Ransomware negotiator weighs in on the extortion payment debate with El Reg

May 12, 2024 at 04:11PM Last year saw a record high in ransomware attacks, affecting over 4,500 victims. Drew Schmitt, a professional negotiator for ransomware incidents, discussed evolving tactics of criminal gangs and the debate over banning ransom payments. Schmitt emphasized the complexity of the issue and the need for a multi-pronged approach to combating … Read more

Router Roulette: Cybercriminals and Nation-States Sharing Compromised Networks

May 1, 2024 at 05:09AM APT & Targeted Attacks Summary Cybercriminals and nation state actors both exploit compromised routers for anonymization. FBI disrupted Pawn Storm’s botnet of Ubiquiti EdgeRouters, which was used for various malicious activities. Despite the disruption, the botnet operator continued to control some bots. Multiple threat actors used backdoored SSH servers on … Read more

Should Cybersecurity Leadership Finally be Professionalized?

April 29, 2024 at 11:27AM Professionalization for cybersecurity leadership is increasingly crucial due to the rising complexity of cyber threats. The expanded roles of CISOs create a need for personal protections and liability insurance. The resistance to formalizing cybersecurity as a profession stems from its dynamic nature and the varying resources available to professionals. Despite … Read more

Here’s something else AI can do: expose bad infosec to give cyber-crims a toehold in your organization

March 7, 2024 at 01:35AM Group-IB’s annual High Tech Crime Trends report revealed 225,000 stolen ChatGPT stealer logs were found for sale on the dark web between January and October 2023, with a 36% increase in the number of logs from June to October. This poses significant security risks for businesses, as compromised logins expose … Read more

Patch Now: Apple Zero-Day Exploits Bypass Kernel Security

March 6, 2024 at 02:26PM Apple has released emergency security updates to fix two critical iOS zero-day vulnerabilities, allowing cyberattackers to compromise iPhone users at the kernel level. The memory-corruption bugs, CVE-2024-23225 and CVE-2024-23296, enable threat actors to bypass kernel memory protections. Users are urged to update their devices to versions iOS 17.4, iPadOS 17.4, … Read more

Ransomware Epidemic at Romanian Hospitals Tied to Healthcare App

February 14, 2024 at 01:41PM A ransomware infection targeted around 100 hospitals in Romania, originating from the Hipocrate Information System (HIS) sold by Romanian Soft Company (RSC). The attack, starting on Feb. 10, led to demands for 3.5 BTC or 157,000 euro. Fortunately, most hospitals had relatively recent data backups, enabling easier restoration of services … Read more

The Imperative for Robust Security Design in the Health Industry

February 1, 2024 at 01:04PM Healthcare companies face both immense opportunity and unprecedented risk in the digital era. While digitalization has improved healthcare delivery, escalating cyberattacks have exposed vulnerabilities. Cyber breaches compromise patient trust, incur financial losses, and pose risks to individual medical information. Offering identity monitoring services is insufficient, necessitating a proactive approach to … Read more

Over 5,300 GitLab servers exposed to zero-click account takeover attacks

January 24, 2024 at 01:01PM Over 5,300 GitLab instances are vulnerable to CVE-2023-7028, a zero-click account takeover flaw enabling attackers to reset passwords and take over accounts. Despite not bypassing 2FA, it poses a significant risk to unprotected accounts. ShadowServer identifies vulnerable servers in the U.S., Germany, Russia, and other countries, urging immediate patching and … Read more

4 Metrics That Help CISOs Become Strategic Partners With the Board

December 7, 2023 at 10:07AM CISOs face challenges in communicating their strategic role to leadership and boards. Key to board presentations is summarizing information security’s protective role and using metrics to demonstrate impact on risk, growth, expenses, and people. Successful CISOs align with boards on risks, show ROI improvements, support revenue growth, and foster a … Read more

Staples Confirms ‘Cybersecurity Risk’ Disrupting Online Stores

December 1, 2023 at 11:42AM Staples, an office supply retail company, experienced a security incident that impacted their online orders, communications, and customer service operations. The disruption was attributed to a cybersecurity risk. (Word Count: 24 words) Meeting Takeaways: 1. There has been a confirmed security incident at Staples. 2. The incident has disrupted online … Read more