Sunday, June 20, 2021

Ukraine arrests ransomware gang in global cybercriminal crackdown

Enlarge / A Colonial Pipeline facility in Woodbridge, New Jersey. Hackers last month disrupted the pipeline supplying petroleum to much of the East Coast. (credit: Michael M. Santiago, Getty Images) Ukrainian police have arrested members of a notorious...

Newly discovered Vigilante malware outs software pirates and blocks them

Enlarge (credit: Getty Images) A researcher has uncovered one of the more unusual finds in the annals of malware: booby-trapped files that rat out downloaders and try to prevent unauthorized downloading in the future. The files are available...

Starlink dish overheats in Arizona sun, knocking user offline for 7 hours

Enlarge / Starlink satellite dish and equipment in the Idaho panhandle's Coeur d'Alene National Forest. (credit: Wandering-coder) A Starlink beta user in Arizona said he lost Internet service for over seven hours yesterday when the satellite dish overheated,...

CD Project Red does an about-face, says ransomware crooks are leaking data

Enlarge (credit: Aurich Lawson) CD Projekt Red, the maker of The Witcher series, Cyberpunk 2077, and other popular games, said on Friday that proprietary data taken in a ransomware attack disclosed four months ago is likely circulating online. “Today,...

EA source code stolen by hacker claiming to sell it online

Enlarge (credit: Getty Images) Game-maker Electronic Arts and the Presque Isle Police Department in Maine are responding to an event they had both been dreading: the theft of gigabytes of private data by hackers who breached their Internet-connected...

Nameless malware collects 1.2TB of sensitive data and stashes it online

Enlarge (credit: Getty Images) Researchers have discovered yet another massive trove of sensitive data, a dizzying 1.2TB database containing login credentials, browser cookies, autofill data, and payment information extracted by malware that has yet to be identified. In all,...

Hackers can mess with HTTPS connections by sending data to your email server

Enlarge (credit: Getty Images) When you visit an HTTPS-protected website, your browser doesn't exchange data with the webserver until it has ensured that the site's digital certificate is valid. That prevents hackers with the ability to monitor or...

US seizes $2.3 million Colonial Pipeline paid to ransomware attackers

Enlarge (credit: Getty Images) The FBI said it has seized $2.3 million paid to the ransomware attackers who paralyzed the network of Colonial Pipeline and touched off gasoline and jet fuel supplies up and down the East Coast...

Hacker lexicon: What is a supply chain attack?

Enlarge (credit: Frank Lindecke / Flickr) Cybersecurity truisms have long been described in simple terms of trust: Beware email attachments from unfamiliar sources, and don't hand over credentials to a fraudulent website. But increasingly, sophisticated hackers are undermining...

This is not a drill: VMware vuln with 9.8 severity rating is under attack

Enlarge A VMware vulnerability with a severity rating of 9.8 out of 10 is under active exploitation. At least one reliable exploit has gone public, and there have been successful attempts in the wild to compromise servers...

Ransomware will now get priority treatment at the Justice Department

Enlarge (credit: Getty Images) The Justice Department has created a task force to centrally track and coordinate all federal cases involving ransomware or related types of cybercrime, such as botnets, money laundering, and bulletproof hosting. “To ensure we can...

Attack on meat supplier came from REvil, ransomware’s most cut-throat gang

Enlarge / Ransomware (credit: Getty Images) The cyberattack that halted some operations at the world’s biggest meat processor this week was the work of REvil, a ransomware franchise that’s known for its ever-escalating series of cut-throat tactics designed...

Shortages loom as ransomware hamstrings the world’s biggest meat producer

Enlarge (credit: Matthew Stockman / Getty Images) A ransomware attack has struck the world’s biggest meat producer, causing it to halt some operations in the US, Canada, and Australia while threatening shortages throughout the world, including up to...

Amazon devices will soon automatically share your Internet with neighbors

Enlarge (credit: Amazon) If you use Alexa, Echo, or any other Amazon device, you have only 10 days to opt out of an experiment that leaves your personal privacy and security hanging in the balance. On June 8, the...

Apple’s M1 chip has a security bug, but don’t worry—it’s mostly harmless

Enlarge (credit: Apple) Apple's new M1 CPU has a flaw that creates a covert channel that two or more malicious apps—already installed—can use to transmit information to each other, a developer has found. The surreptitious communication can occur without...
SecurityWeek

Hit by a Ransomware Attack? Your Payment May be Deductible

As ransomware attacks surge, the FBI is doubling down on its guidance to affected businesses: Don’t pay the cybercriminals. But the U.S. government also offers a little-noticed incentive for those who do pay: The ransoms may be tax deductible. read...

A Bug in the Android Google App Put Privacy at Risk

Plus: Airbnb's safety squad, a fake pharmacy crackdown, and more of the week's top security news.

Why You Suddenly Need To Delete Google Maps On Your iPhone

Hundreds of millions of iPhone users should stop using Google Maps after radical new update...

Why You Should Stop Sending Texts From Your Android Messages App

Millions of you are still putting your security at risk. Here's the serious problem you have...
SecurityWeek

Major Cyberattack on Poland Came from Russian Territory: Kaczynski

A recent "large scale" cyberattack targeting top Polish politicians was launched from Russia, Jaroslaw Kaczynski, the leader of Poland's governing right-wing party, said on Friday. read more