Attacks, Threats, and Vulnerabilities
Hades Ransomware Operators Use Distinctive Tactics and Infrastructure (Secueworks) Commonalities revealed during multiple Secureworks incident response engagements provided insights into the GOLD WINTER threat group’s tactics, techniques, and procedures.
Critical entities targeted in suspected Chinese cyber spying (AP NEWS) A cyberespionage campaign blamed on China was more sweeping than previously known, with suspected state-backed hackers exploiting a device meant to boost internet security to penetrate the computers of critical U.S.
Critical Entities Targeted in Suspected Chinese Cyber Spying (US News and World Report) A cyberespionage campaign blamed on China was more sweeping than previously known, with suspected state-backed hackers exploiting a device meant to boost internet security to penetrate the computers of critical U.S. entities.
Chinese Pulse Secure hack breached dozens of high-value entities (South China Morning Post) The hacking of Pulse Connect Secure networking devices, first publicised in April, targeted Verizon and the largest water agency in the US, among several other high-value targets in finance, technology and government.
Researchers Attribute SITA Cyberattack to Chinese Hackers (SecurityWeek) Group-IB’s security researchers believe that Chinese nation-state threat actor APT41 performed the cyberattack against aviation IT firm SITA
REvil ransomware hits US nuclear weapons contractor (BleepingComputer) US nuclear weapons contractor Sol Oriens has suffered a cyberattack allegedly at the hands of the REvil ransomware gang, which claims to be auctioning data stolen during the attack.
Microsoft Disrupts Large-Scale BEC Campaign (SecurityWeek) Microsoft has disrupted a large-scale business email compromise (BEC) campaign in which the attackers used forwarding rules to access messages related to financial transactions.
Behind the scenes of business email compromise: Using cross-domain threat data to disrupt a large BEC campaign (Microsoft Security Blog) Microsoft 365 Defender researchers recently uncovered and disrupted a large-scale business email compromise (BEC) infrastructure hosted in multiple web services. Attackers used this cloud-based infrastructure to compromise mailboxes via phishing and add forwarding rules, enabling these attackers to get access to emails about financial transactions.
NoxPlayer Supply-Chain Attack is Likely the Work of Gelsemium Hackers (The Hacker News) Hackers behind the NoxPlayer supply-chain attack are likely to be Gelsemium hackers.
Bluetooth Is Useful, Ubiquitous, and an Invitation to Hackers (Renal and Urology News) Bluetooth-connected devices may be vulnerable to breaches of confidential patient information.
REvil Hits US Nuclear Weapons Contractor: Report (Threatpost) "We hereby keep a right (sic) to forward all of the relevant documentation and data to military agencies of our choise (sic)" REvil reportedly wrote.
Intuit notifies customers of compromised TurboTax accounts (BleepingComputer) Financial software company Intuit has notified TurboTax customers that some of their personal and financial information was accessed by attackers following what looks like a series of account takeover attacks.
HMM suffers security breach and cyber-attack on its email systems (Loadstar) Yet another ocean carrier has fallen foul to a cyber-attack: this time it is South Korea’s HMM, which today confirmed a virus attack on its email system on 12 June.
Hackers Target Videogame Publishers for Ransom, Source Code (Wall Street Journal) Gamers have struggled with hackers who cheat and take over accounts for years. Now, videogame studios are coming under serious attack, prompting them to step up their cyber defenses.
1Sambayan volunteer app 1Sama Ako hit by data breach (Rappler) (1st UPDATE) Convenor Howard Calleja confirms the app was hacked on Saturday
Iowa community college to resume online classes after ransomware attack (EdScoop) Administrators at Des Moines Area Community College said they’re now working with law enforcement to recover from the cyberattack.
UF Health employees: Cyber attack now impacting patient care (WESH) WESH 2 News is investigating the ransomware attack on a local hospital system. Several employees say the data breach at UF Health in The Villages and Leesburg Hospital is negatively impacting patient care.
Mensa data spillage was due to 'unauthorised internal download' (Register) Book smarts vs street smarts face-off might have been an inside job, claims egghead chief
Ransomware Attacks are Evolving: What You Need to Know (Cybereason) We’ve observed ransomware threat groups using multiple leverage points to extort their victims - here are a few tactics that stood out to us...
Security Patches, Mitigations, and Software Updates
Apple Issues Urgent Patches for 2 Zero-Day Flaws Exploited in the Wild (The Hacker News) Apple releases emergency patches for two zero-day vulnerabilities found in the wild
Microsoft sets end date for Windows 10 support (CRN Australia) The OS will be retired, with 14 Oct 2025 set as the end-of-support date.
