New Cyber Attack Campaign Leverages the COVID-19 Infodemic.

Pierluigi Paganini

https://securityaffairs.co/wordpress/98484/malware/covid-19-hacking-campaign.html

Excerpt:

ìResearchers from Cybaze Yoroi ZLab have spotted a new campaign exploiting the interest in coronavirus (COVID-19) evolution to spread malware.î


Raccoon Malware, a success case in the cybercrime ecosystem

Pierluigi Paganini

https://securityaffairs.co/wordpress/98379/malware/raccoon-malware-evolution.html

Excerpt:

ìRacoon malware, Legion, Mohazo, and Racealer, is an infostealer that recently appeared in the threat landscape that is advertised in hacking forums.î


Increased monetization means more ransomware attacks

https://www.helpnetsecurity.com/2020/02/24/more-ransomware-attacks/

Excerpt:

ìOrganizations are detecting and containing attacks faster as the global median dwell time, defined as the duration between the start of a cyber intrusion and it being identified, was 56 days. This is 28% lower than the 78-day median observed in the previous year, according to FireEye.î


8.4 million: Number of DDoS attacks researchers saw last year alone

https://www.helpnetsecurity.com/2020/02/19/number-ddos-attacks/

Excerpt:

ìNetscout released the findings of its Threat Intelligence Report for the second half of 2019, which also incorporates insights from its 15th Annual Worldwide Infrastructure Security Report (WISR) survey.î


US Gas Pipeline Shut After Ransomware Attack

Phil Muncaster

https://www.infosecurity-magazine.com/news/us-gas-pipeline-shut-after/

Excerpt:

ìA US natural gas facility was forced to shut down operations for two days after becoming infected with commodity ransomware, the Department of Homeland Security (DHS) has revealed.î


Focus on cyber resilience increasing sharply as oil companies seek to protect their assets

https://www.helpnetsecurity.com/2020/02/18/cyber-resilience-oil-companies/

Excerpt:

ìCybersecurity has emerged as the top focus of upstream oil and gas companiesí digital investments, according to a report from Accenture.î


South Korea sees rise in smishing with coronavirus misinformation

Cho Mu-Hyun

https://www.zdnet.com/article/south-korea-sees-rise-in-smishing-with-coronavirus-misinformation/

Excerpt:

ìThe South Korean government has warned the public of a sharp rise in smishing attempts -- scam text messages -- that use misinformation about the novel coronavirus outbreak.î


Three Italian universities hacked by LulzSec_ITA collective

Pierluigi Paganini

https://securityaffairs.co/wordpress/97802/breaking-news/lulzsec-ita-hacked-italian-universities.html

Excerpt:

ìThe popular Italian hacktivist collective LulzSec ITA has announced via Twitter the hack of three Italian universities, highlighting the importance of the cybersecurity for our society.î


Cryptocurrency crime losses more than double to $4.5 billion in 2019

https://www.helpnetsecurity.com/2020/02/13/cryptocurrency-crime-losses/

Excerpt:

ìCryptocurrency users, exchanges and investors suffered $4.5 billion in crypto-related losses resulting from thefts, hacks, and fraud, a CipherTrace report reveals.î


Puerto Ricoís government fell victim to a $2.6M email phishing scam

Mix

https://thenextweb.com/security/2020/02/13/puerto-rico-phishing-scam/

Excerpt:

ìThe government of Puerto Rico has revealed it fell victim to an email phishing scam, with the attackers making off with more than $2.6 million in stolen funds.î


Data about inmates and jail staff spilled by leaky prison app

Lisa Vaas

https://nakedsecurity.sophos.com/2020/02/12/data-about-inmates-and-jail-staff-spilled-by-leaky-prison-app/

Excerpt:

ìInmatesí and correctional facilities employeesí data has been sloshed onto the web, unencrypted and unsecured, in yet another instance of a misconfigured cloud storage bucket.î


Malaysiaís MyCERT warns cyber espionage campaign carried out by APT40

Pierluigi Paganini

https://securityaffairs.co/wordpress/97582/apt/malaysias-mycert-apt40-attacks.html

Excerpt:

