Archives: Cybersecurity

Subscribe to Cybersecurity RSS Feed

New Malware Targets Big Banks and Cryptocurrency Apps

New malicious malware dubbed “Gustuff” targets big banks, fintech companies and cryptocurrency apps, according to the security firm Group IB. According to Group IB, which discovered Gustuff on hacker forums, the new malware is affecting Android devices and is “a mobile Android Trojan, which includes potential targets of customers in leading international banks, users of … Continue Reading

LockerGoga Ransomware Hits Manufacturer and Chemical Companies

In the last two weeks, ransomware dubbed LockerGoga has attacked aluminum manufacturer Norsk Hydro, which announced that as a result of the attack, it had to shut down its worldwide network and chemical companies Hexion and Momentive. According to reports, each of the companies received similar ransomware messages. One company had to order all new … Continue Reading

Misconfigured Box Accounts Can Expose Data

Security researchers at Adversis have discovered that dozens of companies have inadvertently leaked corporate and customer data through their Box enterprise storage accounts because staff are sharing public links to their private corporate files. According to the researchers, data stored in Box enterprise accounts is private by default, but if users share the files or … Continue Reading

Jackson County, Georgia Pays Hackers $400,000 After Ransomware Attack

Cities and towns continue to be a profitable target for successful ransomware attacks. As we previously reported [view related posts], the list of cities and towns getting hit with ransomware attacks continues to grow. Last week, Jackson County, Georgia admitted that it paid hackers $400,000 to obtain access to its information that was locked down … Continue Reading

Financial Industry Getting Hammered with Cyber-Attacks

Cybersecurity company Carbon Black recently issued a report of the results of a survey of chief information security officers (CISOs) of financial organizations, which showed that the financial industry is getting hammered by more frequent and sophisticated cyber-attacks. Carbon Black partnered with Optiv to survey banks and financial institutions around the world. According to the … Continue Reading

Hack of Email Provider Destroys Servers and Two Decades of Data

We predicted last year that hackers would become more malicious in the future, not only stealing and selling data for nefarious purposes, but actually destroying data and even systems. That reality hit email provider VFEmail last week, and on February 12, founder Rick Romero tweeted “Yes, @VFEmail is effectively gone. It will likely not return. … Continue Reading

CISA’s Failure May Come to Haunt the Technology Industry

The Cybersecurity Information Sharing Act of 2015 (CISA) was intended to incentivize private entities to share threat intelligence information with the federal government (specifically the Department of Homeland Security), allowing all parties to react more quickly and efficiently to cyber threats. The vision was that thousands of companies would sign on, creating a powerful network … Continue Reading

Anti-Money Laundering Contacts at Financial Institutions Hit with Targeted Phishing Attack

To illustrate just how creative phishing campaigns have become, on January 30, 2019, it was reported by multiple credit unions that Bank Secrecy Act officers at credit unions around the country received emails that appeared to be from Bank Secrecy Officers at other credit unions. The emails were addressed to the actual Bank Secrecy officers … Continue Reading

US-CERT Issues Advisory About Vulnerabilities in Patient Monitors

The U.S. Department of Homeland Security Industrial Control Systems Cyber Emergency Team (US-CERT) recently issued an advisory outlining three vulnerabilities of Drager Infinity Delta patient monitoring devices. The vulnerabilities affect all versions of the Drager models—Delta, Delta XL, Kappa, and infinity Explorer C700—patient monitoring devices. According to the alert, the three security flaws include: Exposure … Continue Reading

Marriott Confirms Over 5 Million Passport Numbers Stolen in Data Breach

Marriott International Inc. has released new numbers relating to its Starwood Hotel’s reservation database by stating that 5 million passport numbers were stolen in the database. After further investigation, Marriott states that the information for fewer than 383 million guests (as opposed to 500 million) were exposed. The data that was compromised of these guests … Continue Reading

HHS Issues Cybersecurity Practices for Health Care Industry

Just before the new year, the Department of Health and Human Resources (HHS) released voluntary cybersecurity practices for health care organizations, which consists of a main document, two technical volumes, and resources and templates that were compiled by more than 150 cybersecurity and health care experts. The publication, Health Industry Cybersecurity Practices: Managing Threats and … Continue Reading

Top Cybersecurity Risks for the Health Care Industry

Clearwater Compliance’s newest CyberIntelligence Insight Bulletin concludes that the top three cybersecurity risks for the health care industry, which accounts for 36.8% of reported critical risk incidents include: 1) user authentication deficiencies, including storing passwords in obvious places where others can find them such as on the computer monitor or under the keyboard, using generic … Continue Reading

Two More Cyber-Attacks Reported – Ransomware Suspected at Several Major News Organizations and Hackers Threaten to Release 9/11 Insurance and Litigation Files

Late last week, several major news organizations were hit with a ransomware attack believed to involve Ryuk ransomware that affected several Tribune newspapers around the country and two newspapers formerly owned by Tribune. Ransomware cyber-attacks typically attempt to disable systems and infrastructure and block access until ransom is paid as opposed to attempting to steal … Continue Reading

Experian® Predicts Cyber Threats in 2019

Experian’s Data Breach Resolution group has released its Data Breach Industry Forecast 2019 Report, which provides predictions for data breaches in 2019, and outlines staggering statistics of data breaches that occurred in 2018. One statistic is that the “number of records compromised in the first half of the year had already surpassed the total number … Continue Reading
LexBlog