Latest

Business Continuity Management / Disaster Recovery

Ransomware: Should Governments Hack Cybercrime Cartels?

Mathew J. Schwartz  •  January 27, 2021

With ransomware continuing to fuel a massive surge in illicit profits, some experts have been calling on governments to launch offensive hacking teams to target cybercrime cartels. They're also calling for a review of cyber insurance payouts being used to fund ransoms.

Account Takeover Fraud

Pirated Software Sites Deliver Fresh DanaBot Malware

Akshaya Asokan  •  January 27, 2021

Websites advertising pirated and cracked software are being used to deliver an updated version of the DanaBot banking Trojan, which can steal individuals' online banking credentials, according to Proofpoint.

Governance & Risk Management

Australian Financial Regulator Hit by Data Breach

Jeremy Kirk  •  January 27, 2021

More breach victims are emerging as a result of exploits of an unpatched vulnerability in an aging file transfer application from Accellion. The latest announcement comes from the Australian Securities and Investments Commission, which says recent credit license applications were accessed.

►

Governance & Risk Management

Jim Clark: Why He's Giving Away Passwordless Technology

Tom Field  •  January 26, 2021

When he co-founded the firm Beyond Identity in 2020, serial entrepreneur Jim Clark said he felt somewhat responsible for the proliferation of passwords. Now he and partner Tom Jermoluk are doing something about it. They are providing access to their passwordless technology for free. Clark explains why.

Cybercrime

Mimecast Confirms SolarWinds Hackers Breached Company

Scott Ferguson  •  January 26, 2021

Email security vendor Mimecast confirmed Tuesday that the hackers responsible for the SolarWinds supply chain hack also breached the security firm's network to compromise a digital certificate that encrypts data that moves between some of the firm's products and Microsoft's servers.

►

3rd Party Risk Management

Supply Chain Integrity: The Role of Verified Reproducible Builds

Jeremy Kirk  •  January 26, 2021

The SolarWinds supply chain compromise has raised questions over how to detect software that has been tainted during the vendor's development and build process. A concept called verified reproducible builds could help, says David Wheeler of the Linux Foundation.

►

Fraud Management & Cybercrime

Assessing the SolarWinds Hack's Impact on Fraud

Suparna Goswami  •  January 25, 2021

What impact could the SolarWinds supply chain hack have on fraud trends? Al Pascual of Breach Clarity offers an analysis.

DDoS Protection

DDoS Attackers Exploit Vulnerable Microsoft RDP Servers

Prajeet Nair  •  January 25, 2021

Threat actors are exploiting vulnerable Microsoft Remote Desktop Protocol servers to amplify DDoS attacks, according to a report from Netscout, which offers mitigation advice.

Cryptocurrency Fraud

Russian Pleads Guilty to Running Cybercrime Forum

Prajeet Nair  •  January 25, 2021

A Russian national who served as the administrator for the now-defunct Deer.io online clearinghouse - which sold stolen credentials, hacked servers and criminal services, such as assistance performing hacking activities - has pleaded guilty to a federal charge.

Application Security

SonicWall Investigating Zero-Day Attacks Against Its Products

Scott Ferguson  •  January 24, 2021

Security vendor SonicWall is investigating what the company calls a "coordinated attack" against its internal network by threat actors using a zero-day exploit within the company's remote access products. SonicWall is urging customers to apply temporary fixes to secure VPNs and gateways.

Business Email Compromise (BEC)

Fraudsters Are Using Google Forms to Evade Email Filters

Prajeet Nair  •  January 23, 2021

Fraudsters are using Google forms to target retail, telecom, healthcare, energy and manufacturing companies in an apparent reconnaissance campaign to identify targets for a possible follow-up business email compromise attack.

COVID-19

President Biden Orders SolarWinds Intelligence Assessment

Mathew J. Schwartz  •  January 22, 2021

The new Biden administration has pledged to hold Russia accountable for its recent "reckless and adversarial" actions and has ordered a full-scale intelligence review of the SolarWinds hack. The moves signal the importance of cybersecurity to President Biden's national security agenda.