Cybersecurity News


Colonial Pipeline CEO: Ransomware Attack Started via Pilfered 'Legacy' VPN Account

No multi-factor authentication was attached to the stolen VPN password used by the attackers, Colonial Pipeline president & CEO Joseph Blount told a Senate committee today.
08 June 2021

TrickBot Coder Faces Decades in Prison

TrickBot Coder Faces Decades in Prison A Latvian malware developer known as "Max" has been arraigned on 19 counts related to fraud, identity theft, information theft and money laundering.
08 June 2021

Microsoft CISO Shares Remote Work Obstacles & Lessons Learned

Bret Arsenault explains changes he implemented along the way as Microsoft's workforce went from 20% to 97% remote.
08 June 2021

Google Patches Critical Android RCE Bug

Google Patches Critical Android RCE Bug Google's June security bulletin addresses 90+ bugs in Android and Pixel devices.
08 June 2021

How Employees Can Keep Their 401(k)s Safe From Cybercriminals

How Employees Can Keep Their 401(k)s Safe From Cybercriminals As retirement fund balances grow, cybercriminals are becoming more brazen in their efforts to deplete people's savings.
08 June 2021

Hundreds of suspected criminals arrested after being tricked into using FBI‑run chat app

Law enforcement around the world used a messaging app called AN0M to monitor the communications of alleged criminals

The post Hundreds of suspected criminals arrested after being tricked into using FBI‑run chat app appeared first on WeLiveSecurity

08 June 2021

‘An0m’ Encrypted-Chat Sting Leads to Arrest of 800

‘An0m’ Encrypted-Chat Sting Leads to Arrest of 800 The FBI and Australian law enforcement set up the encrypted chat service and ran it for over 3 years, seizing weapons, drugs and over $48m in cash.
08 June 2021

Cyber Resilience: The Emerald City of the Security World

Cyber Resilience: The Emerald City of the Security World Small and midsize businesses and managed service providers must use their heart, brain, and courage as they follow the Yellow Brick Road to cyber resilience.
08 June 2021

Paving the way: Inspiring Women in Payments - A podcast featuring Carey Ferro

 

Carey Ferro credits much of her success to having a healthy sense of curiosity. Asking questions and understanding how things work at an early age can help one shape and grow technology as a lifelong passion. But even more important, Carey says learning to practice reflection is an essential part of continued personal growth and finding balance in one’s life. In this edition of our podcast, Carey discusses the importance of curiosity, courage, and being inspired by the Japanese concept of ikigai.

08 June 2021

An Answer to APP Scams You Can Bank On

Financial institutions' usual fraud-detection methods can't detect most authorized push payment (APP) scams, putting customers and banks at risk.
08 June 2021

Billions of Compromised Records and Counting: Why the Application Layer is Still the Front Door for Data Breaches

Billions of Compromised Records and Counting: Why the Application Layer is Still the Front Door for Data Breaches Security teams should brace for an unsettling and unprecedented year, as we’re on pace to see 40 billion records compromised by the end of 2021. Imperva’s Terry Ray explains what security teams need to do to bolster their defenses.
08 June 2021

Evil Corp Impersonates PayloadBin Group to Avoid Federal Sanctions

Evil Corp Impersonates PayloadBin Group to Avoid Federal Sanctions The cybercriminals try to pin new ransomware on Babuk Locker in an effort to fly under the radar of an ongoing FBI investigation.
08 June 2021

A deep dive into Nefilim, a ransomware group with an eye for $1bn+ revenue companies

The group is one of many that employ two separate methods to blackmail victims.
08 June 2021

Justice Dept. Claws Back $2.3M Paid by Colonial Pipeline to Ransomware Gang

The U.S. Department of Justice said today it has recovered $2.3 million worth of Bitcoin that Colonial Pipeline paid to ransomware extortionists last month. The funds had been sent to DarkSide, a ransomware-as-a-service syndicate that disbanded after a May 14 farewell message to affiliates saying its Internet servers and cryptocurrency stash were seized by unknown law enforcement entities.
07 June 2021

First Known Malware Surfaces Targeting Windows Containers

Siloscape is designed to create a backdoor in Kubernetes clusters to run malicious containers.
07 June 2021

DoJ Seizes $2.3M in Bitcoin Paid to Colonial Pipeline Attackers

The amount allegedly represents a May 8 payment to the DarkSide ransomware group.
07 June 2021

FBI Claws Back Millions of DarkSide’s Ransom Profits

FBI Claws Back Millions of DarkSide’s Ransom Profits The tables have been turned, the FBI & DOJ said after announcing the use of blockchain technology to track down the contents of DarkSide's cryptocurrency wallet.
07 June 2021

Bad Apple: App Store Rife with Fraud, Fleeceware

Bad Apple: App Store Rife with Fraud, Fleeceware Malicious apps make up 2 percent of top grossing apps in Apple App Store.
07 June 2021

Latvian Woman Charged for Role In Crafting Trickbot Malware

Alla Witte and her associates are accused of using Trickbot to infect tens of millions of computers around the world, the Justice Department reports.
07 June 2021

CISA Warns Criminals Seek to Exploit Critical VMware Bug

Organizations running vCenter Server and VMware Cloud Foundation are urged to apply fixes deployed on May 25.
07 June 2021