As part of a massive ongoing phishing campaign, the same group of attackers leverage hundreds of lookalike phishing websites to steal from unsuspecting banking customers. Security researchers at CheckPoint have uncovered a two-year phishing campaign targeting customers of Canadian banks. Emails sent under the guise that banking users need to activate a digital certificate as […]
5 Cybersecurity Tips From Lawyers
A question that often comes up around cybersecurity and incident response is when to involve legal. The best time to get advice from your attorney is before an incident. Here are 5 tips from legal resources of steps to take NOW: 1) Obtain verification from key vendors that they have measures in place to protect […]
Security Generation Gaps
People from different generations tend to approach cybersecurity differently. Organizations should tailor their security programs and phishing tests with this in mind. According to Azeem Aleem, vice president cybersecurity consulting at NTT Ltd. In an article for Verdict, Aleem cited a recent study by NTT which found that employees over the age of thirty are […]
U.S. Government Issues Warning About Possible Iranian Cyberattacks
Christopher C. Krebs, Director of Cybersecurity and Infrastructure Security Agency issued a warning about a potential new wave of Iranian cyber-attacks targeting U.S. assets after Maj. Gen. Qassim Suleimani was killed by a U.S. airstrike at the Baghdad airport in Iraq. “Given recent developments, re-upping our statement from the summer,” Krebs said in a rare […]
Major Dutch University Still Fighting Ransomware Downtime; Expert Says Russian Hacker Group Responsible
Major Dutch Maastricht University was still trying to recover from a crippling cyber attack nearly a week after the university’s computer systems were infected by ransomware. New York-based cyber expert Vitali Kremez said that Russian organized cybercrime outfit TA505 is responsible, they distribute Clop, a ransomware strain first discovered in February 2019. The University which […]
2020 Cybersecurity Predictions by KnowBe4’s Experts
With data breaches hitting headlines daily, IT pros are constantly concerned about the next big threat. Whether it’s ransomware, phishing, or completely new attack vectors, there’s always something on the horizon rearing its ugly head. KnowBe4 has compiled a list of its top 10 cybersecurity predictions for 2020 from its executive leadership team and array […]
4 patients sue Alabama health system after ransomware attack
BeckerHospitalReview just posted a new wrinkle in the battle against ransomware: “Four patients filed a class action lawsuit against Tuscaloosa, Ala.-based DCH Health System, alleging privacy violations and medical care disruption after an October ransomware attack. Five things to know: 1. The patients filed the lawsuit on Dec. 23, according to the Tuscaloosa Real-Time News. […]
Phishing Remains the Most Widespread Risk
As organizations look to improving their defenses, it’s worth remembering that attackers usually get through those defenses by manipulating the human beings those security measures are in place to protect. A recent warning on increased phishing attacks worth taking to heart comes from Deloitte Malaysia Cyber Risk, Risk Advisory executive director Ho Siew Keient. “Fraud, […]
FBI Warns U.S. Companies About Maze Ransomware
The FBI is warning U.S. companies about a series of recent ransomware attacks in which the perpetrator, sometimes posing as a government agency, steals data and then encrypts it to further extort victims.In an advisory to the private sector last week, the FBI called for vigilance to combat the so-called Maze ransomware, which the bureau […]
WIRED: “The Decade Big-Money Email Scams Took Over”
Excellent article in WIRED, where they observed that In the last few years, the “Nigerian prince” scams have gotten a major upgrade. Here is an extract and a link to the full article: “For a long time cybercriminals believed that the money was within the masses,” says Crane Hassold, senior director of threat research at […]