Latest

Endpoint Security

Hacking Group Used Malware to Bypass 2FA on Android Devices

Akshaya Asokan  •  September 19, 2020

A hacking group targeting Iranian dissidents has developed malware that can bypass two-factor authentication protection on Android devices to steal passwords, according to Check Point Research. The hackers have also targeted victims' Telegram accounts.

DDoS Protection

Analysis: Online Attacks Hit Education Sector Worldwide

Chinmay Rautmare  •  September 18, 2020

Check Point Research analysts have observed a significant rise in online attacks against the educational sector worldwide since July. DDoS attacks have surged in the U.S., while European institutions have been hit by ransomware.

Blockchain & Cryptocurrency

Researchers Find Mozi Botnet Continues to Grow

Prajeet Nair  •  September 18, 2020

Mozi, a relatively new peer-to-peer botnet, is now dominating global IoT network traffic, according to a new report from IBM's X-Force unit. The malware is being used to launch DDoS attacks as well as mine for cryptocurrency.

Cyberwarfare / Nation-State Attacks

3 Iranian Hackers Charged With Targeting US Satellite Firms

Akshaya Asokan  •  September 18, 2020

Three Iranian hackers have been charged in connection with using social engineering and phishing techniques to steal data and intellectual property from U.S. satellite and aerospace companies, according to the Justice Department. The suspects were allegedly working on behalf of Iran's Islamic Revolutionary Guard Corps.

Breach Notification

Analysis: Is Chinese Database Exposure a Cause for Concern?

Anna Delaney  •  September 18, 2020

The latest edition of the ISMG Security Report analyzes whether a leaked database compiled by a Chinese company should be a cause for serious concern. Also featured are discussions on vulnerability disclosure challenges and risks posed by using social media apps for payments.

Blockchain & Cryptocurrency

DOJ: 2 Russians Defrauded Cryptocurrency Exchanges

Prajeet Nair  •  September 17, 2020

Two Russian nationals have been charged with using phishing techniques and spoofed domains to steal over $16 million from three cryptocurrency exchanges in 2017 and 2018, according to the U.S. Justice Department.

Cybercrime

Analyzing the Role of Fraud Fusion Centers

Akshaya Asokan  •  September 17, 2020

Many financial institutions have deployed fraud fusion centers as a way to help mitigate risks. But as fraudsters revamp their techniques, banks need to revamp these centers to keep up, says Jeff Dant of BMO Financial Group, who will speak at ISMG's Virtual Cybersecurity and Fraud Summit: Toronto.

Business Continuity Management / Disaster Recovery

Ransomware Attack at Hospital Leads to Patient's Death

Marianne Kolbasuk McGee  •  September 17, 2020

A ransomware attack that reportedly was directed at a German university but shut down emergency services at an affiliated hospital likely contributed to the death of a patient who needed urgent treatment but instead had to be transported to another hospital, delaying care, according to a news report.

Cyberwarfare / Nation-State Attacks

2 Iranians Indicted for Lengthy Hacking Campaign

Akshaya Asokan  •  September 17, 2020

Two Iranian nationals have been charged with participating in a years-long hacking campaign that targeted vulnerable networks in the U.S., Europe and the Middle East to steal "hundreds of terabytes" of data, according to the U.S. Department of Justice.

Fraud Management & Cybercrime

Researcher Describes Risks Posed by Posting Boarding Passes

Jeremy Kirk  •  September 17, 2020

An Instagram post by one of Australia's former prime ministers led to a security researcher finding his passport and phone number due to a coding error in a widely used airline ticketing system. The bug has been fixed, but it's another warning to avoid posting photos of boarding passes.

Business Continuity Management / Disaster Recovery

Maze Ransomware Attack Borrows RagnarLocker Hacking Move

Mathew J. Schwartz  •  September 17, 2020

Stop me if you think you've heard this one before: Some ransomware attackers are hiding attack code in virtual machines or creating new leaking sites to pressure victims into paying.

Cyberwarfare / Nation-State Attacks

TikTok's Response to Trump? Let's Make a Deal

Mathew J. Schwartz  •  September 16, 2020

President Donald Trump says TikTok and Oracle are close to making a deal. Don't neglect to read the fine print. While the president has demanded TikTok divest its U.S. operations - preferably to Oracle - because of national security concerns, the Chinese firm is instead offering Oracle a minority stake.