Krebs on Security

MARCH 4, 2021

Over the past few weeks, three of the longest running and most venerated Russian-language online forums serving thousands of experienced cybercriminals have been hacked. In two of the intrusions, the attackers made off with the forums’ user databases, including email and Internet addresses and hashed passwords. Members of all three forums are worried the incidents could serve as a virtual Rosetta Stone for connecting the real-life identities of the same users across multiple crime forums.

Cybercrime 363

Cybercrime Hacking Passwords Accountability 363

Schneier on Security

MARCH 4, 2021

Check Point has evidence that (probably government affiliated) Chinese hackers stole and cloned an NSA Windows hacking tool years before (probably government affiliated) Russian hackers stole and then published the same tool. Here’s the timeline : The timeline basically seems to be, according to Check Point: 2013: NSA’s Equation Group developed a set of exploits including one called EpMe that elevates one’s privileges on a vulnerable Windows system to system-administrator level

System Administration 248

System Administration Government Hacking 248

Tech Republic Security

MARCH 4, 2021

Cybercriminals have changed tactics since COVID-19, with surgically precise social engineering attacks targeting business apps replacing batch-and-blast phishing.

Phishing 199

Phishing Social Engineering Engineering 199

Schneier on Security

MARCH 4, 2021

Microsoft has issued an emergency Microsoft Exchange patch to fix four zero-day vulnerabilities currently being exploited by China.

254

254

Advertisement

How many people would you trust with your house keys? Chances are, you have a handful of trusted friends and family members who have an emergency copy, but you definitely wouldn’t hand those out too freely. You have stuff that’s worth protecting—and the more people that have access to your belongings, the higher the odds that something will go missing.

Cybersecurity

Tech Republic Security

MARCH 4, 2021

Account takeovers and online banking fraud are two types of attacks on the rise against financial institutions and their customers, says Feedzai.

Banking 194

Banking Accountability 194

The Hacker News

MARCH 4, 2021

Enterprise cloud security firm Qualys has become the latest victim to join a long list of entities to have suffered a data breach after zero-day vulnerabilities in its Accellion File Transfer Appliance (FTA) server were exploited to steal sensitive business documents.

Data breaches 144

Data breaches Cybersecurity Hacking 144

Digital Shadows

MARCH 4, 2021

We often hear lines like “your past will always catch up with you, no matter how hard you try to. The post The Right to Be Forgotten: Cybercriminal Forum Account Deletion first appeared on Digital Shadows.

Accountability 136

Accountability Cybercrime 136

CSO Magazine

MARCH 4, 2021

Social media app Clubhouse has been on the market for less than one year and it’s already facing privacy-related court filings and fallout from a user data leak that has been exploited , in which a user recorded and shared private conversations, user login information, and metadata to another website.

Marketing 136

Marketing Media 136

The State of Security

MARCH 4, 2021

Business Email Compromise (BEC) scammers, who have made rich returns in recent years tricking organisations into transferring funds into their accounts, have found a new tactic which attempts to swindle Wall Street firms out of significantly larger amounts of money. Read more in my article on the Tripwire State of Security blog.

Accountability 136

Accountability 136

Bleeping Computer

MARCH 4, 2021

FireEye discovered a new "sophisticated second-stage backdoor" on the servers of an organization compromised by the threat actors behind the SolarWinds supply-chain attack. [.].

Malware 136

Malware 136

Advertiser: Revenera

In a recent study, IDC found that 64% of organizations said they were already using open source in software development with a further 25% planning to in the next year. Most organizations are unaware of just how much open-source code is used and underestimate their dependency on it. As enterprises grow the use of open-source software, they face a new challenge: understanding the scope of open-source software that's being used throughout the organization and the corresponding exposure.

Risk

We Live Security

MARCH 4, 2021

A primer on various threats looming over financial companies and the steps that these organizations can take to counter them. The post Cybersecurity risks and challenges facing the financial industry appeared first on WeLiveSecurity.

Risk 143

Risk Cybersecurity 143

SC Magazine

MARCH 4, 2021

The National Security Agency (NSA) and Cybersecurity and Infrastructure Agency (CISA) released a joint information sheet Thursday that offers guidance on the benefits of using a Protective Domain Name System (PDNS). A PDNS service uses existing DNS protocols and architecture to analyze DNS queries and mitigate threats. It leverages various open source, commercial, and governmental threat feeds to categorize domain information and block queries to identified malicious domains.

