14 June 2022
2021
Cyber Attacks More Likely to Bring Down F-35 Jets Than Missiles
Fabienne Lang
https://interestingengineering.com/cyber-attacks-more-likely-to-bring-down-f-35-jets-than-missiles
Excerpt:
“In our ever-increasing digitalized world cybersecurity threats keep growing — and advanced jet fighters such as the F-35 are no exception.”
78% Lack Confidence in Their Company’s Cybersecurity Posture, Prompting 91% to Increase 2021 Budgets
https://finance.yahoo.com/news/78-lack-confidence-company-cybersecurity-153000182.html?guccounter=1
Excerpt:
“Nearly 80% of senior IT and IT security leaders believe their organizations lack sufficient protection against cyberattacks despite increased IT security investments made in 2020 to deal with distributed IT and work-from-home challenges, according to a new IDG Research Services survey commissioned by Insight Enterprises (NASDAQ: NSIT), the global integrator of Insight Intelligent Technology Solutions™ for organizations of all sizes.”
Data breaches have lasting financial effects on hospitals, report suggests
Hannah Mitchell
Excerpt:
“Data breaches can have long-term financial consequences on healthcare organizations, a Frost Radar report finds.”
Identity theft spikes amid pandemic
Amer Owaida
Excerpt:
“The number of reported cases of identity theft in the United States doubled in 2020 year-on-year, the Federal Trade Commission (FTC) has said. In a blogpost marking the start of Identity Theft Awareness Week, the FTC said that it received approximately 1.4 million reports of identity theft last year. The surge in cases is mainly driven by cybercriminals targeting people who have been financially affected by the COVID-19 pandemic.”
Data Breach Costs: Calculating the Losses for Security and IT Pros
Dice Staff
Excerpt:
“With all the cyber threats that made headlines over the past 12 months, there’s one piece of good news that flew under the radar: The average cost of a data breach dipped slightly between 2019 and 2020. For the cybersecurity community, that counts as a win.”
Malware increased by 358% in 2020
https://www.helpnetsecurity.com/2021/02/17/malware-2020/
Excerpt:
“A research study conducted by Deep Instinct reports on the hundreds of millions of attempted cyberattacks that occurred every day throughout 2020 showing malware increased by 358% overall and ransomware increased by 435% as compared with 2019.”
Check Point Software´s Security Report Reveals Extent of Global Cyber Pandemic, and Shows How Organizations Can Develop Immunity in 2021
Excerpt:
“SAN CARLOS, Calif., Feb. 24, 2021 (GLOBE NEWSWIRE) -- Check Point Research (CPR), the Threat Intelligence arm of Check Point® Software Technologies Ltd. (NASDAQ: CHKP), a leading provider of cyber security solutions globally, has published its 2021 Security Report. The report reveals the key attack vectors and techniques observed by CPR researchers as criminal, political and nation-state threat actors exploited the disruption caused by the COVID-19 pandemic to target organizations across all sectors. It also gives cyber-security professionals and C-Level executives the information they need to protect their organizations against these advanced fifth-generation cyber-attacks and threats.”
How Hackers Are Exploiting The COVID-19 Vaccine Rollout
Laura Brooks
https://www.tessian.com/blog/how-hackers-are-exploiting-the-covid-19-vaccine-rollout/
Excerpt:
“Tessian’s mission is to secure the human layer by empowering people to do their best work, without security getting in their way.”
Attackers disrupting COVID-19 efforts and critical supply chains
https://www.helpnetsecurity.com/2021/02/25/attackers-disrupting-covid-19-efforts/
Excerpt:
“Cyberattacks evolved in 2020 as threat actors sought to profit from the unprecedented socioeconomic, business and political challenges brought on by the COVID-19 pandemic, IBM Security reveals.”
Ransomware still a huge cyber threat in 2021
NST Business
https://www.nst.com.my/business/2021/02/669211/ransomware-still-huge-cyber-threat-2021
Excerpt:
“KUALA LUMPUR: Ransomware continues its surge to become the number one threat type globally including Malaysia among other cyber threats looming within today's digital economy.”
#TECH: Safeguarding businesses from ransomware attacks
Izwan Ismail
https://www.nst.com.my/lifestyle/bots/2021/02/664036/tech-safeguarding-businesses-ransomware-attacks
Excerpt:
“It is important for companies to understand the growing ransomware risks and how to keep their businesses safe.RANSOMWARE attacks are increasing globally and it is important that businesses understand the growing risks and how to keep their businesses safe from the financial and reputational impact of these insidious attacks.
Data of 14 Million Amazon and eBay Accounts Leaked on Hacking Websites
https://www.ehackingnews.com/2021/02/data-of-14-million-amazon-and-ebay.html
Excerpt:
“An anonymous user offered 14 million data from Amazon and eBay accounts on a prominent hacking website for dissemination. The details seem to have been obtained from customers of Amazon or eBay having accounts from 18 countries between 2014-2021.”
Cybercrooks Rake in $304M in Romance Scams
Tara Seals
https://threatpost.com/cybercrooks-304m-romance-scams/163972/
Excerpt:
“The number of people being targeted by fake relationship-seekers has spiked during the COVID-19 pandemic. Romance scams remain the most successful fraud strategy for cybercrooks, and represents a growing sector, according to the Federal Trade Commission. Last year, romance schemes accounted for a record $304 million raked into illicit coffers, according to new data – up about 50 percent from 2019.”