Trends
The 2020 Trust Report (Synack) The Synack 2020 Trust Report Series quantifies how trusted organizations are and gives security executives and boards a realistic sense of performance against other industries and actionable recommendations for making progress over the next year.
PwC US Cloud Business Survey (PwC) Cloud payback: Everyone wants it. Four ways to get it
Why are SMBs Under Attack by Ransomware (CSO Online) Ransomware attackers now carefully plan their attacks, with a keen understanding of their small and medium-size business targets.
Ransomware attacks continue to Surge, hitting a 93% increase year over year (Check Point Software) Number of organizations impacted by ransomware has risen to 1210 in June 2021 Check Point Research sees a 41% increase in attacks since the beginning of
2021 Trends in Securing Digital Identities (Identity Defined Security Alliance) Latest research examines the impact that the events of 2020 have had on securing digital identities in the enterprise and the implementation of identity-focused security strategies.
It is time for insurance companies to sell cyber security protection (Information Age) Nick Viney, SVP & general manager, partner, Avast, discusses why it's time for insurance companies to sell cyber security protection
As ransomware and other cyberattacks grow, insurers struggle to keep up (Marketplace) The cost of cyber breaches may be double that of natural disasters. More firms seek coverage while insurers try to cut their own risk.
Most companies pay cyber attack ransom: Here's why (Farm Weekly) Australian ag at particular risk of cyber attacks, experts warn
Iceland prepares for next-generation cybersecurity (Mirage News) A booming data-centre industry and plans to improve connectivity are amplifying Iceland's role in the global digital ecosystem. But as the country...
Public Sector Fraud Trends (TransUnion) Public sector fraud trends: Insights for building trusted government online services. Study based on research from agency leaders. Download now.
Tessian | 1 in 3 employees has picked up bad cybersecurity habits since working remotely, reveals news data (RealWire) New data from Tessian reveals the security pitfalls that IT leaders need to be aware of as lockdowns ease and employees go back to the office
SAN FRANCISCO - 15 JUNE 2021: A new report from human layer security company Tessian reveals that most IT leaders (56%) believe their employees have picked up bad cybersecurity behaviors since working from home
Zillow Surfing Survey Reveals User Habits (OMNIS Panels) Zillow surfing has attracted all types of users during the pandemic. We surveyed Americans across the country to ask them about their Zillow surfing habits.
Marketplace
Myota Announces $3.65M Series A2 Funding for the Company’s Enterprise Information Protection SaaS Platform (EIN) Investment Reflects Urgent Market Demand for Heightened Information Protection and Cyber Resilience
Ostendio Raises Series A Funding to Expand Its MyVCM Trust Network (PR Newswire) Ostendio, a leading provider of always-on integrated risk management technology, announced the closing of a Series A financing to enable more...
Forcepoint To Acquire Deep Secure to Extend Defense-Grade Security for Critical Infrastructure, Enterprises and Governments Worldwide (PR Newswire) Forcepoint, a global leader in data-first cybersecurity solutions that protect critical information and networks for thousands of customers...
DarkTrace rival Immersive Labs raises £52.99M to fuel global expansion, enhance cyber risk mitigation and more - UKTN (UK Tech News) (UKTN (UK Tech News)) The Bristol-based cybersecurity startup and DarkTrace rival has raised £52.99 million in its series C funding
Cybersecurity firm KnowBe4 rallies more than 10% (NASDAQ:KNBE) (SeekingAlpha) Cybersecurity firm KnowBe4 (Nasdaq:KNBE) rallied more than 10% in its third straight winning session, rising as a take-out deal for rival Proofpoint (Nasdaq:PFPT) moves closer to fruition.
Asian e-commerce giant Lazada launches first public bug bounty program (The Daily Swig) Popular online shopping platform is offering up to $10k for ‘max critical’ vulnerabilities
Booz Allen Hamilton Wins Defense Cyber and Data Contracts (Homeland Security Today) The Enterprise Communications and Networks (ECN) Division of Naval Information Warfare Center Pacific (NIWC Pacific) has awarded Booz Allen Hamilton a contract with a potential value of $189.9 million over five years, to provide a complete range of engineering, technical, cyber, and programmatic services.
How one founder is bringing the global corporate security industry out of the dark ages (TechCrunch) When Cory Siskind finished school, she was dropped into a high-stakes job helping large multinational corporations manage their operational security in Mexico City, with almost no relevant lived experience. Eventually, she realized that this was more or less par for the course in the corporate secu…
QOMPLX Announces Distinguished Post-Merger Board of Directors (GlobeNewswire News Room) QOMPLX, Inc. (“QOMPLX”), a global leader in cybersecurity and risk analytics, announced today an...