DNS 131

DNS Architecture Firewall Malware 131

Bleeping Computer

MARCH 4, 2021

An analysis from global cybersecurity company Group-IB reveals that ransomware attacks more than doubled last year and increased in both scale and sophistication. [.].

Ransomware 133

Ransomware Cybersecurity 133

SecureList

MARCH 4, 2021

What happened? On March 2, 2021 several companies released reports about in-the-wild exploitation of zero-day vulnerabilities inside Microsoft Exchange Server. The following vulnerabilities allow an attacker to compromise a vulnerable Microsoft Exchange Server. As a result, an attacker will gain access to all registered email accounts, or be able to execute arbitrary code (remote code execution or RCE) within the Exchange Server context.

Ransomware 128

Ransomware Engineering Internet Internet 128

Advertisement

Within the past few years, ransomware attacks have turned to critical infrastructure, healthcare, and government entities. Attackers have taken advantage of the rapid shift to remote work and new technologies. Add to that hacktivism due to global conflicts and U.S. elections, and an increased focus on AI, and you have the perfect recipe for a knotty and turbulent 2024.

Cybersecurity

Graham Cluley

MARCH 4, 2021

A Russian cybercrime forum appears to have suffered a data breach, spilling details of users. Which is a terribly unfortunate thing to happen.

Data breaches 144

Data breaches Hacking Cybercrime 144

Tech Republic Security

MARCH 4, 2021

Jack Wallen shows you how to create both local and AWS secrets engines with Hashicorp's Vault.

Engineering 161

Engineering 161

CyberSecurity Insiders

MARCH 4, 2021

Just when the media has speculated a possible Chinese cyber attack on the power grids operating in South India, an NGO foundation has alleged that the National Stock Exchange(NSE) of India was hit by a cyber attack on February 24th,2021 disrupting most of the operations for the whole day. While the government of India denies any foreign invasion, MoneyLife Foundation that is into the social work of creating financial awareness and literacy among Indian Populace claims that it has enough evidence

Cyber Attacks 127

Cyber Attacks Telecommunications Cyber threats Government 127

Malwarebytes

MARCH 4, 2021

The Microsoft Browser Vulnerability Research team has found and reported a vulnerability in the audio component of Google Chrome. Google has fixed this high-severity vulnerability ( CVE-2021-21166 ) in its Chrome browser and is warning Chrome users that an exploit exists in the wild for the vulnerability. It is not the first time that Chrome’s audio component was targeted by an exploit.

Software 125

Software 125

Advertisement

The healthcare industry has massively adopted web tracking tools, including pixels and trackers. Tracking tools on user-authenticated and unauthenticated web pages can access personal health information (PHI) such as IP addresses, medical record numbers, home and email addresses, appointment dates, or other info provided by users on pages and thus can violate HIPAA Rules that govern the Use of Online Tracking Technologies by HIPAA Covered Entities and Business Associates.

Healthcare

CyberSecurity Insiders

MARCH 4, 2021

Virginia has become the second state in United States to formulate a data protection act that will be in lines with UK’s General Data Protection Regulation (GDPR). However, the act will come into effect the 1st of January 2023 and until then will be available for access, discussions, and edits through proper channel. Dubbed as Virginia Consumer Data Protection Act (CDPA), the law will focus more on data privacy and will be under the federal privacy law of California.

Data privacy 126

Data privacy Education Government Cybersecurity 126

Bleeping Computer

MARCH 4, 2021

The Department of Homeland Security's cybersecurity unit has ordered federal agencies to urgently update or disconnect Microsoft Exchange on-premises products on their networks. [.].

Cybersecurity 127

Cybersecurity Government 127

Security Boulevard

MARCH 4, 2021

In the world of cybersecurity, much has been said about the zero-trust paradigm over the years, and with good reason. The basic tenets of the early days of information security have been overshadowed by events and technical evolution. On Feb. 26, the U.S. National Security Agency (NSA), supported by CISA and the US-CERT, issued guidance. The post Zero-Trust in a Trusting World appeared first on Security Boulevard.

