Second Florida City Pays Hackers $500k Post-Ransomware Attack
After being hit by a ransomware attack, the second Florida city this month has opted to pay hackers their requested ransom.
Iran Targeting U.S. With Destructive Wipers, Warns DHS
The Department of Homeland Security is warning that U.S. agencies are being targeted by Iranian-backed cyberattacks with destructive wiper malware.
Feds: Cyberattack on NASA’s JPL Threatened Mission-Control Data
Rampant security-operations bungling allowed cyberattackers to infiltrate JPL's network, which carries human mission data.
5,000 Twitter Accounts Linked to Disinformation Campaigns
The social platform has suspended six sets of accounts across four jurisdictions for running alleged influence campaigns, including Iran.
TRISIS Group, Known for Physical Destruction, Targets U.S. Electric Companies
XENOTIME, a destructive APT linked to Russia, has broadened its target set beyond Middle East oil and gas.
Telegram CEO Fingers China State Actors for DDoS Attack
Durov took to Twitter to hint that Beijing tried to take Telegram offline to disrupt the Hong Kong protests.
How to Model Risk in an Apex Predator Cyber-World
Large-scale existential threats exist everywhere and can annihilate us with only trivial effort. Should we all throw everything we can at them?
IoT Security Regulation is on the Horizon
Ken Munro of Pen Test Partners hopes to see regulation for connected-device security in 2020.
Zebrocy: A Russian APT Specializing in Victim Profiling, Access
The Russian-speaking APT acts as a support group for high-profile APTs like Sofacy and BlackEnergy.
AI Isn’t Good Enough When Lives Are on the Line, Experts Warn
During Infosecurity Europe in London this week, cybersecurity experts sounded off on worries about artificial intelligence being used for nation state cyber weapons.
Chinese Spy Group Mixes Up Its Malware Arsenal with Brand-New Loaders
New campaigns also show modified versions of known payloads.
Goodbye Passwords: Hello Identity Management
As passwords are increasingly viewed as security liabilities, Identity Management solutions are picking up the slack.
Shade Ransomware Expands to U.S. Targets
Coming to America: The Shade ransomware, which has historically targeted Russian victims, was recently spotted expanding its sights.
Cybercrime Gang Behind GozNym Banking Malware Dismantled
Europol said it has dismantled the cybercrime network behind the GozNym malware, which siphoned more than $100 million from businesses.
WhatsApp Zero-Day Exploited in Targeted Spyware Attacks
WhatsApp has patched a vulnerability that allowed attackers to install spyware on victims' phones.
Chinese Hackers Behind 2015 Anthem Data Breach Indicted
Two have been indicted in the 2015 massive data breach of health insurer Anthem, which compromised the data of at least 78 million customers.
Researchers in the Dark on Powerful LightNeuron Malware, for Years
LightNeuron is the first to target Microsoft Exchange transport agents -- and is used as a hub for major Turla APT espionage efforts.
Verizon Data Breach Report: Espionage, C-Suite and Cloud Attacks on the Rise
Cloud misconfigurations, business email compromise (BEC) and intellectual property theft are all up in the Verizon DBIR 2019 from last year.
Chinese Spies Stole NSA Cyberweapons Long Before Shadow Brokers Leak
Forensic analysis shows a Chinese APT using Equation Group hacking tools at least a year before Shadow Brokers dumped its cache in April 2017.
Amid Bug Bounty Hype, Sometimes Security is Left in the Dust
Amidst the PR glitz and popularity of bug bounty programs, experts worry that actual smart security strategy is being left behind.