Tuesday, September 27, 2022
The Register

Ukraine fears ‘massive’ Russian cyberattacks on power, infrastructure

Will those be before or after the nuke strikes Putin keeps banging on about? Russia plans to conduct "massive cyberattacks" on Ukraine and its allies' critical infrastructure and energy sector, according to Kyiv.…

BrandPost: Extortion Economics: Ransomware’s New Business Model

Did you know that over 80% of ransomware attacks can be traced to common configuration errors in software and devices? This ease of access is one of many reasons why cybercriminals have become emboldened by the underground ransomware economy.And...

Police ‘all over’ dark web ransom threat to release 10,000 customer records a day, Optus CEO says

Purported hackers post ultimatum demanding $1m within four days after massive Optus data breachFollow our Australia news live blog for the latest updatesGet our free news app, morning email briefing or daily news podcastThe chief executive of Optus, Kelly...

Barracuda Unveils New Capabilities To Protect Against Persistent And Evolving Threats

Barracuda announced a number of product enhancements and innovative new capabilities at its recent Secured.22 virtual conference to expand the protection for customers and help them defend against the latest cyber threats.

Zoho ManageEngine flaw is actively exploited, CISA warns

A remote code execution vulnerability in Zoho's ManageEngine, a popular IT management solution for enterprises, is being exploited in the wild. The US Cybersecurity & Infrastructure Security Agency (CISA) added the flaw to its catalog of known exploited vulnerabilities...

Despite Recession Jitters, M&A Dominates a Robust Cybersecurity Market

Funding has been somewhat lower than last year, but investment remains healthy, analysts say, amid thirst for cloud security in particular.

Russia plans “massive cyberattacks” on critical infrastructure, Ukraine warns

Enlarge (credit: gwengoat | Getty Images) The Ukrainian government on Monday warned that the Kremlin is planning to carry out “massive cyberattacks” targeting power grids and other critical infrastructure in...

Russia Planning Cyberattacks on Ukraine's Energy Grid

Ukraine military intelligence says Russia is planning cyberattacks on the country's energy sector, as well as against allies including Poland and the Baltic states.
SecurityWeek

Russia Gives Citizenship to Ex-NSA Contractor Edward Snowden

Russian President Vladimir Putin has granted Russian citizenship to former U.S. security contractor Edward Snowden, according to a decree signed Monday by the Russian leader. read more

Optus customers exasperated by chatbots and ‘rubbish’ communication after data breach

Some customers look to switch providers after puzzling responses and ‘less than helpful’ serviceGet our free news app, morning email briefing or daily news podcastOptus customers say they are growing increasingly angry and frustrated at the poor communication from...

Government flags new cybersecurity laws and increase in fines after Optus breach

Clare O’Neil says penalties for telcos are ‘totally inappropriate’ and data breach was ‘significant error’Optus data security breach: what should I do to protect myself?Get our free news app, morning email briefing or daily news podcastThe Albanese government will...
Infosecurity Magazine

Fitbit Increases Security Requirements, Mandates Google Login From 2023

Users will have the option to log in using their Fitbit account for as long as it is supported
SecurityWeek

Ukraine Says Russia Planning 'Massive Cyberattacks' on Critical Infrastructure

The Ukrainian government says it is bracing to deal with “massive cyberattacks” from Russian hackers against critical infrastructure targets in the energy sector. read more

Cyber Threat Alliance Extends Membership to 6+ Leading Cybersecurity Companies

CTA now has 36 members headquartered in 11 countries who follow cyber activities across the world, showing cybersecurity industry members realize the value in collaboration.
The Register

SQL Server admins warned about Fargo ransomware

From small town in North Dakota with a crime problem to file-scrambling nasty Organizations are being warned about a wave of attacks targeting Microsoft SQL Server with ransomware known as Fargo, which encrypts files and threatens victims that their...
Infosecurity Magazine

ReasonLabs Unveils Multimillion Dollar Global Credit Card Scam

The victims of the plot were users of Mastercard, Visa, and American Express, among others

US CISA/NSA release new OT/ICS security guidance, reveal 5 steps threat actors take to compromise assets

The US Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) have published a new Cybersecurity Advisory (CSA) for protecting operational technology (OT) and industrial control systems (ICS). The CSA outlines the Tactics, Techniques and Procedures...
Computerworld

Jamf buys ZecOps to bring high-end security to Apple enterprise

The Apple-in-the-enterprise story continues to unfold, this week with Jamf's announced plans to acquire mobile threat detection and response company ZecOps.Already consumer-simple, Jamf becomes government secure Jamf will likely reveal more about the motivations behind the deal at its JNUC event...
SecurityWeek

Hackers Leak French Hospital Patient Data in Ransom Fight

Hackers who crippled a French hospital and stole a trove of data last month have released personal records of patients online, officials have confirmed. The cyberattackers demanded a multimillion dollar ransom from the Corbeil-Essonnes hospital...

Darth Vader’s voice will be AI-generated from now on

Enlarge / As James Earl Jones retires, Darth Vader's voice will come courtesy of voice-cloning software called Respeecher. (credit: Lucasfilm / Benj Edwards) During the creation of the Obi-Wan Kenobi...
Have I Been Pwned

TAP Air Portugal – 5,067,990 breached accounts

In August 2022, the Portuguese airline TAP Air Portugal was the target of a ransomware attack perpetrated by the Ragnar Locker gang who later leaked the compromised data via a public dark web site. Over 5M unique email addresses...
Cisco

Cisco NX-OS Software Border Gateway Protocol Denial of Service Vulnerability

A vulnerability in the Border Gateway Protocol (BGP) implementation of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to the device unexpectedly reloading. The vulnerability is due to incomplete input validation...