Malware

25 Oct

Blockchain security companies tackle cryptocurrency theft, ransom tracing

Data Breaches, Malware, Social Engineering

According to data from the Rekt leaderboard, cybercriminals have stolen as much as $3 billion of investor funds through 141 various cryptocurrency exploits since January, putting 2022 on track to top 2021 levels of digital currency malfeasance. Comparitech’s cryptocurrency heists tracker indicates that since 2011, hackers have stolen $7.9 billion in cryptocurrency worth about $45.5 billion in today’s value. Along with the increased dollar amounts of cryptocurrency thefts, the scams, hacks, and exploits of cryptocurrency,…

Read More
24 Oct

Typosquatting Campaign Impersonates Brand-Name Websites

Attacks, Malware

It is recommended that organizations focus on cybersecurity awareness training for its personnel as one security control to avoid typosquatting attacks. Users should only navigate to trusted sites from their own links or by identifying a reputable site from a search engine. In addition, users should be aware that they cannot trust links in advertisements or in email from untrusted parties. Due to the proliferation of Business Email Compromise (BEC), users should also be cautious…

Read More
24 Oct

Iranian Nuclear Energy Agency Becomes Target of Hacktivist Group

Attacks, Malware

Black Reward’s intention is not to have any type of monetary gain, but rather to expose corrupt activity. Being at the center of world controversy has opened Iran up to the possibility of more attacks of this style. Binary Defense analysts will continue to monitor this situation and provide updates as necessary. https://www.theregister.com/2022/10/24/black_reward_iran_nuclear_leak/?&web_view=true

Read More
24 Oct

CISA Warns of Daixin Hackers Targeting Healthcare Organizations

Attacks, Malware

According to the advisory, Virtual Private Network (VPN) servers are used in these attacks to gain initial access to targeted networks, often exploiting unpatched security vulnerabilities and compromised credentials obtained via phishing emails. After establishing a foothold, the Daixin Team has been seen moving laterally via Secure Shell (SSH) and remote desktop protocol (RDP), then gaining elevated privileges using techniques like credential dumps. “The actors have leveraged privileged accounts to gain access to VMware vCenter…

Read More
24 Oct

CISA Adds Six Known Exploited Vulnerabilities to Catalog

Attacks, Insights, Malware

Original release date: October 24, 2022 CISA has added six vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. These types of vulnerabilities are a frequent attack vector for malicious cyber actors and pose significant risk to the federal enterprise. Note: to view the newly added vulnerabilities in the catalog, click on the arrow in the “Date Added to Catalog” column, which will sort by descending dates.       Binding Operational Directive (BOD)…

Read More
24 Oct

Security by design vital to protecting IoT, smart cities around the world, says CEO of UK NCSC

Data Breaches, Malware, Social Engineering

A secure by design approach is vital to protecting the internet of things (IoT) and smart cities, according to Lindy Cameron, CEO of the UK National Cyber Security Centre (NCSC). Cameron spoke during Singapore International Cyber Week, calling for swift ongoing action to ensure connected devices are designed, built, deployed, and managed securely to prevent malicious actors, improve national resilience, and reap the benefits of emerging technologies. Growth of IoT giving rise to increased security…

Read More
24 Oct

Iran’s nuclear energy agency confirms email server hacked

Data Breaches, Malware, Social Engineering

The Atomic Energy Organization of Iran on Sunday confirmed that an email server at its  Bushehr Nuclear Power Plant was hacked. The organization blamed a foreign country, but an Iranian hacking group that goes by the name Black Reward has claimed responsibility for the breach. The Atomic Energy Organization said that the IT group serving the Bushehr plant has examined and issued a report on the breach, and denied any sensitive information being exposed. The…

Read More
24 Oct

When CISOs are doomed to fail, and how to improve your chances of success

Data Breaches, Malware, Social Engineering

There’s a joke cryptographer Jon Callas likes to tell: CISO stands for Chief Intrusion Scapegoat Officer, “because CISOs are often thrown into a position where they can’t succeed.” Callas, who is the director of public interest tech at the Electronic Frontier Foundation, says that security officers are often “simultaneously in charge and powerless.” They know what they should do to mitigate risks, but they can’t get enough support. This predicament threatens to overwhelm them. Almost…

Read More
23 Oct

Cryptocurrency ‘Fueling’ Ransomware Incidents

Malware

While Bitcoin’s value continues to swing wildly from one year to the next, its influence on the financial markets is being matched by its impact on the black market. Rising maturity and acceptance of cryptocurrency by the general public is being partly blamed for the simultaneous evolution of ransomware, with new strains and sophisticated techniques being reported. Cyber criminals are no longer taking a broad, ‘scatter-gun’ approach to ransom-based malware, but are using more targeted…

Read More
23 Oct

Incident Of The Week: Checkers Restaurants Details Data Breach

Malware

Checkers Drive-In Restaurants Inc. notified its customers that about 15% of its restaurants in 20 states may have had data exposures possibly starting back into 2015, and some lasting until about mid-April this year. The company operates and franchises nearly 900 restaurants. See Related: “Cyber Attack Takes Weather Channel Offline” The data security issue included nine locations in the Tampa area (where the parent company is based) and two in the Orlando area, where payment…

Read More