Derek B. Johnson SC Media

Over the past two decades, businesses have piled a patchwork of different products and services – multi-factor authentication, single sign-on, identity governance and administration policies and others – on top of their directory. That introduces risk and complexity, says Jumpcloud CEO Rajat Bhargava.

Ransomware, Security News

DarkSide decryptor unlocks systems without ransom payment – for now

By

Derek B. Johnson

January 11, 2021

The decryptor works for all current DarkSide infections, but that will likely change soon as the group reacts and adapts to the disclosure.

Ransomware, Security News

Malware variant becomes world’s most popular, thanks to ransomware surge

By

Derek B. Johnson

January 8, 2021

Ransomware actors are laundering hundreds of millions of dollars through pseudo-legitimate cryptocurrency exchanges, while early-stage malware that is often used to facilitate their attacks have become the most popular forms of malware in the world.

Data Breach, Government, Government/Defense, Security News

CISA discovers token abuse around SolarWinds hack, calls for full rebuild of affected networks

By

Derek B. Johnson

January 7, 2021

The agency has found evidence of authentication token abuse in networks infected with corrupted versions of Orion software and say restoring integrity will require a full network rebuild in certain cases.

Data Breach, Featured, Government/Defense, Security News

The physical breach of the Capitol building opens a cybersecurity Pandora’s box

By

Derek B. Johnson

Teri Robinson

January 7, 2021

The incident, as well as the response among those on Capitol Hill tasked with securing government technology assets, serves as a dramatic and evolving case study for public and private sector entities on the scope of the cybersecurity risk tied to a physical breach.

Featured, Ransomware, Security News

After widespread hospital attacks, targeting of health care industry continues to rise

By

Derek B. Johnson

January 5, 2021

In the two months following a highly publicized series of ransomware attacks against UHS last year, cyber attacks of all stripes against health care facilities worldwide shot up 45%.

Featured, Legal, Security News, SolarWinds hack

SolarWinds, top executives hit with class action lawsuit over Orion software breach

By

Derek B. Johnson

January 4, 2021

Stockholders who purchased company shares in 2020 are suing the IT management software company for materially misleading investors about their security practices.

Data Breach, Featured, Security News, SolarWinds hack

Microsoft doesn’t treat its source code like a trade secret. Is that smart?

By

Derek B. Johnson

January 4, 2021

In the course of investigating the impacts of the SolarWinds breach, Microsoft security specialists discovered “unusual activity” within a number of internal accounts, including one that was used to view the company’s internal source code.

Derek B. Johnson

Most recent articles by Derek B. Johnson

FIN11 e-crime group shifted to clop ransomware and big game hunting

DarkSide decryptor unlocks systems without ransom payment – for now

Malware variant becomes world’s most popular, thanks to ransomware surge

CISA discovers token abuse around SolarWinds hack, calls for full rebuild of affected networks

The physical breach of the Capitol building opens a cybersecurity Pandora’s box

After widespread hospital attacks, targeting of health care industry continues to rise

SolarWinds, top executives hit with class action lawsuit over Orion software breach

Microsoft doesn’t treat its source code like a trade secret. Is that smart?

MOST POPULAR