#SWTsecurity

Jun 17, 2020
1 min

'Woefully lax': report slams CIA cybersecurity after hacking tool leak

"Many of the Central Intelligence Agency’s most sensitive hacking tools were so poorly secured that it was only when WikiLeaks published them online in 2017 that the agency realized they had been compromised, according to a report released Tuesday. The secret-spilling site drew international attention when it dumped a vast trove of malicious CIA code on the internet in March 2017. The digital tools, sometimes described as “cyber weapons,” provided a granular look at how the C

Jun 16, 2020
1 min

Claire's: Magecart E-Commerce Hackers Stole Card Data

Magecart Gangs Targeting Larger Organizations During Lockdown, Researcher Warns "Jewelry and accessories retailer Claire's says e-commerce platform hackers, using Magecart tactics, have stolen an unknown amount of its customers' payment card data. The attackers appear to have infiltrated the company's Salesforce Commerce Cloud environment for at least seven weeks, although the security firm that spotted the breach says there's no indication that the underlying Salesforce plat

Jun 8, 2020
1 min

US subsidiary of ST Engineering Aerospace suffers massive data breach

"SINGAPORE: About 1.5 terabytes of sensitive data was reportedly stolen from a US subsidiary of ST Engineering Aerospace in a massive data breach that was discovered on Friday (Jun 5), according to cybersecurity firm CYFIRMA. In response to queries by CNA, CYFIRMA said its initial investigation showed the breach at VT San Antonio Aerospace started “as early as in March”. It said the stolen data includes contract details with various governments of countries like Peru and Arge

Jun 5, 2020
1 min

Chinese and Iranian hackers targeted Biden and Trump campaigns, Google says

"WASHINGTON (Reuters) - State-backed hackers from China have targeted staffers working on the U.S. presidential campaign of Democrat Joe Biden, a senior Google security official said on Thursday. The same official said Iranian hackers had recently targeted email accounts belonging to Republican President Donald Trump’s campaign staff. The announcement, made on Twitter by the head of Google’s Threat Analysis Group, Shane Huntley, is the latest indication of the digital spying

Jun 4, 2020
1 min

Huge Cyberattacks Attempt To Silence Black Rights Movement With DDoS Attacks

"After the death of George Floyd and the subsequent protests across the U.S., cyberattacks on advocacy groups spiked by an astonishing 1,120 times. It’s unclear who is behind the attacks, but they included attempts to neuter anti-racist organizations’ freedom of speech. The data comes from Cloudflare, a Silicon Valley company that protects a vast number of websites from distributed denial of service (DDoS) attacks, where servers are flooded with traffic to make them inaccessi

Jun 2, 2020
1 min

Protest goes online in Minneapolis as city, police websites hit by cyberattacks

"The clash is now online in Minneapolis. Cyberattacks struck city government and law enforcement computers as mass anger over the killing of George Floyd, a black man who died after a Minneapolis police officer pressed his knee into his neck, led to major protests there. The operation, known as a denial of service attack, rendered websites for Minneapolis police and some city agencies inaccesibles for hours by overwhelming them with a flood of web traffic. A similar attack st

Jun 1, 2020
1 min

Judge demands Capital One release Mandiant cyberforensic report on data breach

"Attorneys suing the company will now have access to the report in preparation for a potential trial. A judge has ruled that Capital One must release the forensic report prepared by Mandiant following a data breach, of which the company is now being sued over. On Tuesday, Judge John Anderson from the US District Court for the Eastern District of Virginia ruled that Capital One is required to provide a copy of the report to attorneys suing the firm on behalf of customers impac

May 28, 2020
1 min

Majority of COVID phishing attacks coming from US IP addresses, report finds

"COVID-19 phishing emails have been bombarding inboxes since the virus began to spread in December and January. Cybercriminals have tried to push all kinds of scams to the masses using coronavirus-related topics, headers and organizations to get people to open malicious emails, files, or links. Complaints about phishing attacks have tripled since the concerns about COVID-19 became widespread, according to the FBI's Internet Crime Complaint Center. Cybersecurity company INKY p

May 26, 2020
1 min

New Unc0ver jailbreak released, works on all recent iOS versions

New "Unc0ver" jailbreak unlocks devices, even those running the current iOS 13.5 release. A team of hackers, security researchers, and reverse engineers have released today a new jailbreak package for iOS devices. By default, Apple does not allow users to have full control over their iPhones and other iOS devices, citing security reasons. Jailbreaks are a type of custom software that works by exploiting bugs in the iOS operating system in order to grant users root access and

May 15, 2020
1 min

Ransomware Gang Demands $42M or it Releases Trump’s ‘Dirty Laundry’

"The ransomware gang responsible for stealing almost 1TB of legal secrets from celebrities and entertainers last week is now targeting the President. The ransomware gang that stole almost 1TB of legal secrets from the biggest names in the entertainment industry is now demanding $42 million in cryptocurrency or else it will expose U.S. President Donald Trump’s “dirty laundry”. The gang has already released a 2GB trove of legal documents marked ‘Lady Gaga’ and fired the link me

May 11, 2020
1 min

Ransomware Attack Allegedly Hits NYC Law Firm To Superstar Musicians Including Lady Gaga and Elton J

"A New York City law firm that represents superstar musicians such as Lady Gaga, Elton John and Madonna has allegedly been hit with a ransomware attack that threatens to expose celebrities’ privileged legal information. Attackers have posted images of documents and file folders to the leak site for the REvil ransomware that appear to be from the firm. The attackers indicate that additional documents taken from the firm will be posted if the ransom is not paid, including contr

May 6, 2020
1 min

Look out - that Microsoft Teams alert might be a phishing scam.

