16 May 2019

Baltimore Ransomware Siege Enters Second Week of Bitcoin Extortion Attack

The City of Baltimore, Maryland still has not recovered from the ransomware infection that prompted it to shut down most of its servers on May 7. While the city’s most essential services such as emergency services remain operational, many other systems are down. The City was targeted by a ransomware

Read More
16 May 2019

When all else fails, organizations realize they must share threat intel

A new IronNet survey shows that over 94% of organizations share certain intelligence (such as malicious IP’s and domains) as a form of collective defense and the same number of firms is open to share more intel with industry peers if this will boost their threat detection efforts, while 92%

Read More
16 May 2019

How to create a business-driven cybersecurity strategy: 3 tips

A new PwC study looks at the characteristics of security “trailblazers,” i.e. the top 25% of firms in terms of cybersecurity. According to the report, over 80% of the trailblazers indicated that their cybersecurity staff managed to anticipate and mitigate a new cyber threat to the business before it impacted

Read More
16 May 2019

Hospitals Failing on Cybersecurity Hygiene

New Forescout research highlights how reliance on outdated systems is putting healthcare organizations (HCOs) at risk. The study found that a staggering 71% of Windows devices in HCOs run Windows 7, Windows 2008 or Windows Mobile, even though Microsoft will end support for these operating systems by January 2020. Currently

Read More
16 May 2019

Hackers Inject Magecart Card Skimmer in Forbes’ Subscription Site

Bad Packets Report has uncovered a Magecart campaign targeting the subscription website of Forbes. Magecart is an umbrella term for various criminal groups that attack e-commerce websites with the aim of injecting them with card skimming malware. In this case, the threat actors managed to inject a malicious script into

Read More
15 May 2019

Trump is reportedly preparing to sign an executive order that would enable a ban on Huawei in the US

US President Donald Trump is expected to sign an executive order this week that would allow the US government to bar US organizations from using telecommunications equipment from firms if this use is considered to represent a national security risk. The order, which comes in the midst of new trade

Read More
15 May 2019

Intel CPUs Impacted By New Class of Spectre-Like Attacks

Once again, security researchers have discovered critical vulnerabilities in CPU chips that allow attackers to use a technique called speculative execution in order to get CPUs to leak sensitive information. The January 2018 disclosure of a previous set of such flaws, called Meltdown and Spectre, sent shock waves through the

Read More
15 May 2019

Israeli TV Eurovision webcast hacked with fake missile alert

On Tuesday, threat actors hacked into the online video stream of the Eurovision semi-finals held in Tel Aviv, Israel and used their access to issue fake warning messages of a missile attack on the city. They also broadcast animated satellite footage showing explosions across Tel Aviv. KAN, the Israeli TV

Read More
15 May 2019

Single server ties hacked diplomatic cables to Chinese cyberattacks worldwide

Researchers with the BlackBerry Cylance Threat Intelligence team have discovered that a previously uncovered Chinese hacking campaign targeting correspondence between European Union (EU) diplomats, is related to a host of other campaigns by “disparate” Chinese hacking groups. The researchers found that the campaigns make use of a single command-and-control (C2)

Read More
15 May 2019

How Pro-Iran Hackers Spoofed FP and the News Media

A new report by Citizen Lab sheds light on a sophisticated disinformation campaign that aims to spread Iranian propaganda by promoting articles on spoofed news websites through phony Twitter accounts. The ongoing campaign, dubbed “Endless Mayfly,” started in 2016 and involved at least 11 fake Twitter personas that targeted journalists

Read More