Wednesday, December 11, 2019

Trickbot Operators Now Selling Attack Tools to APT Actors

North Korea's Lazarus Group - of Sony breach and WannaCry fame - is among the first customers.

Intel Issues Fix for ‘Plundervolt’ SGX Flaw

Researchers were able to extract AES encryption key using SGX's voltage-tuning function.

The Next Security Silicon Valley: Coming to a City Near You?

The high cost of doing business in California's San Francisco Bay Area is just one factor driving infosec companies - established and and startups, alike - to pursue their fortunes elsewhere. Here's where many are going.

5 Tips for Keeping Your Security Team on Target

In nearly every security environment, competing priorities are a constant battleground. Here's how to keep the focus on what's important.

Google Chrome Now Automatically Alerts Users on Compromised Passwords

A series of security enhancements seek to protect users from phishing and warn them when credentials have been compromised.

Younger Generations Drive Bulk of 2FA Adoption

Use of two-factor authentication has nearly doubled in the past two years , pointing to a new wave of acceptance.

Only Half of Malware Caught by Signature AV

Machine learning and behavioral detection are necessary to catch threats, WatchGuard says in a new report. Meanwhile, network attacks have risen, especially against older vulnerabilities, such as those in Apache Struts.

Big Changes Are Coming to Security Analytics & Operations

New ESG research points to fundamental problems, a need for scalable security data pipelines, and a migration to the public cloud.

City of Pensacola, Fla., Confirms Ransomware Attack

Most systems remain offline to prevent the attack from spreading.

Data Leak Week: Billions of Sensitive Files Exposed Online

A total of 2.7 billion email addresses, 1 billion email account passwords, and nearly 800,000 applications for copies of birth certificate were found on unsecured cloud buckets.

Microsoft Fixes Windows Zero-Day on Lightest Patch Tuesday of 2019

This month's batch of security updates addresses 36 CVEs, seven of which are rated Critical and one of which has been exploited in the wild.

Blink Cameras Found with Multiple Vulnerabilities

Researchers found three broad types of vulnerabilities, one of which should be particularly concerning to consumers.

Security 101: What Is a Man-in-the-Middle Attack?

A breakdown of the common ways criminals employ MitM techniques to snare victims, and tips for protecting users from these dirty tricks.

Intel’s CPU Flaws Continue to Create Problems for the Tech Community

We can't wait out this problem and hope that it goes away. We must be proactive.

Only 53% of Security Pros Have Ownership of Workforce IAM

Most practitioners report an increase in identities, but many don't have control over how those identities are protected from a range of attacks.

Deliver a Deadly Counterpunch to Ransomware Attacks: 4 Steps

You can't prevent all ransomware attacks. However, it's possible to ensure that if a breach happens, it doesn't spread, affect business, and become a newsworthy event.

Scientists Break Largest Encryption Key Yet with Brute Force

The key, only one-third the length of most commercial encryption keys, took more than 35 million compute hours to break.

Microsoft ‘Campaign Views’ Offers Full Look at Office 365 Attacks

Campaign views, arriving in public preview, aims to share more context around how attackers targeted an organization and whether its defenses worked.

Maersk CISO Says NotPeyta Devastated Several Unnamed US firms

At least two companies may have been dealt even more damage than the shipping giant, which lost nearly its entire global IT infrastructure.

Two Bayrob Cybercrime Members Sentenced to 20 and 18 Years in Prison

The Romanian nationals stole some $4 million in a vast malware, botnet, and cryptocurrency operation.
SC Magazine

Pensacola confirms ransomware attack

Pensacola officials confirmed that an ongoing cyberattack that began early Saturday morning is a ransomware attack. While the city did not release any additional details, the Pensacola News Journal said city spokeswoman Kaycee Lagarde confirmed the attack included a ransom, something that...

Trickbot Operators Now Selling Attack Tools to APT Actors

North Korea's Lazarus Group - of Sony breach and WannaCry fame - is among the first customers.
Brian Krebs

The Great $50M African IP Address Heist

A top executive at the nonprofit entity responsible for doling out chunks of Internet addresses to businesses and other organizations in Africa has resigned his post following accusations that he secretly operated several companies which sold tens of millions...

Intel Issues Fix for ‘Plundervolt’ SGX Flaw

Researchers were able to extract AES encryption key using SGX's voltage-tuning function.
TechRepublic

How to stop spam calls right now

Spam calls drive us all crazy. Here are four ways to stop robocalls and other unsolicited phone calls.