Megan Roddie and Limor Kessem write: In a recent analysis from IBM’s X-Force Incident Response and Intelligence Services (IRIS), our team discovered activity related to a new strain of ransomware known as “PXJ” ransomware. This malware is also known as “XVFXGW” ransomware. The name PXJ is derived from the file extension that is appended to…
Category: Commentaries and Analyses
Maze Team statement ridicules security “experts” and IT administrators who try to cover up breaches
Those who have been watching Maze Team and other ransomware groups are already aware that Maze Team has quietly continued to actively attack entities. Those who do not pay their demands will likely find themselves listed on the threat actors’ website with some of their data publicly dumped for anyone who wants to download it….
Two healthcare-related entities disappeared from Maze Team’s website …. why?
Over the past few months, I have regularly checked Maze Team’s website to see if any of the entities they are listing are in the healthcare space. As I reported in the past, Maze Team did hit a number of healthcare-related entities, not all of which have been named on their website. But there were…
“Too late”: Cyberspace Solarium Commission report paints dark picture of US ravaged by cyberattacks
Lucy Ingham reports: Along-awaited report by the US Cyberspace Solarium Commission has been published, warning of a “catastrophic cyberattack” that leaves the nation in tatters. The report begins with an unorthodox start: a piece of fiction written by American political scientist Peter Singer and national security writer and analyst August Cole entitled “A Warning From Tomorrow”. Written…
Chinese Hackers ‘Weaponize’ Coronavirus Data For New Cyber Attack: Here’s What They Did
Zak Doffman reports: We have seen multiple stories about coronavirus-related information being used to disguise malware-laced messages and apps, which are now being distributed by threat actors around the world. Well, Chinese state-sponsored hackers are keen to get in on the act—at least according to the team at Check Point. In research published today, March 12, the firm exposes…
LinkedIn Appeals Important CFAA Ruling Regarding Scraping Public Info Just As Concerns Raised About Clearview
Mike Masnick writes: Last fall we were happy to see the 9th Circuit rule against LinkedIn in its CFAA case against HiQ. If you don’t recall, the CFAA is the “anti-hacking” law that has been widely abused over the years to try to shut down perfectly reasonable activity. At issue is whether “scraping” information violates a…