The Emotet botnet is back from a four-month vacation with a new spam campaign that began early on September 16. The initial burst of emails mainly targeted German, Polish, and Italian speakers with a sprinkling of English folks also receiving the emails with a subject line containing the phrase “payment remittance advice,” the Malwarebytes Threat…
The U.S. Air Force was so impressed with the work hackers accomplished on an F-15’s data flight system at Def Con in August that it plans to unleash them on an orbiting satellite at the 2020 Def Con. Wired is reporting that Will Roper, assistant secretary of the Air Force for acquisition, technology, and logistics,…
Block a hacker and win a gift certificate for a nice dinner out on the town? Absolutely! That’s just one example of how companies are bolstering their electronic defenses by using gamification to engage employees around cybersecurity training. Studies show that 90% of data breaches are caused by human error, such as an employee opening…
In the security world, operational technology (OT) has long been “the land of the forgotten,” taking a backseat in priority to IT network security. This is no longer tolerable, as adversaries and malicious actors increasingly target OT systems in attempts to extort enterprises or simply wreak havoc through equipment damage, environmental harm or loss of…
Two Coalfire employees were arrested at the Dallas County, Iowa court house earlier this week as they conducted what they called an assessment on the building’s security. The Des Moines Register reported Gary Demercurio and Justin Wynn were arrested early in the morning of September 11 as they were walking around on the court house’s…
A new malware containing some similarities to Ryuk ransomware, but which acts as an information stealer targeting military, law and financial institutions has been uncovered by MalwareHunterTeam. Once onboard a device the as-yet-unnamed malware begins its attack begins searching for .docx and .xlsx files, according to Bleeping Computer. In a fashion similar to how ransomware…
The California Consumer Privacy Act of 2018 (CCPA) was approved by the California State Governor on June 28, 2018, and goes into effect on January 1, 2020. The CCPA law sets new leading-edge standards in data privacy, not only for the State of California, but also for the rest of the United States. A very…
A cybercriminal gang has put together a phishing campaign that utilizes several trusted sources, along with insider help from a top tier security company service to convince its victims to open and download a malicious attachment. Cofense Intelligence found the malicious actors, who are only targeting Brazilians, are extensively using trusted names, legitimate Windows services…
Intel posted two security advisories for its Easy Streaming Wizard (CVE-2019-11166) and Data Direct I/O Technology (DDIO) and Remote Direct Memory Access (RDMA). A potential escalation of privileges vulnerability, rated as a medium threat, exists with Easy Streaming Wizard on versions before 2.1.0731 due to improper file permissions in the installer. Intel plans on issuing…
Your company is in the process of acquiring its biggest competitor. Midway through the deal, critical IP leaks, jeopardizing the value of transaction. Not only is the deal and your investment left hanging in the balance, but you now need to track down who accessed what data, when and where it went. Scenarios of M&A…
