Blog
-
LockBit Ransomware Gang Looks to Have Lied About Breaching Mandiant
Mandiant has announced an internal investigation revealing no sign of LockBit ransomware, but the group’s goal may have been to publicly create space between it and Evil Corp.
-
Remote Code Execution Flaw Found in Atlassian; Zero-day Vulnerability Actively Exploited
Users of Atlassian should hurry to patch a remote code execution exploit that has been linked to hackers in China. The attackers were able to use the zero-day vulnerability to breach a number of organizations.
-
New Ransomware Gang Pressures Victims With Website Defacement, Ransom Notes Posted On Front Page
Ransomware gang is taking a reckless approach to shaking down its victims, engaging in website defacement to post ransom notes that the general public can view.
-
Invasive New Cybersecurity Rules in China Opposed by Financial Firms
One of the controversial elements of the CSRC’s new draft cybersecurity rules is a call for a centralized data storage center that financial firms operating in the country would have to contribute all of their sensitive data to.
-
Report Finds Scams Make Up Over 50% Of Cybercrime
Scams are increasingly run by large, well-organized professional criminal groups. This tracks with the increasing “corporatization” of all types of cybercrime.
-
Microsoft Office Zero-Day Allows Remote Code Execution, Privileged Access; Security Community Implements Workarounds
Microsoft appears to have at least been aware of the possibility of this zero-day since 2021. Remote code execution using this Office exploit has been spotted in Russia and Belarus, and by a Chinese APT group.
-
NSA: Sanctions Slowing Down Ransom Payments, Which in Turn Is Suppressing Ransomware Attacks
The NSA says that recent sanctions are creating difficulty for ransom payments leading to reduced ransomware attacks, which are still largely originating from Russia and allies such as Belarus.
-
Verizon DBIR: Employee Error, Supply Chain Vulnerabilities Cause Overwhelming Majority of Data Breaches
2022 Verizon DBIR finds that at least 90% of data breaches are attempts at financially motivated crime, with nearly all of the remainder made up of espionage (in turn almost entirely conducted by nation-state threat groups).
-
Bad Bot! Traffic From Automated Sources Nearly on Par With Human Activity as Malicious Bots Become More Common
New study finds that bad bot traffic is responsible for a surge in non-human internet activity, with malicious bot activity doubling that of the benign bots that power services like search engines. Bot traffic made up 42.3% of all internet activity in 2021.
-
DOJ Promises CFAA Terms To Be Eased for Security Researchers
Now over 35 years old, the CFAA has been broadly criticized throughout the technology world for its vague terms and harsh punishments. Security researchers are now being assured of some level of safety.