ìMalaysiaís Computer Emergency Response Team (MyCERT) warns of a cyber espionage campaign carried out by the China-linked APT40 group aimed at Malaysian government officials. The attackers aimed at stealing confidential documents from government systems after having infected them with malware.î


Malaysia warns of Chinese hacking campaign targeting government projects

Catalin Cimpanu

https://www.zdnet.com/article/malaysia-warns-of-chinese-hacking-campaign-targeting-government-projects/

Excerpt:

ìA Chinese state-sponsored hacking group has been targeting Malaysian government officials, computer experts with the Malaysian government said on Wednesday.î


Coronavirus: China tightens social media censorship amid outbreak

Iris Deng

https://www.scmp.com/tech/policy/article/3049342/coronavirus-china-tightens-social-media-censorship-amid-outbreak

Excerpt:†

ìChinaís internet watchdog is tightening controls on social media platforms after a brief period of tolerance, as it cracks down on content that may sow fear and confusion amid the coronavirus crisis ì


CamuBot Banking Trojan Returns in Targeted Attacks

Lindsey O'Donnell

https://threatpost.com/camubot-banking-trojan-targeted-attacks/152604/

Excerpt:

ìThe malware is back in targeted attacks against Brazilian banking customers, this time using a new technique that involves mobile app authorization.î


New ransomware targets industrial control systems

Zeljka Zorz

https://www.helpnetsecurity.com/2020/02/04/ics-ransomware/

Excerpt:

ìWith the ransomware threat is surging unstoppably in the last few years, it was just a matter of time until ICS-specific ransomware became a reality.î


Wuhan coronavirus exploited to deliver malware, phishing, hoaxes

Zeljka Zorz

https://www.helpnetsecurity.com/2020/02/03/wuhan-coronavirus-exploited-to-deliver-malware-phishing-hoaxes/

Excerpt:

ìThe Wuhan coronavirus continues to spread and create anxiety across the globe, allowing malicious individuals and groups to exploit the situation to spread fake news, malware and phishing emails.î


New ransomware targets industrial control systems

Zeljka Zorz

https://www.helpnetsecurity.com/2020/02/04/ics-ransomware/

Excerpt:

ìWith the ransomware threat is surging unstoppably in the last few years, it was just a matter of time until ICS-specific ransomware became a reality.î


Mobile data roaming traffic generated by consumer and IoT devices expected to surge

https://www.helpnetsecurity.com/2020/02/05/mobile-data-roaming-traffic/

Excerpt:

ìMobile data roaming traffic generated by consumer and IoT devices reached 737 Petabytes in 2019, according to Kaleido Intelligence. This is forecast to reach 2,000 Petabytes in 2024, representing an average annual growth of 22% over the period.î


Toll Group shuts down IT systems in response to 'cybersecurity incident'

Asha Barbaschow

https://www.zdnet.com/article/toll-group-shuts-down-it-systems-in-response-to-cybersecurity-incident/

Excerpt:

ìAustralian logistics company Toll last week suffered an "IT cybersecurity incident", forcing the shutdown of a number of customer-facing systems days later.î


NCA arrested six men in UK over Malta Bank Cyber-Heist

Pierluigi Paganini

https://securityaffairs.co/wordpress/97275/breaking-news/malta-bank-cyber-heist.html

Excerpt:

ìBritainís National Crime Agency (NCA) arrested six individuals in the United Kingdom because they are accused to be involved in a cyber-heist of a Malta bank and money laundering operation.The individuals are accused to be involved in the attack against the Bank of Valletta that took place in February 2019.î


Three principles regarding encryption you need to keep in mind

Pete Thurston

https://www.helpnetsecurity.com/2020/02/03/principles-encryption/

Excerpt:

ìEncryption is a popular topic among security professionals and occasionally a polarizing one. Plenty of misconceptions surround the process, and these often skew the way people perceive its complexity.î


Layering diverse defenses is crucial for stopping email attacks

Zeljka Zor

https://www.helpnetsecurity.com/2020/02/03/stopping-email-attacks/

Excerpt:

ìDespite heading a company that provides a technological solution for stopping targeted email attacks, Evan Reiser, CEO of Abnormal Security, knows that technology is not the complete answer to the malicious email problem.î