31 Oct 2019

21 Million Logins for Top 500 Firms Offered on the Dark Web

Threat actors are distributing more than 21 million login details for Fortune 500 companies on the dark web, security researchers with ImmuniWeb have discovered by crawling underground market places, forums and other sites. Over 16 million of the credentials were stolen in the past year. According to the report “95%

Read More
31 Oct 2019

An 82-Year-Old Is Suspected Of Decades-Long Scam Selling Dangerous Weapons Parts To US Military

The US Department of Justice is accusing an 82-year-old American citizen of having sold “blatantly defective replacement parts for US military weapon systems” to the US Department of Defense (DoD) since 1997. The defective parts were mostly tubes and pipes for controlling fluid in military machines that were deemed critical

Read More
31 Oct 2019

Office 365 users targeted with fake voicemail alerts in suspected whaling campaign

McAfee researchers have uncovered a phishing campaign that targets major enterprises with fake voicemail messages. Since the targeted individuals include company executives, the researchers suggest that the the attack could be considered “whaling.” The phishing emails impersonate Microsoft and inform users about a missed call. The message includes an HTML

Read More
31 Oct 2019

Hackers who extorted Uber and LinkedIn plead guilty

In 2016, one American citizen and one Canadian national teamed up to compromise the systems of Uber and LinkedIn in order to steal user information, which they subsequently used in order to extort the two companies, the two admitted in court this week. The threat actors used a custom tool

Read More
31 Oct 2019

Data Breach Hits 22 Million Web.com, Register.com, Network Solutions Accounts

Threat actors may have stolen around 22 million records of current and former customers of Web.com and its subsidiaries Network Solutions and Register.com. The breach occurred at the end of August of this year, but the popular domain registrars did not discover it until October 16. The exposed data was

Read More
31 Oct 2019

Why cloud apps could be your biggest security worry

A new report by Securonix shows that about one in four organizations suffered more than 5 insider attacks in the last 12 months, and 70% believe that these attacks are increasingly common. According 4 in 10 infosec pros, cloud storage is more vulnerable to insider threats than any other element

Read More
31 Oct 2019

Murky Details Surround Bed, Bath and Beyond Breach

Bed, Bath and Beyond has suffered a data breach that allegedly impacted less than 1% of the company’s customer accounts. The firm said in an SEC filing that it “discovered that a third party acquired email and password information from a source outside of the company’s systems which was used

Read More
30 Oct 2019

Turkey sees YPG withdrawal incomplete; joint Russian patrols to start Friday

Turkish President Tayyip Erdogan on Wednesday claimed that some members of the Kurdish YPG militia had failed to meet a Tuesday evening deadline to withdraw to 30 km (18.64 miles) from the Turkish border in northeast Syria, adding that his county ‘reserved the right’ to target any YPG fighters in

Read More
30 Oct 2019

DISA Is Looking to Buy AI-Powered Cyber Defenses

The US Department of Defense plans to bolster its cybersecurity defenses by adopting automated cybersecurity solutions that rely on machine learning. The Defense Information Systems Agency (DISA) announced last week that it “desires to leverage commercially available technology to strengthen its ability to detect and thwart cyber-attacks in real-time before

Read More
30 Oct 2019

The nastiest ransomware, phishing and botnets of 2019

According to a new Webroot report, the nastiest ransomware threat of 2019 was the Emotet – Trickbot – Ryuk attack chain that resulted in massive financial losses for targeted organizations. The Trickbot – Ryuk combination also features on the list separately, taking the second spot. Other top ransomware threats were

Read More