Krebs on Security

OCTOBER 25, 2021

The Conti ransomware affiliate program appears to have altered its business plan recently. Organizations infected with Conti’s malware who refuse to negotiate a ransom payment are added to Conti’s victim shaming blog, where confidential files stolen from victims may be published or sold. But sometime over the past 48 hours, the cybercriminal syndicate updated its victim shaming blog to indicate that it is now selling access to many of the organizations it has hacked.

Ransomware 231

Ransomware Hacking Malware Advertising 231

Schneier on Security

OCTOBER 25, 2021

Citizen Lab is that a New York Times journalist was hacked with the NSO Group’s spyware Pegasus, probably by the Saudis. The world needs to do something about these cyberweapons arms manufacturers. This kind of thing isn’t enough; NSO Group is an Israeli company.

Spyware 211

Spyware Hacking Manufacturing 211

The Last Watchdog

OCTOBER 25, 2021

When it comes to cyber attacks, most businesses think: “It could never happen to us,” but some plots are just hitting a little too close to home. Related: T-Mobile breach reflects rising mobile device attacks. For instance, if you’ve ever played Grand Theft Auto, you know the goal is quite simply mass destruction: Use whatever resources you have at your disposal to cause as much damage as you possibly can and just keep going.

Energy and Utilities 190

Energy and Utilities Cyber Attacks Mobile CISO 190

Tech Republic Security

OCTOBER 25, 2021

Law enforcement officials and cyber specialists hacked into REvil's network, gaining control of some of its servers, sources told Reuters.

Ransomware 174

Ransomware Hacking 174

Advertisement

How many people would you trust with your house keys? Chances are, you have a handful of trusted friends and family members who have an emergency copy, but you definitely wouldn’t hand those out too freely. You have stuff that’s worth protecting—and the more people that have access to your belongings, the higher the odds that something will go missing.

Cybersecurity

Bleeping Computer

OCTOBER 25, 2021

Microsoft says the Russian-backed Nobelium threat group behind last year's SolarWinds hack is still targeting the global IT supply chain, with 140 resellers and technology service providers attacked and at least 14 breached since May 2021. [.].

Hacking 143

Hacking Technology 143

Tech Republic Security

OCTOBER 25, 2021

More than half of those surveyed by data management firm Cohesity said that companies that pay the ransom in an attack encourage ransomware and bad actors.

Ransomware 162

Ransomware 162

CyberSecurity Insiders

OCTOBER 25, 2021

A research carried out by fraud detection firm SEON has ranked Denmark as the safest nation to spend time online, followed by Germany and United States. Releasing a report on this note, security researchers compiled their report based on the information passed on by the National Cyber Security Index (NCSI) and the Global Cybersecurity Index 2020. SEON backed report dubbed Cybersecurity Exposure Index (CEI) of 2020 clearly specified that the populace of Denmark seeking online services as the anti

Cyber threats 137

Cyber threats Data breaches Internet Internet 137

Security Boulevard

OCTOBER 25, 2021

New Senate Bill S. 2547 rightly addresses flaws in the current procedure for sharing sensitive court documents by requiring digital signatures that provide additional security. Legislation that considers the new digital landscape is becoming increasingly necessary as workplace functions have been driven online by the pandemic, creating more opportunities for tampering.

Encryption 137

Encryption Risk Government Cybersecurity 137

Bleeping Computer

OCTOBER 25, 2021

Microsoft has announced the addition of new live macOS and Linux response capabilities to Defender for Endpoint, , the enterprise version of Redmond's Windows 10 Defender antivirus. [.].

Antivirus 136

Antivirus 136

CyberSecurity Insiders

OCTOBER 25, 2021

Tesco customers are struggling to book their groceries online as the operations of the company’s dedicated app and the online store have been disrupted through a Cyber Attack. The UK’s supermarket chain has admitted that its operations were affected by the cyber incident that could also put a dent on the profits of it this summer. Tracking orders, placing orders, payment processing were deeply affected said a source from Tesco on the condition of anonymity.

Cyber Attacks 133

Cyber Attacks Threat Reports Technology Hacking 133

Advertiser: Revenera

In a recent study, IDC found that 64% of organizations said they were already using open source in software development with a further 25% planning to in the next year. Most organizations are unaware of just how much open-source code is used and underestimate their dependency on it. As enterprises grow the use of open-source software, they face a new challenge: understanding the scope of open-source software that's being used throughout the organization and the corresponding exposure.

Risk

Bleeping Computer

OCTOBER 25, 2021

An unknown ransomware group is exploiting a critical SQL injection bug found in the BillQuick Web Suite time and billing solution to deploy ransomware on their targets' networks in ongoing attacks. [.].

