Resources

March 27, 2020
InfoSec News Signal Boost - Request for Resumes

), famous for only taking on "difficult projects" is still hiring at a time when many of their competitors are going out of business. The lack of competitors also means tons of work coming in, so job......

March 27, 2020
Data allegedly stolen in ransomware attack on cybersecurity insurance provider Chubb

BY DUNCAN RILEY SiliconAngle 03/26/2020 Cybersecurity insurance provider Chubb Group Holdings Inc. is allegedly the latest victim of a ransomware attack. Details of the attack, which came to light today, are somewhat slim. Chubb, which provides insurance to companies targeted in ransomware att...

March 27, 2020
How to Prioritize Your Mental Health While Self-Isolating

As local governments and health authorities look to curb the spread of COVID-19, more and more people throughout the U.S. are being told to stay home and practice social distancing. Likewise, those who are sick or have tested positive for COVID-19 are further limiting their social contact throu...

March 27, 2020
Booz Allen analyzed 200+ Russian hacking operations to better understand their tactics

Booz Allen Hamilton, the largest private contractor for the US intelligence community, has published a comprehensive report this week detailing 15 years (2004 to 2019) of cyber operations carried out by Russia's military hackers. The report is a rarity in the cyber-security......

March 27, 2020
Rare cybercrime enforcement in Russia yields 25 arrests, shutters 'BuyBest' marketplace

Russian authorities arrested more than two dozen people as part of a law enforcement operation against an alleged network of illicit websites where users bought and sold stolen payment cards and personal data. The Federal Security Service (FSB) on March 20 apprehended 25 people, including Russ...

March 25, 2020
(Moderators Note - March 25th 2020)

Posted by InfoSec News on Mar 25I'm sorry this is the first batch of InfoSec News for this year, and if you want off the list, I totally get it. the unsubscribe details are in the headers of each InfoSec News mail and I'll post those links in the next batch of InfoSec News mails. Befor...

March 25, 2020
A Mysterious Database Exposed 200 Million Americans' Personal Info

By Nathaniel Mott Toms Hardware 03/23/2020 Here's a strange one: CyberNews reported Friday that a Google Cloud database exposed the personal information of roughly 200 million Americans. It's not clear who owned the database, however, and it appeared to have been wiped on March 3. Bu...

March 25, 2020
Beazley: Ransomware Attacks Increasingly Paired With Data Breach

Ransomware attacks became both more frequent and more brutal in 2019, according to a new report by speciality insurer Beazley. Beazley said its Breach Response Services unit saw a 131 percent increase in ransomware incidents last year. What’s more, a larger share ofransomware attacks with pr...

March 25, 2020
Windows code-execution zeroday is under active exploit, Microsoft warns

By Dan Goodin Ars Technica 03/23/2020 Attackers are actively exploiting a Windows zero-day vulnerability that can execute malicious code on fully updated systems, Microsoft warned on Monday. The font-parsing remote code-execution vulnerability is being used in “limited targeted attacks,” ...

March 25, 2020
'My bad': Minister apologises for MyGov hack claim

MyGov capacity been increased nearly threefold to deal with surging unemployment applications, but the government web portal went down a second time under unprecedented demand on Tuesday. As Services Australia Minister Stuart Robert apologised for claiming......

March 27, 2020
Malicious USB Drive Hides Behind Gift Card Lure

Victims are being enticed to insert an unknown USB drive into their computers....

March 27, 2020
Virgin Media Could Pay GB pound 4.5B for Leak Affecting 900,000 Customers

A misconfigured database holding personal data was left available online between April 2019 and February 2020....

March 27, 2020
The Wild, Wild West(world) of Cybersecurity

Though set in the future, HBO's "Westworld" works as an allegory for the present moment in cybersecurity. ...

March 27, 2020
Purported Brute-Force Attack Aims at Linksys Routers as More People Work Remotely

The attack takes control of poorly secured network devices, redirecting Web addresses to a COVID-themed landing page that attempts to fool victims into downloading malware....

March 26, 2020
Cyber Version of 'Justice League' Launches to Fight COVID-19 Related Hacks

Goal is to help organizations - especially healthcare entities - protect against cybercriminals trying to take advantage of the pandemic....

March 26, 2020
Insurance Giant Chubb Might Be Ransomware Victim

A ransomware operator claims to have successfully attacked Chubb Insurance databases....

March 26, 2020
How to Evict Attackers Living Off Your Land

As cyber defenses improve, adversaries are shifting to stealthy "living-off-the-land" attacks that use targets' own tools against them. Here are some tips to defend your turf. ...

March 26, 2020
How Zoom, Netflix, and Dropbox are Staying Online During the Pandemic

Inside the efforts to keep the quarantined world's popular Internet services running smoothly....

March 26, 2020
10 Security Services Options for SMBs

Outsourcing security remains one of the best ways for small to midsize businesses to protect themselves from cyberthreats. ...

March 26, 2020
Security Not a Priority for SAP Projects, Users Report

Nearly 70% of SAP users surveyed believe organizations lacked focus on IT security during previous SAP implementations....

March 26, 2020
3 Mobile Security Problems That Most Security Teams Haven't Fixed Yet

Mobility must be included in the security operations workflow so that company data is protected regardless of where remote workers are located....

March 26, 2020
Technology Empowers Pandemic Response, But Privacy Worries Remain

As technology companies and the medical community work to find ways to track and test for the virus, privacy might fall by the wayside....

March 26, 2020
Introducing Zero-Trust Access

It's too early to tell whether ZTA will be a VPN killer or not, but major players are ramping up products in this new class of security technology that focuses on the cloud. ...

March 26, 2020
China-Based Threat Group Launches Widespread Malicious Campaign

The motives behind the attacks remain unclear, but likely triggers include the ongoing trade war between the US and China and the unfolding COVID-19 pandemic....

March 25, 2020
Missing Patches, Misconfiguration Top Technical Breach Causes

Less than half of businesses surveyed can patch critical vulnerabilities within 72 hours. Why does the process take so long?...

March 25, 2020
Tupperware Hit by Card Skimmer Attack

Malicious code was found hidden inside graphics files on the storage container maker's e-commerce website....

March 25, 2020
What Should I Do If Someone Is Impersonating My Company in a Phishing Campaign?

Two security awareness advocates from KnowBe4 provide some solid suggestions....

March 25, 2020
Do DevOps Teams Need a Company Attorney on Speed Dial?

In today's regulatory and legislative environment, companies and individuals are exposed to lawsuits over security breaches, resulting in significant fines and ending careers....

March 25, 2020
FBI Shutters Russian-Based Hacker Platform, Makes Arrest

The Deer.io platform let cybercriminals buy access to virtual storefronts where they could sell illicit products and services....

March 25, 2020
COVID-19: Getting Ready for the Next Business Continuity Challenge

What comes after you've empowered your remote workforce in the wake of the coronavirus pandemic? Dealing with a large portion of that workforce getting sick at the same time....

Discover how Cloudburst Security can support you.

CONTACT US