Egregor ransomware operators arrested in Ukraine
Catalin Cimpanu
https://www.zdnet.com/article/egregor-ransomware-operators-arrested-in-ukraine/
Excerpt:
“Members of the Egregor ransomware cartel have been arrested this week in Ukraine, French radio station France Inter reported on Friday, citing law enforcement sources.”
Microsoft warns of an increasing number of web shell attacks
Sergiu Gatlan
Excerpt:
“Microsoft says that the number of monthly web shell attacks has almost doubled since last year, with an average of 140,000 such malicious tools being found on compromised servers every month. Web shells are tools (scripts or programs) that threat actors deploy on hacked servers to gain and/or maintain access, as well as to remotely execute arbitrary code or commands, to move laterally within the network, or to deliver additional malicious payloads.”
Free decrypter released for Avaddon ransomware victims... aaand, it's gone!
Catalin Cimpanu
https://www.zdnet.com/article/free-decrypter-released-for-avaddon-ransomware-victims-aaand-its-gone/
Excerpt:
“A Spanish student released a free decryption utility that can help victims of the Avaddon ransomware recover their files for free. Published on GitHub by Javier Yuste, a student at the Rey Juan Carlos University in Madrid, the AvaddonDecrypter works only in cases where victims have not powered off their computers.”
Food-delivery fraudsters deploy hacked accounts, stolen credit card info to skim from orders
Tim Starks
https://www.cyberscoop.com/fraudsters-food-delivery-sift-telegram/
Excerpt:
“Food delivery apps have taken off during the pandemic, and it looks like fraudsters have taken notice. Fraud detection company Sift said Thursday it has seen a rash of scams within the chat app Telegram that target restaurants and delivery apps for theft.”
Security researcher hacks Apple, Tesla, Paypal, more, in clever open-source software attack
Ben Lovejoy
Excerpt:
“A security researcher found a clever way to hack Apple, Tesla, and more than 30 other major companies using a novel open-source software approach. Microsoft, PayPal, Shopify, Netflix, Yelp, and Uber were among the other companies that found their internal systems breached in the proof of concept”
HelloKitty ransomware behind CD Projekt Red cyberattack, data theft
Lawrence Abrams
Excerpt:
“The ransomware attack against CD Projekt Red was conducted by a ransomware group that goes by the name 'HelloKitty,' and yes, that's the name the threat actors utilize. Today, CD Project disclosed that they were the target of a ransomware attack that encrypted devices on their network and led to the theft of unencrypted files.”
Hackers hit CD Projekt Red, steal data, ask for ransom
Zeljka Zorz
https://www.helpnetsecurity.com/2021/02/09/cd-projekt-red-ransom/
Excerpt:
“Polish game developer CD Projekt Red has been hit by hackers, who breached its internal network, stole data, encrypted some devices, and asked for a ransom to not sell of leak online sensitive company documents and the source code of some of their more popular games.”
Hackers publish patient data stolen from two US hospital chains
Graham Cluley
Excerpt:
“The Florida-based Leon Medical Center and Nocona General Hospital in Texas have suffered attacks from hackers that have resulted in extensive information about their patients being published on the internet.”
Hackers tampered with a water treatment facility in Florida by changing chemical levels
Nick Statt
Excerpt:
“Hackers successfully infiltrated the computer system controlling a water treatment facility in the city of Oldsmar, Florida, according to a report from the Tampa Bay Times. In doing so, the hackers were able to remotely control a computer to change the chemical levels of the water supply, increasing the amount of sodium hydroxide before a supervisor was able to catch the act in real time and revert the changes.”
Hacktivists deface multiple Sri Lankan domains, including Google.lk
Catalin Cimpanu
https://www.zdnet.com/article/hacktivists-deface-multiple-sri-lankan-domains-including-google-lk/
Excerpt:
“A mysterious group of hacktivists has poisoned the DNS records of several Sri Lankans (.lk) websites on Saturday and redirected users to a web page detailing various social issues impacting the local population.”
New phishing attack uses Morse code to hide malicious URLs
Lawrence Abrams
Excerpt:
“A new targeted phishing campaign includes the novel obfuscation technique of using Morse code to hide malicious URLs in an email attachment. Samuel Morse and Alfred Vail invented morse code as a way of transmitting messages across telegraph wire. When using Morse code, each letter and number is encoded as a series of dots (short sound) and dashes (long sound).”
Fonix ransomware gives up life of crime, apologizes
Malwarebytes Labs
https://blog.malwarebytes.com/ransomware/2021/02/fonix-ransomware-gives-up-life-of-crime-apologises/
Excerpt:
“Ransomware gangs deciding to pack their bags and leave their life of crime is not new, but it is a rare thing to see indeed.And the Fonix ransomware (also known as FonixCrypter and Xinof), one of those ransomware-as-a-service (RaaS) offerings, is the latest to join the club.”
5G core market size to reach $9.497 million by 2025
https://www.helpnetsecurity.com/2021/02/01/5g-core-market-size-2025/
Excerpt:
“The global 5G core market size is projected to grow from $630 million in 2020 to $9.497 million by 2025, at a CAGR of 72.0% during the forecast period, according to ResearchAndMarkets.”
UK Research and Innovation suffers ransomware attack
Charlie Osborne
https://www.zdnet.com/article/uk-research-and-innovation-suffers-ransomware-attack/
Excerpt:
“UK Research and Innovation (UKRI) has disclosed a ransomware attack that has disrupted services and may have led to data theft.”