Cybersecurity News


What’s Next for REvil’s Victims? 

What’s Next for REvil’s Victims?  Podcast: Nothing, says a ransomware negotiator who has tips on staying out of the sad subset of victims left in the lurch, mid-negotiation, after REvil's servers went up in smoke.
19 July 2021

Unpatched iPhone Bug Allows Remote Device Takeover

Unpatched iPhone Bug Allows Remote Device Takeover A format-string bug believed to be a low-risk denial-of-service issue turns out to be much nastier than expected.
19 July 2021

Law Firm for Ford, Pfizer, Exxon Discloses Ransomware Attack

Campbell Conroy & O'Neil reports the attack affected personal data including Social Security numbers, passport numbers, and payment card data for some individuals.
19 July 2021

Don’t Wanna Pay Ransom Gangs? Test Your Backups.

Browse the comments on virtually any story about a ransomware attack and you will almost surely encounter the view that the victim organization could have avoided paying their extortionists if only they'd had proper data backups. But the ugly truth is there are many non-obvious reasons why victims end up paying even when they have done nearly everything right from a data backup perspective. 
19 July 2021

US Accuses China of Using Criminal Hackers in Cyber Espionage Operations

US Accuses China of Using Criminal Hackers in Cyber Espionage Operations DOJ indicts four Chinese individuals for alleged role in attacks targeting intellectual property, trade secrets belonging to defense contractors, maritime companies, aircraft service firms, and others.
19 July 2021

US Accuses China of Using Criminal Hackers in Cyber Espionage Operations

US Accuses China of Using Criminal Hackers in Cyber Espionage Operations DOJ indicts four Chinese individuals for alleged role in attacks targeting intellectual property, trade secrets belonging to defense contractors, maritime companies, aircraft service firms, and others.
19 July 2021

How Gaming Attack Data Aids Defenders Across Industries

How Gaming Attack Data Aids Defenders Across Industries Web application attacks against the video game industry quadrupled in 2020 compared to the previous year, but companies outside entertainment can learn from the data.
19 July 2021

NSO Group Spyware Used On Journalists & Activists Worldwide

An investigation finds Pegasus spyware, intended for use on criminals and terrorists, has been used in targeted campaigns against others around the world.
19 July 2021

Ruthless Attackers Target Florida Condo Collapse Victims

Ruthless Attackers Target Florida Condo Collapse Victims Hackers are stealing the identities of those lost in the condo-collapse tragedy.
19 July 2021

Protecting Phones From Pegasus-Like Spyware Attacks

Protecting Phones From Pegasus-Like Spyware Attacks Podcast: Can a new SIM card and prepaid service from an MVNO help? Former spyware insider, current mobile white hat hacker Adam Weinberg on how to block spyware attacks.
19 July 2021

When Ransomware Comes to (Your) Town

When Ransomware Comes to (Your) Town While steps for defending against a ransomware attack vary based on the size of the government entity and the resources available to each one, rooting out ransomware ultimately will come down to two things: system architecture and partnerships.
19 July 2021

Leaked NSO Group Data Hints at Widespread Pegasus Spyware Infections

Leaked NSO Group Data Hints at Widespread Pegasus Spyware Infections The secretive Israeli firm was allegedly storing 50,000+ mobile phone numbers for activists, journalists, business executives and politicians -- possible targets of iPhone and Android hacking.
19 July 2021

UK and White House blame China for Microsoft Exchange Server hack

Updated: The UK government says the country is responsible for "systematic cyber sabotage."
19 July 2021

Breaking Down the Threat of Going All-In With Microsoft Security

Limit risk by dividing responsibility for infrastructure, tools, and security.
19 July 2021

7 Ways AI and ML Are Helping and Hurting Cybersecurity

In the right hands, artificial intelligence and machine learning can enrich our cyber defenses. In the wrong hands, they can create significant harm.
19 July 2021

UK blames China for Microsoft Exchange Server hack

The government says the country is responsible for "systematic cyber sabotage."
19 July 2021

NSO Group's Pegasus spyware used against journalists, political activists worldwide: report

A probe into the group suggests that its products are being used for purposes beyond criminal or terrorist investigations.
19 July 2021

Swedish man sentenced for gold-backed cryptocurrency scam

Prosecutors say that investors were defrauded out of over $16 million.
19 July 2021

Linux Variant of HelloKitty Ransomware Targets VMware ESXi Servers

Linux Variant of HelloKitty Ransomware Targets VMware ESXi Servers HelloKitty joins the growing list of ransomware bigwigs going after the juicy target of VMware ESXi, where one hit gets scads of VMs.
16 July 2021