Recent attacks on US local governments suggest that one of the threats to expect during the 2020 elections will be ransomware. Reuters reports that CISA is working to help secure voter registration databases in particular against this form of attack. StateScoop sees the National Guard assuming a role in ransomware defense.
Web hosting provider Hostinger reset user passwords over the weekend after determining that unauthorized parties had gained access to its "internal systems." About half the company's 29 million users may have had their information exposed in the breach.
Cofense researchers have detected a sophisticated phishing campaign distributing the Quasar remote-access Trojan. Quasar is a widely available commodity RAT, but the campaign distributing it is unusually adept at evading detection and avoiding analysis.
Bleeping Computer reports research by Vitali Kremenz that outlines a new strain of ransomware, "Nemty." It appears to spread via remote desktop protocol.
Arkose Labs' Fraud and Abuse Report for the third quarter claims that over half the logins they investigated were fraudulent. The company analyzed more than 1.2 billion logins in the financial services, e-commerce, travel, social media, gaming and entertainment sectors to reach this conclusion. The national center of gravity for social media fraud also seems to have shifted, with the Philippines now the clear leader in the origination of such traffic. The US is a distant second, with Russia, the UK, and Indonesia as also-rans.
Emsisoft has a free decryptor available for the Syrk ransomware that bamboozled Fortnite players looking for methods of cheating.