Cyber Resilience Minimizes Risks for Digital Services

Brian Pereira • November 25, 2022

Cyber resilience extends beyond cyberattacks and encompasses the convergence of security and disaster recovery and takes into account other factors such as supply chain disruption, attacks on critical infrastructure, epidemics, market fluctuations, power outages, and natural disasters.

Cryptocurrency Fraud

Proven Practices for Securing Data During File Transfers

Latest

Cybercrime

SharkBot Trojan Spread Via Android File Manager Apps

Prajeet Nair • November 26, 2022

The operators behind the banking Trojan SharkBot are targeting Google Play users to spread its malware masquerading as Android file manager apps that already have tens of thousands of installations, according to researchers from Bitdefender.

Cybercrime

ISMG Editors: The Rise of Info Stealing Malware

Anna Delaney • November 25, 2022

In the latest weekly update, Information Security Media Group Editors discuss current cybersecurity and privacy issues, including advice on strengthening off-hours defenses during the holiday season, emerging cybercrime trends in 2022, and Palo Alto's first big M&A since early 2021.

Cybercrime

Ontario Teachers’ Data Stolen in Ransomware Attack

Mihir Bagwe • November 25, 2022

A cyberattack on a Canadian teachers’ union gave thieves access to sensitive data of more than 60,000 members The union is yet to disclose the exact number of affected individuals, but stated that both former and current members are impacted.

Cybercrime

Cyber-Mercenaries Target Android Users with Fake VPN Apps

Prajeet Nair • November 24, 2022

A hacking-for-hire group dubbed "Bahamut" is distributing malicious apps through a fake SecureVPN website that enables Android apps to be downloaded from Google Play. Research found that hackers use malicious versions of SoftVPN, SecureVPN and OpenVPN software.

Cybercrime

Ransomware Disrupts Indian Premier Hospital for 2nd Day

Mihir Bagwe • November 24, 2022

India’s premier healthcare institute is reeling from the after-effects of a ransomware attack, the hospital said in a statement. All patient care services, the admission, discharge and transfer of patients will be conducted manually until the server is restored, in accordance with AIIMS’ Standard Operating...

Blockchain & Cryptocurrency

CBDC Cybersecurity: A Work in Progress

Rashmi Ramesh • November 24, 2022

Even as the world wakes up to headlines of hackers stealing billions in cryptocurrency, countries such as India are mulling a state-run Central Bank Digital Currency for better security and stability. Dr. Dutta of IDBI Bank breaks down what works, what doesn't and what we can expect from CBDCs.

Breach Notification

Lorenz Ransomware Alert: Risk to Healthcare, Public Sector

Mathew J. Schwartz • November 24, 2022

Cybersecurity experts warn that large healthcare and public sector organizations are continuing to get hit by "big-game hunting" attackers wielding Lorenz ransomware. Among the group's known victims are Wolfe Eye Clinic in Iowa and Salud Family Health of Colorado.

Blockchain & Cryptocurrency

Ransomware Group Zeppelin's Costly Encryption Mistake

Anna Delaney • November 24, 2022

The latest edition of the ISMG Security Report discusses how the profits of ransomware group Zeppelin have been smashed by security researchers, FTX again highlighting the risks of trading cryptocurrencies, and vendor Extrahop's newly appointed, high-profile president.

Business Continuity Management / Disaster Recovery

Zeppelin Ransomware Proceeds Punctured by Crypto Workaround

Mathew J. Schwartz • November 24, 2022

As the U.S. celebrates Thanksgiving, let's give thanks for this cybercrime karma: For more than two years, law enforcement and security experts have been exploiting flaws in the crypto-locking malware to help victims decrypt their systems without paying a ransom.

Anti-Phishing, DMARC

Russian Hackers Now Offering Stealer as a Service

Akshaya Asokan • November 23, 2022

Security firm Group-IB has identified 34 hacking groups that are now selling a stealer-as-a-service model to spread infostealer malware and steal credentials from online gaming and payment accounts. The company advises organizations to be on the lookout for Raccoon and Redline infostealers.

Cyberwarfare / Nation-State Attacks

Russian KillNet Shuts Down EU Parliament Website With DDoS

Akshaya Asokan • November 23, 2022

Pro-Kremlin KillNet hackers took down the website of the European Parliament on Wednesday in a DDoS attack that came just hours after the legislative body declared Russia a terrorist state. The website was still down late in the day as part of a string of hacktivist attacks against allied nations.

Cyberwarfare / Nation-State Attacks

DOJ Closes Pig-Butchering Domains Tied to Crypto Scams

Prajeet Nair • November 23, 2022

The U.S. government seized seven fake cryptocurrency domains used in a confidence scam based on long-term emotional manipulation of victims that netted criminals more than $10 million. Perpetrators scammed five victims by spoofing the website of the Singapore International Monetary Exchange.