Cybersecurity News & Analysis | SC Media

APTs/cyberespionage, Government, Government/Defense, Privacy & Compliance News and Analysis, Security News

Justice Dept. sues Snowden over book release

By

Teri Robinson

September 17, 2019

The U.S. Justice Department filed suit against former National Security Agency (NSA) contractor Edward Snowden for not running his memoir, “Permanent Record,” through the proper government review prior to its publication. “If only the Justice Department was as concerned with the systematic legal violations carried out by the U.S. government’s mass surveillance programs as they…

Variant of Emotet banking malware used in spam campaign

Malware, Security News

Emotet back in action

By

Doug Olenick

September 17, 2019

The Emotet botnet is back from a four-month vacation with a new spam campaign that began early on September 16. The initial burst of emails mainly targeted German, Polish, and Italian speakers with a sprinkling of English folks also receiving the emails with a subject line containing the phrase “payment remittance advice,” the Malwarebytes Threat…

Cybercrime, Security News

Facebook boots multiple inauthentic accounts created in Iraq and Ukraine

By

Bradley Barth

September 17, 2019

Facebook yesterday excised from its platform hundreds of inauthentic pages, groups and accounts that were created by actors in Iraq and Ukraine. The social media giant removed 76 accounts, 120 Facebook pages, one group, two events and seven Instagram accounts linked to the Iraq-based campaign, and it expelled 168 accounts, 149 Facebook pages and 79…

Security News, Vulnerabilities

Def Con 2020: A space odyssey, hacking an orbiting satellite

By

Doug Olenick

September 17, 2019

The U.S. Air Force was so impressed with the work hackers accomplished on an F-15’s data flight system at Def Con in August that it plans to unleash them on an orbiting satellite at the 2020 Def Con. Wired is reporting that Will Roper, assistant secretary of the Air Force for acquisition, technology, and logistics,…

"EFF asks court to find NSA internet spying a violation of Fourth Amendment"

Cybercrime, Data Breach, Finance, Legal, Security News

Report: Russian man to plead guilty to financial firm hacks

By

Bradley Barth

September 17, 2019

Russian Andrei Tyurin will reportedly plead guilty to taking part in a cybercriminal campaign that targeted the U.S. financial sector and stole personal data from roughly 100 million customers of various firms. Citing court documents filed last Friday, Bloomberg reported yesterday that Tyurin, 36, has reached a plea deal with federal prosecutors in New York,…

Data Breach, Privacy & Compliance News and Analysis, Security News

Millions of medical records exposed online

By

Teri Robinson

September 17, 2019

HIPAA be damned – medical records, including images and data, on more than five million patients in the U.S. and millions of others worldwide lie unprotected online in full view of anyone with the wherewithal to look and a web browser. A Pro Publica investigation unearthed 187 servers in medical systems across the country that…

Executive Insight, Opinion, Security News

Gamification: A winning strategy for cybersecurity training

September 17, 2019

Block a hacker and win a gift certificate for a nice dinner out on the town? Absolutely! That’s just one example of how companies are bolstering their electronic defenses by using gamification to engage employees around cybersecurity training. Studies show that 90% of data breaches are caused by human error, such as an employee opening…

Data Breach, Privacy & Compliance News and Analysis, Security News

Exposed server leaks PII on all 16.6 million Ecuador citizens

By

Teri Robinson

September 16, 2019

If another leaky Elasticsearch server may seem a little anticlimactic, considering how frequently they occur, the latest find by security researchers might have more of a “wow” factor since it exposed information on nearly all of Ecuador’s 16.6 million citizens, 6.7 million of them children. “The irresponsible handling of Personally Identifiable Information (PII) has literally…

The fairly convincing phishing scam is being hosted on a compromised EA Games server.

Cybercrime, Malware, Phishing, Ransomware, Security News

Fake résumé emails attempt to spread Ordinypt Wiper to German recipients

By

Bradley Barth

September 16, 2019

Attention German HR departments: You may want to cross off a certain “Eva Richter” from your list of employment candidates. Especially because her so-called résumé actually infects recipients with the destructive Ordinypt Wiper malware, according to a new report. The fake résumé phishing campaign began on Sept. 11 and is specifically aimed at German-speaking employers,…

Cryptocurrency, Cybercrime, Malware, Security News

Skidmap malware drops LKMs on Linux machines to enable cryptojacking, backdoor access

By

Bradley Barth

September 16, 2019

Researchers have discovered a sophisticated cryptomining program that uses loadable kernel modules (LKMs) to help infiltrate Linux machines, and hides its malicious activity by displaying fake network traffic stats. Dubbed Skidmap, the malware can also grant attackers backdoor access to affected systems by setting up a secret master password that offers access to any user account…

Security News

Justice Dept. sues Snowden over book release

Emotet back in action

Def Con 2020: A space odyssey, hacking an orbiting satellite

Report: Russian man to plead guilty to financial firm hacks

Millions of medical records exposed online

Gamification: A winning strategy for cybersecurity training

Exposed server leaks PII on all 16.6 million Ecuador citizens

Fake résumé emails attempt to spread Ordinypt Wiper to German recipients

Skidmap malware drops LKMs on Linux machines to enable cryptojacking, backdoor access

MOST POPULAR

Want to read more?

Fake résumé emails attempt to spread Ordinypt Wiper to German recipients