Akamai Taps Boaz Gelbord as New Security Chief (SecurityWeek) After a major restructuring earlier this year, Akamai hands security leadership reins to 15-year cybersecurity veteran Dr Boaz Gelbord.
Akamai Technologies Announces Dr. Boaz Gelbord as Chief Security Officer (PR Newswire) Akamai Technologies, Inc. (NASDAQ: AKAM), the world's most trusted solution for protecting and delivering digital experiences, announces Dr....
Digital Immunity, Inc. Announces the Appointment of Interim CEO (BusinessWire) Digital Immunity, Inc. announces appointment of Interim CEO
ForgeRock Appoints David Burden As Chief Information Officer (BusinessWire) ForgeRock Appoints David Burden as Chief Information Officer
Blackpoint Cyber Welcomes Paul Barnes, VP of Product (Yahoo Finance) Blackpoint Cyber, a leading technology-focused cybersecurity company, welcomes Paul Barnes to the team as VP of Product.
Veteran Executives John Mayhall, Kerry Nagle, and Peter Finter Join CyberGRX to Support Company’s Continued Growth (BusinessWire) CyberGRX appointed John Mayhall as Chief Revenue Officer, Kerry Nagle as Chief Operating Officer, and Peter Finter as Chief Marketing Officer.
Ryan Gurney, Ex-Googler, Joins YL Ventures as CISO-in-Residence (BusinessWire) YL Ventures, the prominent seed-stage venture capital firm investing in Israeli cybersecurity startups, announced that Ryan Gurney will join the firm
Products, Services, and Solutions
This secretive firm has powerful new hacking tools (WIRED UK) Mollitiam Industries claims to have created hackings tools that can take control of smartphones and laptops
Google will let enterprises store their Google Workspace encryption keys (TechCrunch) The move will make a company's data indecipherable to Google.
Stripe goes beyond payments with Stripe Identity to provide AI-based ID verification for transactions and much more (TechCrunch) A number of startups (e.g. here, here, here and here) have fashioned themselves as the “Stripe for identity verification”, providing an easy way for developers to integrate ID authentication into a platform. Today, Stripe is stepping in to fill that need itself: The company is launching…
Monese Partners With Veriff To Provide Secure Digital Banking for European Consumers (News Powered by Cision) Monese, a European mobile money app, and Veriff, a global identity verification provider are partnering to provide enhanced and secure digital banking services for consumers across Europe. With this partnership, Veriff is adding an extra layer of safety and security to the mobile money app.
1Password 8 for Windows is now in Early Access! (1Password Blog) We’re on a journey to reimagine everything 1Password can be on Windows. And you’re invited to join us!
Quick Heal’s Seqrite launches cloud-based cybersecurity platform (The Economic Times) Seqrite Hawkk will offer a cloud-based cybersecurity management platform that will allow enterprises to manage multiple security products from a single console, Quick Heal CTO Sanjay Katkar says.
Flashpoint partners with Cyware to deliver enhanced threat intelligence (Help Net Security) Flashpoint announced a partnership with Cyware to combine Cyware’s Cyber Fusion Platform with Flashpoint’s extensive data sources.
MS-ISAC members get free access to Deloitte’s Cyber Detect and Respond Portal to help respond to cyber threats (American City and County) The Multi-State Information Sharing and Analysis Center (MS-ISAC), a component of the Center for Internet Security Inc. (CIS), and Deloitte have agreed to a fir
Trend Micro Offers Industry's Broadest Zero Trust Solution with the Unique Risk Insights Organizations Need (PR Newswire) Trend Micro Incorporated (TYO: 4704; TSE: 4704), a global cybersecurity leader, offers comprehensive visibility into identity and device...
CloudKnox Named Technology Pioneer by World Economic Forum (BusinessWire) CloudKnox Security CEO named
Merlin Ventures Announces Partnership with Cyolo to Deliver Zero Trust Cybersecurity Solutions to the U.S. Market (PR Newswire) Merlin Ventures, the strategic investment arm of Merlin Cyber, a premier cybersecurity solutions provider with deep expertise in the U.S....
Cavelo Launches Automated Data Discovery, Classification and Reporting (PRWeb) Cavelo Inc. today announced the launch of its flagship automated data discovery, classification and reporting platform. The Cavelo Discover Platform uses t
Pathwire Joins Google Cloud Partner Advantage Program (PRWeb) Pathwire, a leading provider of powerful email APIs and intuitive email marketing solutions, today announced it has joined the Google Cloud Partner Advantage Pro
AT&T Cybersecurity Delivers New Managed SASE Solution to Drive Innovation and Transform User Experiences at the Edge (PR Newswire) What's the news? AT&T* is delivering a new, global managed Secure Access Service Edge (SASE) offering. AT&T SASE with Palo Alto Networks is an...