Information Security 123

Information Security Cybersecurity 123

Bleeping Computer

MARCH 4, 2021

A phishing campaign targeting users of Outlook Web Access and Office 365 services collected thousands of credentials relying on trusted domains such as SendGrid. [.].

Phishing 129

Phishing Accountability Hacking 129

Advertisement

The losses companies suffered in 2023 ransomware attacks increased by 74% compared to those of the previous year, according to new data from the Federal Bureau of Investigation (FBI). The true figure is likely to be even higher, though, as many identity theft and phishing attacks go unreported. Ransomware attackers can potentially paralyze not just private sector organizations but also healthcare facilities, schools, and entire police departments.

Identity Theft

The Hacker News

MARCH 4, 2021

Following Microsoft's release of out-of-band patches to address multiple zero-day flaws in on-premises versions of Microsoft Exchange Server, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued an emergency directive warning of "active exploitation" of the vulnerabilities.

Cybersecurity 115

Cybersecurity 115

Bleeping Computer

MARCH 4, 2021

A working proof-of-concept (PoC) exploit is now publicly available for the critical SIGRed Windows DNS Server remote code execution (RCE) vulnerability. [.].

DNS 129

DNS 129

SC Magazine

MARCH 4, 2021

Women attendees of the a Grace Hopper Celebration of Women in Computing conference approach keynoters Sheryl Sandberg and Maria Klawe. (Anita Borg Institute/ CC BY-NC-ND 2.0 ). The cybersecurity industry aspires to create a diverse workforce, but the number of women and people of color among the ranks – and particularly in leadership – remains unjustifiably low.

Cybersecurity 115

Cybersecurity Hacking Media Engineering 115

Hot for Security

MARCH 4, 2021

Security researchers have identified a new malware campaign designed to infect host machines with ObliqueRAT, a remote access Trojan, with the help of malicious Microsoft Office documents. Infecting email attachments, usually Microsoft Office docs, is a favorite tactic of attackers. It’s a simple method, and it works, but even these methods change from time to time.

Malware 114

Malware Software Cybersecurity 114

Speaker: Blackberry, OSS Consultants, & Revenera

Software is complex, which makes threats to the software supply chain more real every day. 64% of organizations have been impacted by a software supply chain attack and 60% of data breaches are due to unpatched software vulnerabilities. In the U.S. alone, cyber losses totaled $10.3 billion in 2022. All of these stats beg the question, “Do you know what’s in your software?

Cybersecurity

Security Boulevard

MARCH 4, 2021

“The United States now operates in a cyber landscape that requires a level of data security, resilience, and trustworthiness that neither the U.S. government nor the private sector alone is currently equipped to provide. If the U.S. government cannot find a way to seamlessly collaborate with the private sector to build a resilient cyber ecosystem, the nation will never be secure.”.

Government 113

Government 113

Security Affairs

MARCH 4, 2021

Group-IB published a report titled “Ransomware Uncovered 2020-2021 ”. analyzes ransomware landscape in 2020 and TTPs of major threat actors. Group-IB , a global threat hunting and adversary-centric cyber intelligence company, has presented its new report “Ransomware Uncovered 2020-2021 ”. The research dives deep into the global ransomware outbreak in 2020 and analyzes major players’ TTPs (tactics, techniques, and procedures).

Ransomware 113

Ransomware Cybercrime Malware Marketing 113

Bleeping Computer

MARCH 4, 2021

Supermicro and Pulse Secure have released advisories warning that some of their motherboards are vulnerable to the TrickBot malware's UEFI firmware-infecting module, known as TrickBoot. [.].

Firmware 114

Firmware Malware 114

CSO Magazine

MARCH 4, 2021

No one can argue that 2020 wasn't disruptive to almost everyone in the world. And businesses were no exception. To accommodate the need for social distancing, countless organizations had to reconfigure everything from their business models to their networks. The almost overnight shift to remote work meant everyone from employees, to students, to healthcare workers had to connect to their business networks from outside.

Retail 111

Retail Healthcare Manufacturing 111

Speaker: Erika R. Bales, Esq.

When we talk about “compliance and security," most companies want to ensure that steps are being taken to protect what they value most – people, data, real or personal property, intellectual property, digital assets, or any other number of other things - and it’s more important than ever that safeguards are in place. Let’s step back and focus on the idea that no matter how complicated the compliance and security regime, it should be able to be distilled down to a checklist.