Akshaya Asokan reports: A newly uncovered Russia-based business email compromise gang has been targeting hundreds of large, multinational corporations in over 40 countries since 2019, according to the security firm Agari. The gang, which Agari calls Cosmic Lynx, uses a combination of social engineering techniques and well-crafted email messages designed to target the upper echelon of…
Month: July 2020
Explained: What China security law means for Hong Kong and the global Internet
Karishma Mehrotra reports: Days after China passed a national security law giving it wide-ranging powers over Hong Kong, major technology companies have suspended their responses to Hong Kong government requests, saying they will first reassess the law’s new controls. Much of Hong Kong’s future identity and the global Internet hinges on what the technology companies…
Revenge is mine, saith a hacker. No big deal, saith a researcher.
Vinny Troia, a self-described security researcher and and the owner of cybersecurity firms Night Lion Security and DataViper.io, will be the opening keynote speaker at SecureWorld’s virtual conference this coming Wednesday. He has promoted himself and his talk by claiming that he will reveal all of the identities of key members of thedarkoverlord, GnosticPlayers, and…
How REvil Used the Underground Ecosystem to Form an Extortion Cartel
A new paper on Sodinokibi (REvil) ransomware operators by Advanced Intelligence begins: Just about one year ago, the makers of the infamous GandCrab ransomware announced their retirement, having reportedly earned an astonishing $2 billion since their entry into the ransomware market in January 2018. The vacuum was quickly filled, however. Forensic and malware evidence was…
Ca: Four military schools in Canada suffer cyberattacks
Samantha Butler-Hassan reports: Kingston’s Royal Military College is one of four military training schools in Canada targeted in a mysterious cyber attack. Discovered on the morning of Friday, Jul. 3, 2020, the attack has temporarily disabled the University’s online network. “It looks like all their core systems got hit,” said David Skillicorn, a professor of…
Trump confirms 2018 US cyberattack on Russian troll farm
Maggie Miller reports: President Trump on Friday confirmed for the first time that the U.S. launched a cyberattack on the Russian Internet Research Agency (IRA) in 2018. Trump confirmed the attack in a two-part interview with The Washington Post’s Marc Thiessen. When asked whether the U.S. had launched an attack on the IRA — a troll farm that led…