Image: Shutterstock

How BreachForums' 'Pompompurin' Led the FBI to His Home

David Perera • March 24, 2023

The alleged administrator of criminal online forum BreachForums may have thought he took steps to hide his real identity, but instead he left a trail of digital breadcrumbs that led to his arrest and prosecution, shows information unsealed in federal court.

►

Breach Notification

It's Raining Zero-Days in Cyberspace

Latest

Artificial Intelligence & Machine Learning

ChatGPT Exposed Payment Card Data of Subscribers

Prajeet Nair • March 26, 2023

A now-patched bug that caused OpenAI to take down ChatGPT chatbot for nine hours on Monday also revealed the last four digits of payment cards, the company disclosed Friday. One user said he saw the history of another account including the topics "phobia of rats" and "sexist music video clips."

Cybercrime

3-Year JS Injection Campaign Targets 51,000 Websites

Prajeet Nair • March 25, 2023

A widespread ongoing malicious JavaScript injection campaign first detected in 2020 has targeted over 51,000 websites, redirecting victims to malicious content like adware and scam pages. Attackers are using several obfuscation tactics to bypass detection.

Incident & Breach Response

Corelight Pursues IR Partnerships, Smaller Enterprise Deals

Michael Novinson • March 24, 2023

Corelight has cemented partnerships with incident response firms and extended its capabilities from large enterprises to midsized enterprises to further the reach of its technology. Corelight allows its product to be used by CrowdStrike's incident response team during network-based investigations.

Security Operations

How a Security Command Center Simplifies the Data Deluge

Suparna Goswami • March 24, 2023

How does a security command center help reduce false positives and improve visibility? Anil Aleppy, associate director, architecture and solutions with Datametica, and Abdul Muneem, director with Brio Technologies, discuss how to manage all threats and vulnerabilities in one command center.

Encryption & Key Management

GitHub Replaces Private RSA SSH Key After Public Exposure

Mathew J. Schwartz • March 24, 2023

GitHub has replaced its private RSA SSH host key after discovering it was being inadvertently exposed to the public via a GitHub repository. Used to safeguard SSH access to Git operations, a bad actor could use the key to impersonate GitHub or eavesdrop. But GitHub reported no signs of abuse.

Cyberwarfare / Nation-State Attacks

ISMG Editors: What's Next in Russia's Cyber War?

Anna Delaney • March 24, 2023

In the latest weekly update, ISMG editors discuss how Russia's invasion of Ukraine upended the cybercrime ecosystem, a lawsuit against a U.S. cardiovascular clinic that seeks a long list of security improvements, and the latest endpoint protection technology trends in the Gartner Magic Quadrant.

Governance & Risk Management

A Business-Centric Approach to Cybersecurity Strategy

Brian Pereira • March 24, 2023

The business world is going through a phase of hyper transformation and hyper digitalization. So, the building blocks of a cybersecurity strategy are quite different from what they were a few years ago. CISOs now need to prioritize threats in the context of their businesses.

Business Continuity Management / Disaster Recovery

Empowering a Cyber-Resilient Enterprise

Brian Pereira • March 24, 2023

The increasing volume, frequency and sophistication of cyberattacks has made cyber resiliency a top priority for security leaders. But there are certain roadblocks to overcome before an organization can be cyber resilient, advise Samir Mishra and Navin Mehra of Cisco.

Training & Security Leadership

Next-Gen CISO: The Custodian of Digital Trust

Brian Pereira • March 24, 2023

Prior to the COVID-19 pandemic, the roles and responsibilities of CISOs were centered around protecting IT infrastructure. Today, however, the role has changed and is closely aligned with the business and its associated risks. A CISO is also the custodian of digital trust and privacy.

Cyberwarfare / Nation-State Attacks

SideCopy APT Targets India's Premier Defense Research Agency

Jayant Chakravarti • March 23, 2023

Security researchers uncovered a Pakistani cyberespionage group employing fresh tactics to target workers at India's Defense Research and Development Organization and steal sensitive military secrets. A new campaign uses a PowerPoint file containing information about the India-developed K-4 missile.

Blockchain & Cryptocurrency

Cryptohack Roundup: BitPay, Euler Finance, Gala Games

Rashmi Ramesh • March 23, 2023

Every week, ISMG rounds up cybersecurity incidents in the world of digital assets. In focus between March 17 and 23: The New York State Department of Financial Services reminds BitPay that regulations exist. Also, Euler Finance, Gala Games, BitGo, ZenGo, General Bytes, Bitzlato and ParaSpace.

Cyber Insurance

Lawmakers Weigh Laws Proposed in Biden's Cyber Strategy

Cal Harrison • March 23, 2023

Members of a U.S. House subcommittee got their first look at the Biden administration's new national cybersecurity strategy and quizzed the White House cybersecurity director on the timeline, proposed regulations and incentives for private businesses.