06 Dec 2018

FBI: Watch out for Iranian SamSam malware

DHS and the FBI shared a joint alert on December third regarding the critical infrastructure threat posed by the Iranian SamSam virus. The ultimate purpose of the virus is the successful intrusion and takeover of a network for the purpose of extorting a ransom (ransomware). The alert recommended strong passwords,

Read More
06 Dec 2018

GOP campaign arm reports ‘cyber intrusion’

The National Republican Congressional Committee has announced a “cyber intrusion” during the 2018 midterm campaigns and the breach has been official reported to the FBI. Few details were included with the announcement, but no attribution was announced. “The cybersecurity of the committee’s data is paramount, and upon learning of the

Read More
06 Dec 2018

DISA Outlines Plans to Wall Off the Public Internet

The DoD has been seeking white papers from vendors with plans for cloud-based systems that would effectively permit continued use of necessary internet connectivity but cut off public web access in a way that closes doors on most access points for hackers. Through the proposed system, all browsing would be

Read More
06 Dec 2018

Quora Breach Exposes a Wealth of Info on 100M Users

Joining the ranks of organizations like the dealing with a data breach in the past weeks (most notably USPS, Dell EMC, Dunkin Donuts, and Marriott), crowdsourced answer website Quora has had a breach impacting up to 100 million users. The breach included usernames, email addresses, hashed passwords, direct messages, and information

Read More
04 Dec 2018

Russian Hackers Allegedly Attacked Germany and the U.S. on the Same Day

Separate reports have connected Russian hackers to different attacks in the U.S. and in Germany on November 14, although it remains uncertain if the events were linked or whether any systems were breached. “First, U.S. cybersecurity companies reported that the group known as Cozy Bear—allegedly an arm of Russia’s foreign

Read More
04 Dec 2018

MI6 chief says cyber brings ‘potentially existential challenge’

In a rare public speech the head of the British MI6 Alex Younger has several interesting perspectives on the role that cyber will play in future espionage efforts: ‘We are evolving rapidly. Cyber is now our fastest-growing directorate. We are shifting our focus to the nexus between humans and technology.’”

Read More
04 Dec 2018

The Biggest Data Breaches Of All Time, Ranked

News of new data breaches splash across the headlines on a seemingly weekly, if not daily, basis. Marriott’s loss of personal information from around 500 million guests is the most recent and one of the most largest. But how does it stack up against others by sheer numbers? This Nextgov

Read More
03 Dec 2018

Cryptomining software could be used to steal corporate secrets

“Even though cryptocurrency prices have fallen, cybercriminals could still take advantage of mining software, and not for the reasons you think. Instead of creating alternative currencies, cryptomining software could be used for a more sinister attack that could steal corporate secrets, according to Troy Kent, a threat researcher at Awake

Read More
03 Dec 2018

Pegasus Spyware Targets Investigative Journalists in Mexico

“Colleagues of slain Javier Valdez Cárdenas, known for investigating drug cartels, were targeted just days after his death. Of six messages analyzed (though more were received), several contained links shortened with bit.ly that ultimately pointed to known exploit URLs, while others included links directly containing previously–identified NSO Group exploit domains.

Read More
30 Nov 2018

Marriott: Data on 500 Million Guests Stolen in 4-Year Breach

“Hospitality giant Marriott today disclosed a massive data breach exposing the personal and financial information on as many as a half billion customers who made reservations at any of its Starwood properties over the past four years. Marriott said the breach involved unauthorized access to a database containing guest information

Read More