Modern Bank Heists 3.0: 'A Hostage Situation'

Tom Field • May 27, 2020

Ransomware, wire transfer fraud, destructive attacks: In recent months, the financial sector has seen these and other online attacks surge by 238% as criminals continue to exploit the pandemic, warns Tom Kellermann of VMware Carbon Black, who shares findings from his firm's third "Modern Bank Heists" report.

COVID-19

Supercomputer Intrusions Trace to Cryptocurrency Miners

Latest

Governance & Risk Management

Why an Information Asset Register Plays Important Role

Anna Delaney • May 26, 2020

Security practitioners need to know what data their organization has and where it is kept so they can ensure it's protected. That inventory process that can be simplified by creating an information asset register, says Bilal Ghafoor, a data protection consultant.

Cloud Security

Setting IAM Priorities in the Shift to the Cloud

Anna Delaney • May 26, 2020

As more organizations rely more heavily on cloud-based applications as a result of a remote workforce, they must avoid taking identity and access management shortcuts, says James Gosnold of the cloud consultancy CloudKubed, who calls for the addition of another layer of authentication.

Application Security

Mercedes-Benz Data Leak Lesson: Lock Down Code Repositories

Jeremy Kirk • May 25, 2020

Don't forget to lock down online shared code repositories, as Mercedes-Benz parent company Daimler AG learned the hard way after a researcher was able to access nearly 9 GB of software development documentation from a misconfigured GitLab repository.

Cybercrime

Ransomware Gang Posting Financial Details From Bank Attack

Akshaya Asokan • May 23, 2020

The Maze ransomware gang has started releasing payment card data from an attack that happened earlier this year at Banco BCR, the state-owned Bank of Costa Rica. The cybercriminal gang is now threatening to release more of customers' financial data each week.

COVID-19

Microsoft Warns of COVID-19 Phishing Emails Spreading RAT

Akshaya Asokan • May 22, 2020

Microsoft is warning Windows users about an ongoing "massive" COVID-19-themed phishing campaign that is attempting to install the NetSupport Manager on devices. Attackers can turn NetSupport into a remote access Trojan, or RAT.

Cybercrime

Hackers Tried to Exploit Zero-Day Flaw in Sophos Firewall

Akshaya Asokan • May 22, 2020

Hackers tried two methods of exploiting a zero-day vulnerability in Sophos' XG firewall, but Sophos says it made a temporary fix that mitigated the risks. Attackers originally attempted to plant a Trojan, but then switched to ransomware.

Application Security

Analysis: The Long-Term Implications of 'Work From Home'

Nick Holland • May 22, 2020

The latest edition of the ISMG Security Report features Retired General Keith Alexander, former NSA director, discussing the long-term security implications of the shift to working from home. Also: an update on ransomware gangs leaking data and an analysis of using open source code for app development.

Application Security

Apple, Google Release Contact-Tracing APIs for COVID-19

Jeremy Kirk • May 21, 2020

Apple and Google have released new APIs designed to support contact-tracing apps being developed by governments to help combat the COVID-19 pandemic. Already at least three U.S. states and 22 countries have expressed interest in using the APIs to build their apps.

Cybercrime

Hot Offering on Darknet: Access to Corporate Networks

Doug Olenick • May 21, 2020

The number of darknet forum ads offering full access to corporate networks jumped almost 70% during the first quarter of 2020, compared to the previous quarter, posing a significant potential risk to corporations and their now remote workforces, according to security firm Positive Technologies.

Application Security

Phishing Attack Bypassed Office 365 Multifactor Protections

Akshaya Asokan • May 20, 2020

A recent phishing campaign bypassed multifactor authentication protections within Microsoft Office 365 to steal users' credentials stored in the cloud or launch other attacks, according to the security firm Cofense.

Application Security

How CISOs Can Achieve Better Network Visibility

Anna Delaney • May 20, 2020

To achieve better network visibility, security practitioners must improve their knowledge of tools that support web services, containers and the evolution of development practices, says Ed Moyle, co-founder of the cybersecurity advisory firm Security Curve.

Cybercrime

Police Allege Hacker Sold Millions of Email Credentials

Ishita Chigilli Palli • May 20, 2020

The Security Service of Ukraine this week arrested a hacker known as "Sanix" who allegedly sold combinations of millions of email passwords and usernames on darknet forums.