Ransomware 136

Ransomware Software 136

Security Boulevard

OCTOBER 25, 2021

Wouldn’t it be great if you had enough confidence in your information security program that if a criminal gang attacked you, you would be able to defend yourself, keep your business going and notify the appropriate legal authorities and any vendor partners that might be impacted? With a mature information security program, you are able. The post Can you Become Ransomware-Proof?

Ransomware 131

Ransomware Information Security Cyber Risk CISO 131

Bleeping Computer

OCTOBER 25, 2021

?Today is the 20th anniversary of Windows XP, and although the operating system reached the end of support in 2014, way too many people continue to use the insecure version of Windows. [.].

Software 135

Software 135

CyberSecurity Insiders

OCTOBER 25, 2021

Australian government has for the first time announced a cyber security skills program that will act as a $14.9 million initiative in training and hiring fresh batch of professional talent in Cybersecurity Science. Questcon’s Cyber Ready Program that has study material and training modules for students across primary, secondary and tertiary sectors.

Government 128

Government Identity Theft Cyber threats Banking 128

Advertisement

Within the past few years, ransomware attacks have turned to critical infrastructure, healthcare, and government entities. Attackers have taken advantage of the rapid shift to remote work and new technologies. Add to that hacktivism due to global conflicts and U.S. elections, and an increased focus on AI, and you have the perfect recipe for a knotty and turbulent 2024.

Cybersecurity

Bleeping Computer

OCTOBER 25, 2021

Mozilla blocked malicious Firefox add-ons installed by roughly 455,000 users after discovering in early June that they were abusing the proxy API to block Firefox updates. [.].

130

130

CSO Magazine

OCTOBER 25, 2021

Deepfake technology is an escalating cybersecurity threat to organizations. Cybercriminals are investing in AI and machine learning to create synthetic or manipulated digital content (including images, video, audio and text) for use in cyberattacks and fraud. This content can realistically replicate or alter appearance, voice, mannerisms or vocabulary with the aim of tricking targets both human and autonomous into believing that what they see, hear or read is authentic and trustworthy. [ Learn w

Social Engineering 126

Social Engineering Engineering Authentication CSO 126

Bleeping Computer

OCTOBER 25, 2021

A critical Discourse remote code execution (RCE) vulnerability tracked as CVE-2021-41163 was fixed via an urgent update by the developer on Friday [.].

Software 134

Software 134

CSO Magazine

OCTOBER 25, 2021

The future of work arrived much more abruptly than anticipated, bringing with it many pressing security challenges. The global pandemic forced organizations of all types and sizes to support remote work overnight, and it’s clear that we’re not going back. In fact, according to a recent Upwork report , 36.2 million Americans will be working remotely by 2025, which represents an 87% hike over pre-COVID norms.

124

124

Advertisement

The healthcare industry has massively adopted web tracking tools, including pixels and trackers. Tracking tools on user-authenticated and unauthenticated web pages can access personal health information (PHI) such as IP addresses, medical record numbers, home and email addresses, appointment dates, or other info provided by users on pages and thus can violate HIPAA Rules that govern the Use of Online Tracking Technologies by HIPAA Covered Entities and Business Associates.

Healthcare

Security Boulevard

OCTOBER 25, 2021

As readers of the AppSec Observer blog are aware, application attacks have continued unabated throughout the massive economic and social changes of the past two years. Most readers are also aware that an increasing number of cyberattacks target the software supply chain. The devastating SolarWinds attack in 2020 was followed by the supply chain attack on Colonial Pipeline that disrupted fuel supplies in the eastern U.S., the attack on Kaseya that impacted hundreds of its customers’ customers, an

Software 124

Software 124

Webroot

OCTOBER 25, 2021

Google Chromebook devices could rightly be called a game-changer for education. These low-cost laptops are within financial reach for far more families than their more expensive competitors, a fact that proved crucial with the outbreak of the COVID-19 pandemic at the beginning of last year. During that period, Google donated more than 4,000 Chromebook devices to California schools and the sale of the devices surged, outselling Macs for the first time.

Identity Theft 121

Identity Theft Spyware Phishing Antivirus 121

Security Boulevard

OCTOBER 25, 2021

After a year and a half of working from home, companies have started calling their employees back into their offices. However, as the COVID-19 Delta variant continues to spread, many companies are expecting to see a hybrid workforce model emerge as the new normal. Uber, Citigroup and Qualtrics, for example, have each issued employee schedules. The post Securing a New World: Navigating Security in the Hybrid Work Era appeared first on Security Boulevard.