Technologies, Techniques, and Standards
US, 6 Other Countries Back Arqit-Led Satellite Quantum Cybersecurity Alliance (ExecutiveBiz) London-based cybersecurity company Arqit has launched a consortium of public and private sector organizations from seven countries, including the U.S., in an effort to bring satellite-based quantum encryption technology to the worldwide government sector.The new alliance -- which has representatives from the U.K., Canada, Japan, Austria, Belgium and Italy -- centers on the Federated Quantum
Academia
Regis University cybersecurity expert offers a lesson his own employer could learn from (KUSA.com) Bob Bowles directs the Center of Information Assurance Studies at Regis University in Denver. He tells people not to pay hackers their ransoms, though Regis did.
Legislation, Policy, and Regulation
China urges NATO to stop exaggerating ‘China threat theory’ (Reuters) China's mission to the European Union urged NATO on Tuesday to stop exaggerating the "China threat theory" after the group's leaders warned that the country presented "systemic challenges".
Law prof: New Chinese data regulations make it 'very hard for foreign firms to comply' (Register) Fines for sending 'core' and 'important' info overseas, although what qualifies remains undefined
Ransomware is the top cybersecurity threat we face, warns cyber chief (ZDNet) NCSC CEO Lindy Cameron issues warning over growing danger of cyber-criminal ransomware operations and how improving cyber reliance is needed to prevent attacks.
Polish lawmakers to hold closed-door session on cyberattacks (Washington Post) A closed-door session with lawmakers that Poland’s prime minister requested to discuss a number of cyberattacks on Polish government officials will take place Wednesday, the speaker of the country’s parliament said.
Putin and Biden Curb Their Enthusiasm (Foreign Policy) A “cold peace” is the best-case scenario coming out of this week’s summit.
Murkiness of Russia's ransomware role complicates Biden summit mission (National Post) As U.S. President Joe Biden prepares to confront Russian President Vladimir Putin over ransomware gangs in his country that twice recently targeted critical…
No sign of thaw between Russia and US ahead of Geneva summit (the Guardian) Analysts say event will be ‘boring’ as both sides attempt a reboot following catastrophic meeting between Trump and Putin in 2018
G7 leaders ask Russia to hunt down ransomware gangs within its borders (BleepingComputer) G7 (Group of 7) leaders have asked Russia to urgently disrupt ransomware gangs believed to be operating within its borders, following a stream of attacks targeting organizations from critical sectors worldwide.
Putin has bedeviled American presidents. Biden can learn from their mistakes. (Washington Post) At their summit, Biden should follow three guiding principles and focus on cybercrime.
How Biden Should Deal With Putin (Foreign Affairs) Biden must follow up his limited efforts at engagement with Russia with a firm and vigilant containment policy—regardless of what happens in Geneva.
Russia is Hammering the U.S. in Cyberspace, Why is Biden Meeting with Putin at All? (Foreign Policy Research Institute) In 2009, while working in Washington, D.C., I remember the issue of Russian criminal syndicate hacking arising for the first time.
Putin likens Russian crackdown to arresting Capitol rioters (Spectrum News) Russian President Vladimir Putin, who is to meet President Joe Biden this week, is suggesting that the hundreds of people arrested for rioting at the U_S_ Capitol are being subjected to “persecution for political opinions.”
Key Senator Wants Biden to Raise SolarWinds in International Negotiations (Nextgov.com) Senate Intelligence Committee Chairman Mark Warner said espionage campaigns like the SolarWinds hack merit discussion with Russian President Vladimir Putin.
The Cybersecurity 202: Biden’s European tour signals a return to cyber diplomacy (Washington Post) When it comes to cyber diplomacy, America is back.
Ransom Payments are Fueling the Ransomware Scourge (Symantec) An unhealthy ecosystem has developed around ransomware. The time has come to change the dynamic. We must compensate the victims, not the criminals.
WSJ News Exclusive | U.S. Fight Against Chinese 5G Efforts Shifts From Threats to Incentives (Wall Street Journal) Washington is ratcheting up pressure on Beijing’s 5G ambitions overseas, offering financial incentives and other enticements to countries willing to shun Chinese-made telecom gear.
Congress Has Already Authorized the President to Require Reporting of Foreign Cyberattacks (Lawfare) Congress long ago gave the president broad authority under the International Economic Emergency Powers Act to require record-keeping and reporting on foreign cyberattacks.