"Criminals use fake Microsoft Teams alerts to gain Office 365 access. Remote workers are being urged to take extra care following the reveal of a new security scam affecting Microsoft Teams. Users of the popular video conferencing service are being targeted by a phishing scam that looks to trick Teams customers into handing over their logins. Criminals have designed fake email alerts that spoof Microsoft Teams file share and audio chat notifications, with as many as 50,000 em

May 4, 2020
1 min

Kaspersky: RDP brute-force attacks have gone up since start of COVID-19

"Cyber-security firm Kaspersky says the number of brute-force attacks targeting RDP endpoints rose sharply since the onset of the coronavirus (COVID-19) pandemic. According to a report published today, RDP brute-force attacks increased last month, when most countries around the globe imposed quarantines and stay-at-home orders, forcing companies to deploy more RDP systems online, increasing the attack surface for hackers. "Since the beginning of March, the number of Bruteforc

May 1, 2020
1 min

Researchers Find Vulnerabilities in Popular Remote Learning Plug-ins

As more students move to online learning platforms, vulnerability researchers are revealing security flaws in some common software plug-ins. "Three popular WordPress plug-ins for online learning have significant software vulnerabilities that could allow attackers to access student information, steal money from course creators, or escalate their privileges to become teachers, according to an advisory published by security firm Check Point Software Technologies. Researchers fro

Apr 29, 2020
1 min

Ransomware Shuts Down Colorado Hospital IT Network Amid COVID-19

"Parkview Medical Center is continuing to recover from a ransomware attack that shut down its IT network over a week ago; another ransomware attack and an email hack complete this week’s breach roundup. Colorado-based Parkview Medical Center’s technology infrastructure was hit with a ransomware attack a week ago on April 21, which caused a number of IT network outages, according to local news outlet KOAA. The hospital is currently serving patients during the COVID-19 pandemic

Apr 21, 2020
1 min

Detroit hospital network says data breach affected more than 100,000 patient accounts

"A Detroit-area health care organization is alerting patients that their information may have been compromised in a recent data breach. Beaumont Health, a network of eight hospitals through the Detroit area, said in a letter Friday that “an unauthorized third party” accessed names, birth dates, Social Security numbers and medical conditions about some 112,000 people. Hackers also accessed bank account data and driver’s license numbers about some of those affected, the Detroit

Apr 17, 2020
1 min

5 Things Ransomware Taught Me About Responding in a Crisis

What happened in Atlanta is worth studying because it was one of the earliest cases of a major city ransomware attacks and because it came out the other side stronger and more resilient. When I first flew to Atlanta in March 2018, the city was in crisis. It had been hit by a massive ransomware attack, one that took down multiple critical departments and systems and made headlines around the country. It's a story that's unfortunately repeated itself around the country since, w

Apr 16, 2020
1 min

FBI Alerts to BEC Scams Targeting COVID-19 PPE Supply Procurement.

"Hackers are targeting those attempting to buy personal protective equipment (PPE) and other COVID-19-related medical supplies with business email compromise (BEC) scams, FBI warns. Cybercriminals are again leveraging the COVID-19 pandemic for financial benefit. The latest FBI alert warns hackers are targeting the government and other healthcare industry buyers attempting to purchase personal protective equipment (PPE) with business email compromise (BEC) scams. The alert fol

Apr 10, 2020
1 min

Travelex reportedly paid millions to hackers after ransomware attack.

"Travelex reportedly paid hackers $2.3 million to regain access to its own computer systems after they were compromised in a ransomware attack that was discovered on New Year’s Eve. Ransomware is malicious software that locks a computer system by encrypting files. Once locked, hackers demand payment from the owner of the system in return for a decryption key to regain access to the data. The world’s largest foreign-exchange provider paid the money in the form of Bitcoin, acco

Apr 9, 2020
1 min

Zoom Signs-Up Ex-Facebook CSO as Google Bans Platform

"Zoom has brought former Facebook CSO Alex Stamos on board to bolster a new security push, as reports emerged that Google and the US Senate have told users to avoid the video conferencing platform. As promised by CEO Eric Yuan las week, the firm has formally launched a CISO Council and Advisory Board comprising security leaders from across industries. The idea is that they’ll collaborate on new ideas to help improve security and privacy in the app. CISOs and security leaders