware Retail Manufacturing Encryption

Clop ransomware gang paralyzed flavor and fragrance producer Symrise

Security Affairs

DECEMBER 21, 2020

CyberAttack , #CyberSecurity , #ciberseguridad ; "Cyber attack paralyzes MDax group Symrise" [link] — chum1ng0 (@chum1ng0) December 14, 2020. BleepingComputer reported that the company was hit by the Clop ransomware that encrypted 1,000 devices. ” reported Bleeping Computer.

Ransomware

Ransomware Encryption Malware Cyber Attacks

FBI and CISA are warning of APT actors targeting Fortinet FortiOS servers

Security Affairs

APRIL 2, 2021

The threat actors are actively exploiting the following vulnerabilities in Fortinet FortiOS: CVE-2018-13379 ; CVE-2020-12812 ; CVE-2019-5591. The joint alert also states that attackers scanning also enumerated devices for the CVE-2020-12812 and CVE-2019-5591 flaws. Implement the shortest acceptable timeframe for password changes.

Passwords

Passwords Government Firmware Accountability

Travelex paid $2.3 Million ransom to restore after a ransomware attack

Security Affairs

APRIL 9, 2020

million ransom to decrypt its files after being encrypted by the infamous Sodinokibi ransomware. “As part of this attack, the operators behind the Sodinokibi ransomware told BleepingComputer that they had encrypted the company’s entire network, deleted backup files, and copied more than 5GB of personal data.

Ransomware

Ransomware Encryption Advertising Backups

North Korea-linked Lazarus APT targets defense industry with ThreatNeedle backdoor

Security Affairs

FEBRUARY 25, 2021

North Korea-linked Lazarus APT group has targeted the defense industry with the custom-backdoor dubbed ThreatNeedle since 2020. North Korea-linked Lazarus APT group has targeted the defense industry with the backdoor dubbed ThreatNeedle since early 2020. ” states the report published by Kaspersky.

Malware

Malware Cryptocurrency Password Management Encryption

Expert published PoC exploit code for Kerberos Bronze Bit attack

Security Affairs

DECEMBER 10, 2020

The proof-of-concept exploit code for the Kerberos Bronze Bit attack, tracked as CVE-2020-17049 , was published online this week. Microsoft initially addressed the flaw for Bronze Bit attacks in the November 2020 Patch Tuesday , but some Windows 10 users started reporting Kerberos authentication issues.

Authentication

Authentication Encryption Passwords Hacking

PYSA ransomware gang is the most active group in November

Security Affairs

DECEMBER 22, 2021

In March 2020, CERT France cyber-security agency warned about a new wave of ransomware attack that was targeting the networks of local government authorities. According to the experts, the first infections were observed in late 2019, victims reported their files were encrypted by a strain of malware. This new version used the.

Ransomware

Ransomware Penetration Testing Healthcare Government

Cognizant admitted data breach in April Ransomware Attack

Security Affairs

JUNE 18, 2020

Now the company informed its customers that the threat actors also stole personally identifiable and financial information before encrypting the files. On April 20, 2020, Cognizant learned that the attackers staged and likely exfiltrated a limited amount of data from Cognizant’s systems.

Data breaches

Data breaches Ransomware Identity Theft Advertising

ATM vendors Diebold and NCR fixed deposit forgery bugs

Security Affairs

AUGUST 22, 2020

The flaws that could have allowed crooks to modify the amount of money they deposited on their card, so-called Deposit forgery, and make fraudulent cash withdrawals abusing of the new account balance. ” reads the advisory for the CVE-2020-9062. ” reads the advisory for the CVE-2020-10124. and 05.01.00

Manufacturing

Manufacturing Advertising Banking Software

More details about Operation Cronos that disrupted Lockbit operation

Security Affairs

FEBRUARY 20, 2024

In wider action coordinated by Europol, two LockBit actors have been arrested this morning in Poland and Ukraine, over 200 cryptocurrency accounts linked to the group have been frozen.” The NCA and its global partners have secured over 1,000 decryption keys that will allow victims of the gang to recover their files for free.

Energy and Utilities

Energy and Utilities Ransomware Manufacturing Financial Services

The Top Five Habits of Cyber-Aware Employees

CyberSecurity Insiders

JULY 21, 2021

This means companies have to be proactive and instill the right habits, which often means resisting the bad habits that lead to millions of successful cyberattacks every year – from the use of generic and easy-to-crack account credentials to the willingness to click on suspicious links and attachments in emails from untrusted sources.

Social Engineering

Social Engineering Password Management Passwords Phishing

Which is the Threat landscape for the ICS sector in 2020?

Bug bounty hunter awarded $50,000 for a Microsoft account hijack flaw

Webinars

Trending Sources

ViperSoftX uses more sophisticated encryption and anti-analysis techniques

Webinars

TeamTNT is back and targets servers to run Bitcoin encryption solvers

46M accounts were impacted in the data breach of children’s online playground Animal Jam

Akira ransomware received $42M in ransom payments from over 250 victims

GravityRAT returns disguised as an end-to-end encrypted chat app

A database containing data of +8.9 million Zacks users was leaked online

Info stealers and how to protect against them

3CX Breach Was a Double Supply Chain Compromise

GUEST ESSAY: As cyber risks rise in 2020, as they surely will, don’t overlook physical security

AMT Games data breach: Millions of Users’ Messages, Account IDs, and IP Addresses Exposed

A cyber attack hit Thyssenkrupp Automotive Body Solutions business unit

Mental Health Apps are Likely Collecting and Sharing Your Data

Security Blueprints of Many Companies Leaked in Hack of Swedish Firm Gunnebo

EncroChat dismantling led to 6,558 arrests and the seizure of $979M in criminal funds

Chip maker Advantech hit by Conti ransomware gang

Conti Ransomware Group Diaries, Part I: Evasion

Morgan Stanley discloses data breach after the hack of a third-party vendor

German industrial giant ThyssenKrupp targeted in a new cyberattack

Open Exchange Rates discloses a security breach

APT hacked a US municipal government via an unpatched Fortinet VPN

ERMAC, a new banking Trojan that borrows the code from Cerberus malware

3.4 Million user records from LiveAuctioneers hack available for sale

The Five-Step PCI DSS 4.0 Transition Checklist

FBI flash alert warns on OnePercent Group Ransomware attacks

U.S. Bookstore giant Barnes & Noble hit by cyberattack

STRRAT RAT spreads masquerading as ransomware

FBI warns of PYSA Ransomware attacks against Education Institutions in US and UK

Using a WordPress flaw to leverage Zerologon vulnerability and attack companies’ Domain Controllers

Security Compliance & Data Privacy Regulations

FBI warns of ransomware attacks targeting the food and agriculture sector

US GOV OFFERS A REWARD OF UP TO $15M FOR INFO ON LOCKBIT GANG MEMBERS AND AFFILIATES

Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

Clop ransomware gang paralyzed flavor and fragrance producer Symrise

FBI and CISA are warning of APT actors targeting Fortinet FortiOS servers

Travelex paid $2.3 Million ransom to restore after a ransomware attack

North Korea-linked Lazarus APT targets defense industry with ThreatNeedle backdoor

Expert published PoC exploit code for Kerberos Bronze Bit attack

PYSA ransomware gang is the most active group in November

Cognizant admitted data breach in April Ransomware Attack

ATM vendors Diebold and NCR fixed deposit forgery bugs

More details about Operation Cronos that disrupted Lockbit operation

The Top Five Habits of Cyber-Aware Employees

Stay Connected