VPN 118

VPN Security Awareness Mobile Cybersecurity 118

CSO Magazine

OCTOBER 25, 2021

Allison Miller’s official title— CISO and vice president of trust —says a lot about her role and responsibilities at Reddit. Like all CISOs, Miller oversees the cybersecurity strategy and operations at the 16-year-old company. She’s also in charge of privacy, ensuring that Reddit safeguards data against illicit uses and unauthorized access. But unlike many other security chiefs, Miller is specifically tasked with safety, too, a job she summarizes as “keeping shenanigans from impacting a good use

CISO 117

CISO CSO Cybersecurity 117

Advertisement

The losses companies suffered in 2023 ransomware attacks increased by 74% compared to those of the previous year, according to new data from the Federal Bureau of Investigation (FBI). The true figure is likely to be even higher, though, as many identity theft and phishing attacks go unreported. Ransomware attackers can potentially paralyze not just private sector organizations but also healthcare facilities, schools, and entire police departments.

Identity Theft

Security Affairs

OCTOBER 25, 2021

Russia-linked Nobelium APT group has breached at least 14 managed service providers (MSPs) and cloud service providers since May 2021. The SolarWinds security breach was not isolated, Russia-linked Nobelium APT group has targeted140 managed service providers (MSPs) and cloud service providers and successfully breached 14 of them since May 2021. The NOBELIUM APT ( APT29 , Cozy Bear , and The Dukes) is the threat actor that conducted supply chain attack against SolarWinds, which involved multip

Telecommunications 116

Telecommunications Technology Hacking Malware 116

Security Boulevard

OCTOBER 25, 2021

Nothing pairs quite as well as cybersecurity and Halloween. Prepare for more than trick-or-treaters this spooky season with these 5 wicked Website Security tips. . 1 – Make a horcrux ( aka backup your data) –. In Harry Potter, a horcrux lets wizards store a fragment of their soul in different objects as a safeguard against death. Similarly, a backup can restore your site to life after it’s compromised by a cyber attack.

Backups 114

Backups Cyber Attacks Cybersecurity Education 114

Security Affairs

OCTOBER 25, 2021

Threat actors infected the iPhone of New York Times journalist Ben Hubbard with NSO Group’s Pegasus spyware between June 2018 to June 2021. The iPhone of New York Times journalist Ben Hubbard was repeatedly infected with NSO Group’s Pegasus spyware. The device was compromised two times, in July 2020 and June 2021. The attacks were documented by the Citizen Lab research team from the University of Toronto, the infections took place while the journalist was wording on a book about Saud

Spyware 110

Spyware Hacking Backups Accountability 110

Bleeping Computer

OCTOBER 25, 2021

A new SMS scam campaign relying upon 151 apps has been uncovered, with many of these apps managing to find their way into the Play Store where they amassed 10.5 million downloads. [.].

Scams 109

Scams 109

Speaker: Blackberry, OSS Consultants, & Revenera

Software is complex, which makes threats to the software supply chain more real every day. 64% of organizations have been impacted by a software supply chain attack and 60% of data breaches are due to unpatched software vulnerabilities. In the U.S. alone, cyber losses totaled $10.3 billion in 2022. All of these stats beg the question, “Do you know what’s in your software?

Cybersecurity

Security Affairs

OCTOBER 25, 2021

US CISA urges administrators to address a critical remote code execution flaw, tracked as CVE-2021-41163, in Discourse installs. Discourse is a popular open-source Internet forum and mailing list management software application. The US CISA published a security advisory to urge administrators to fix a critical remote code execution flaw, tracked as CVE-2021-41163 , in Discourse installs.

Software 106

Software Engineering Internet Internet 106

Trend Micro

OCTOBER 25, 2021

We wanted to get a better understanding of what victims go through during the aftermath and recovery process of a ransomware attack to help others in case they find themselves in a similar situation. To do this, we analyzed victim support chats for five ransomware families.

Ransomware 103

Ransomware 103

The Hacker News

OCTOBER 25, 2021

Nobelium, the threat actor behind the SolarWinds compromise in December 2020, has been behind a new wave of attacks that compromised 14 downstream customers of multiple cloud service providers (CSP), managed service providers (MSP), and other IT services organizations, illustrating the adversary's continuing interest in targeting the supply chain via the "compromise-one-to-compromise-many"

98

98

Bleeping Computer

OCTOBER 25, 2021

The second-largest telecommunications provider in South Korea, KT Corporation, has suffered a nationwide outage today, leaving all its 16.5 million customers without internet connectivity and telephony services for about 40 minutes. [.].

Telecommunications 98

Telecommunications Internet Internet Technology 98

Speaker: Erika R. Bales, Esq.

When we talk about “compliance and security," most companies want to ensure that steps are being taken to protect what they value most – people, data, real or personal property, intellectual property, digital assets, or any other number of other things - and it’s more important than ever that safeguards are in place. Let’s step back and focus on the idea that no matter how complicated the compliance and security regime, it should be able to be distilled down to a checklist.