What the White House told state AGs about cybersecurity (StateScoop) Anne Neuberger, the deputy national security adviser for cyber issues, met with state attorneys general to discuss ransomware and other threats.
Deputies and experts advocate Brazil's accession to cybercrime convention (The Rio Times) At a public hearing of the Chamber Committee on Foreign Relations and National Defense on Monday, June 14, deputies and experts advocated Brazil's accession to the Budapest Convention on Cybercrime, completed in 2001 (MSC 412/20).
IRS, GAO at odds over cybersecurity requirements on tax preparers (CyberScoop) The Internal Revenue Service hasn’t put in place a structure to issue cybersecurity dictates to paid tax preparers because it doesn’t believe it has the authority to do so — but the Government Accountability Office begs to differ.
Air Force would contribute bulk of new cyber mission force teams (Defense News) The Air Force would provide nearly half of 14 additional cyber mission force teams under a proposed two-year phased approach.
Does the U.S. need a cyber force? (FCW) Gen. Paul Nakasone, the director of the National Security Agency and head of U.S. Cyber Command, told lawmakers that infrastructure deficits could prevent the creation of a service modeled on Space Force.
Guernsey Cyber Security Rules and Guidance (Lexology) Following a two-year consultation, the Guernsey Financial Services Commission (the Commission) has published the final form Cyber Security Rules (the…
DHS poised to remake federal hiring in September to confront cybersecurity gap (FCW) The Department of Homeland Security's Cybersecurity Talent Management System has been years in the making, but officials say it will finally come online this fall.
Litigation, Investigation, and Law Enforcement
U.S. Supreme Court revives LinkedIn bid to shield personal data (Reuters) The U.S. Supreme Court on Monday gave Microsoft Corp's (MSFT.O) LinkedIn Corp another chance to try to stop rival hiQ Labs Inc from harvesting personal data from the professional networking platform's public profiles - a practice that LinkedIn contends threatens the privacy of its users.
Irish police to be given powers over passwords (BBC News) New legislation in the Republic of Ireland will compel suspects to give police their details.
Marriott Beats Investor Class, Derivative Claims on Data Breach (Bloomberg Law) Marriott International Inc. is free of securities fraud and shareholder derivative claims in a suit stemming from a data breach that revealed the personal information of hotel guests after a federal judge in Maryland dismissed them with prejudice.
Global Police Seize Close Record Number of Fake Pharma Sites (Infosecurity Magazine) Operation also leads to seizure of $9m in fake pills and devices
Herff Jones data breach triggers lawsuits from graduation-gear customers - The Indiana Lawyer (The Indiana Lawyer) Indianapolis-based Herff Jones is facing three lawsuits from college students and their parents who say they were hit with fraudulent credit- and debit-card charges after using those cards to order caps, gowns and other graduation gear from the company’s website.
Reality Winner, NSA contractor in leak case, out of prison (AP NEWS) A former government contractor who was given the longest federal prison sentence imposed for leaks to the news media has been released from prison to home confinement, a person familiar with the matter told The Associated Press on Monday.
Reality Winner, Who Leaked Government Secrets, Is Released From Prison (New York Times) Out on good behavior, the former National Security Agency contractor was sent to a halfway house.
National Security Agency Leaker Reality Winner Freed from Prison Early (Reason.com) She was sentenced to more than five years for revealing how Russia tried to hack the 2016 election.
FBI’s Internet Crime Center registers over 2,000 complaints daily (Atlas VPN) Internet crime has been steadily increasing over the years as more people use the internet and hackers find new ways to attack vulnerable systems.
Garland says Justice Department will strengthen policies for obtaining lawmakers’ records (Washington Post) Attorney General Merrick Garland on Monday said he would tighten the Justice Department’s policies on obtaining records from lawmakers and reporters, as he sought to address a growing controversy over department efforts during the Trump administration to secure the data of members of Congress, journalists and even the White House counsel.
Microsoft’s Smith Says Secret Subpoenas Hurt U.S. Tech Companies (Bloomberg) Microsoft Corp. President and Chief Legal Officer Brad Smith criticized secret data subpoenas sent by the government to cloud providers like his company and Apple Inc., saying gag orders on requests for personal information undermine freedoms and are hurting U.S. technology companies in Europe.
Six Flags Strikes $36M Deal To End Finger Scan Privacy Row (Law360) Six Flags has agreed to pay $36 million to end a class action accusing it of collecting pass-holders' biometric fingerprint data in violation of Illinois' landmark biometric privacy law, resolving a case that reached the state's high court and opened the floodgates for similar litigation.