Cyberattack News, Articles and Updates

Tennessee city still not recovered from ransomware attack

The City of Spring Hill, Tenn. is still suffering from the effects of a ransomware attack that struck the municipality in early November when government officials refused to pay the $250,000 ransom demanded by the cybercriminals.

Dark Overlord threatens to release plastic surgery images of royals, celebrities

The Dark Overlord cybergang has at least temporarily moved away from attacking school districts and has turned back to threatening to release celebrity private information by hacking a London, UK plastic surgery firm.

Bill legalizing hacking back introduced in the House

Reps. Tom Graves, R-Ga., and Kyrsten Sinema, D-Ariz., today introduced the Active Cyber Defense Bill which if passed would give individuals and companies hit with a cyberattack the legal authority to hack back against their assailant.

Despite increased spend, why doesn't DDoS mitigation always work?

Newly published research suggests that while there has been a marked increase in spending to mitigate against Distributed Denial of Service (DDoS) attacks, organisations are still falling victim.

CBS's Showtime sites silently used Monero Miners on user's browsers

CBS's Showtime is the latest site to silently mine cryptocurrencies off of the systems of unsuspecting users in the latest trend of cryptocurrency miner infections.

GSM-based credit card skimmers hit New York gas stations

GSM-based credit card skimmers capable of sending credit card data via text messages were at three New York gas stations.

Decryptor for old Petya versions released

Malwarebytes researchers have developed decryptors for unlocking all legitimate older versions of Petya ransomware.

SC Media asks the industry: Is cyberattack insurance worth it?

With warnings about stress testing response mechanisms, the Prudential Regulation Authority is putting the insurance industry on notice as to what it expects from the cyber risk market.

Android 7.1 Nougat version comes with hidden "panic detection"

Android 7.1 Nougat contains a secret panic mode designed to be triggered in the event that malware locks a user's screen.

Three-quarters of UK orgs suffer DNS attacks, half of those had data stolen

A new report from EfficientIP reveals a lack of awareness as to the variety of DNS attacks, a failure to adapt security solutions to protect DNS and poor responses to vulnerability notifications among businesses worldwide.

NotPetya: Snowden takes shots at NSA, Shadowbrokers lick lips

Both Edward Snowden and the Shadowbrokers have used the NotPetya attacks, to provide their unique perspective on the situation.

Koler ransomware campaign targets U.S. Android users

Researchers last week spotted a new variant of the Koler ransomware targeting U.S. users with fake Pornhub apps in its latest campaign.

WannaCry hits Australian traffic cameras due to human error

After recently wreaking havoc on a Japanese Honda plant, WannaCry made its way across the ocean to Australian traffic cameras.

InfoSec 2017: What are Fancy Bears and why it matters, even for SMEs

SC spoke to Adam Meyers, VP of intelligence at Crowdstrike at this year's InfoSec Europe 2017 about attribution and why it could be useful even for smaller businesses.

SWIFT codes targeted in Union Bank of India cyberattack

Hackers launched an attack against Union Bank of India that was very similar to the attack Bangladesh bank heist that resulted in the theft of $81 million.

Bowling Green, Ky., cyberattacks lead to Turkish hacker

The probe of a U.S.-based Turkish hacker shed light on an Austrian intelligence agency dispute and found that the Bowling Green attacks may have been real after all, just cyber

Securing smart cities requires collaboration

"Cybersecurity is a service and the service is enterprise is risk management," City of San Diego Chief Information Security Officer, Deputy Director Gary Hayslip

Pittsburgh teen launched cyberattacks on Belgium airport after ISIS attacks

A Pittsburgh child admitted to launching cyberattacks on the Brussels airport just hours after last year's ISIS attacks.

Pennsylvania court rules UPMC not responsible for securing employee data

The Pennsylvania Superior Court has ruled the University of Pittsburgh Medical Center isn't responsible for protecting employee data.

Leet Botnet vies with Mirai for 2016 DDoS crown

The Leet Botnet may have wrested the 2016 crown as most powerful distributed denial of service (DDoS) attack from Mirai with a 650 Gigabit per second (Gbps) attack launched early last week.

Japanse SDF officials mum over reported cyberattack

Japanese Defense Ministry and Self-Defense Force (SDF) was targeted in September by a sophisticated cyberattack, according to sources cited by The Japan Times.

Cybercriminals, as usual, make the Naughty List

Retailers and shoppers hardly need to see Santa's Naughty or Nice list to know where most cybercriminals will land this year, although probably not all.

Russian banks suffer wave of DDoS attacks

Kaspersky Lab has confirmed that numerous Russian banks have been suffering a wave of DDoS attacks.

Cyber Security Challenge UK crowns youngest ever champion

An 18-year-old from Sussex has triumphed at the Cyber Security Challenge UK 2016, making him the youngest ever winner of the competition.

SSL handshake weakness leaves MacOS, iOS devices open to MitM attacks

A fundamental fault in the SSL handshake could allow hackers to use subvert MacOS and iOS devices and recruit them into a DDoS attack.

U.S. vigilante hacker takes over Russian Foreign Ministry site

A self-described patriotic American vigilante hacker named Jester reportedly took over the Russian Ministry of Foreign Affairs website on Friday in retaliation for alleged Russian cyberattacks on the United States.

Cyber cartels launder money via gamer currencies

Trend Micro researchers found that cybercriminals are using video game currency to launder real world money.