Doug Olenick SC Media

Doug Olenick

Online Editor

Most recent articles by Doug Olenick

Google, Facebook fraudster pleads guilty to stealing $123 million in BEC scams

By

A Lithuanian man plead guilty in the U.S. District Court Southern District of New York earlier this week for using an advanced business email compromise campaign to defraud Google and Facebook out of an estimated $123 million. Evaldas Rimasauskas was indicted in December 2016 then arrested in Lithuania in March 2017 and extradited to the…

The death of the VPN – It’s time to say goodbye

Virtual private networks, VPNs, have often been referred to as the “backbone of the enterprise network.”  This is a bold statement to make about a technology that essentially hasn’t changed in almost over two decades.  And yet, a VPN’s ability to offer employees, third parties and even customers “secure” remote access into enterprise applications and…

NetflixRat

Amex, Netflix customers targeted in phishing campaign

By

Windows Defender Security Intelligence’s Office 365 Threat Research team has uncovered a phishing campaign targeting Netflix and American Express that attempt to steal payment card information. The campaign was detected on the weekend of March 16 and is still active, according to the Windows Defender Security Intelligence Twitter feed. In each case the phishing emails…

Rutland Regional Medical Center, Zoll reveal data breaches

By

Two healthcare organizations suffered data breaches due to their email service resulting in more than 72,000 records being exposed. Rutland Regional Medical Center in Vermont reported several employee email accounts have been compromised, while the medical products firm Zoll had data possibly exposed when an email server migration went awry. In both cases the patient…

RiskSec Preview: Mark Eggleston, Health Partners Plans

By

Enlisting FUD (fear, uncertainty and doubt) to argue for security budgets was commonly practiced by many security pros back in the day. It’s not a useful tactic nowadays, although more widespread hype about cybersecurity threats is common in mainstream coverage and some marketing collateral directed at executives less knowledgeable about industry happenings. At RiskSec 2019…

Persistence and scale signature moves of new Monero miner campaign

By

A new Monero cryptomining campaign has been detected in the wild being spread and operating in a manner more consistent with ransomware and other attacks that retain a level of persistence than has been seen before. Check Point researchers said these mining operations have been on-going since mid-January using two specific trojans, Trojan.Win32.Fsysna and an…

Orange County hit and taken offline with ransomware

By

The Orange County, N.C., government was knocked offline by a ransomware attack early Monday morning. County officials discovered files were being encrypted and shut down its entire network in an effort to stop the malware from spreading, effectively shutting down online access to most county services, according to a statement. An outside security firm has…

Will PSD2 Finally Kill The Password?

The EU Payment Services Directive (PSD2) will revolutionize consumer authentication. Passwords have been dying a slow death for a while, but PSD2 is likely going to deal the final death blow. Can we all say, “hip hip hooray?” For those who feel that this is just an issue for the European market, think again. The…

Next post in Opinion