No matter how many times law enforcement tried to caution people not to believe promises by criminals that they would delete stolen data if only you paid them, some victims still paid or will pay. Today, the NCA drove their point home more forcefully: As you know, we were able to fully compromise LockBit’s platform…
Category: Commentaries and Analyses
White House Pledges Major Deliverables at Ransomware Summit
Chris Riotta reports: The White House is launching a weeklong series of events focused on tackling global ransomware attacks, with a top federal cyber official promising “significant, major new deliverables” to address the rising threats. The International Counter Ransomware Initiative kicked off its fourth annual summit Monday in Washington, bringing together representatives from 68 member…
Will victims increasingly turn to courts to suppress publication of stolen data? (1)
What do you do when you have suffered an embarrassing data breach, your attacker(s) are taunting and criticizing you publicly, and some of your data has already been leaked? This month, DataBreaches notes that two victims in different countries are both seeking court injunctions in the hope that they can get stolen data removed from…
Hackers Could Have Remotely Controlled Kia Cars Using Only License Plates
Ravie LakshmananRavie Lakshmanan Cybersecurity researchers have disclosed a set of now patched vulnerabilities in Kia vehicles that, if successfully exploited, could have allowed remote control over key functions simply by using only a license plate. “These attacks could be executed remotely on any hardware-equipped vehicle in about 30 seconds, regardless of whether it had an…
SANS Institute: Top 5 dangerous cyberattack techniques in 2024
Josh Nadeau writes: SANS Institute — a leading authority in cybersecurity research, education and certification — released its annual Top Attacks and Threats Report. This report provides insights into the evolving threat landscape, identifying the most prevalent and dangerous cyberattack techniques that organizations need to prepare for. This year’s report also highlighted the main takeaways from the SANS…
Hacktivist Group Twelve Targets Russian Entities with Destructive Cyber Attacks
Ravie Lakshmanan reports: A hacktivist group known as Twelve has been observed using an arsenal of publicly available tools to conduct destructive cyber attacks against Russian targets. “Rather than demand a ransom for decrypting data, Twelve prefers to encrypt victims’ data and then destroy their infrastructure with a wiper to prevent recovery,” Kaspersky said in a Friday…