Discussion of public breaches of security
KrebsonSecurity has a post that mentions that the department of the Treasury has a Ransomware Advisory pdf. The Treasury is advising you not to pay Ransomware if your device is ransomed (encrypted unless you pay for a decryption key): Companies that facilitate ransomware payments to cyber actors on behalf of victims, including financial institutions, cyber … Read more
Should Cybersecurity have some attention if you have not been hacked before? Does your business really need more Cybersecurity awareness? I.e. So What… Cybersecurity!!! Is this what you are thinking? That does not matter to me ? I guess if this is your default thinking after every new headline of Breaches and attacks… For example … Read more
There is a LexisNexis report: “2020 True cost of Fraud Study” Here are the 6 basic tenets of the report: More fraud attacks translated to higher costs for merchants A surge in online and mobile channel activity increased fraud Trying to distinguish between real customers and bots is difficult Covid-19 or the Wuhan … Read more
Threatpost has the Story: This is a current story (7/7/20) of threats emerging from the Russian criminal groups. The following is from a previous analysis from has the Story The intsight document shows several groups, of which the above is just one group “the Sandworm” team. Another blog.malwarebytes.com post: Threat Spotlight: WastedLocker, customized transomware The … Read more
What does it mean when intelligence agencies claim that our healthcare companies have been hacked (or attempted) starting January 3rd? (WSJ.com story – “U.S. Says Chinese, Iranian hackers Seek to Steal Coronavirus research”) “The alert came as U.S. officials charge that China and Iran since at least Jan. 3 have waged cyberattacks against American firms … Read more
